fffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4b49, 0x0) 19:45:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5451, 0x0) 19:45:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x80087601, 0x0) 19:45:39 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) 19:45:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x60) 19:45:39 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe00000000000000, @local}}) 19:45:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900000000000000) 19:45:39 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xb00, @local}}) 19:45:39 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00ff", {0x2, 0x0, @loopback}}) 19:45:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:45:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8) 19:45:40 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) 19:45:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 19:45:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18000000) 19:45:40 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe00000000000000, @local}}) 19:45:40 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x8, 0x0, @loopback}}) 19:45:40 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3ec, @local}}) 19:45:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 19:45:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 19:45:40 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:41 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0xfffffdfd, @loopback}}) 19:45:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc00) 19:45:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800) 19:45:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 19:45:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x60000000) 19:45:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700) 19:45:41 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x60, @local}}) 19:45:41 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfd00000000000000, @local}}) 19:45:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5421, 0x0) 19:45:41 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:41 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x100000000000000, @loopback}}) 19:45:42 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0xfdfdffff00000000, @loopback}}) 19:45:42 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x1000000000000, @local}}) 19:45:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6) 19:45:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7) 19:45:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 19:45:42 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11000000) 19:45:43 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x60, @local}}) 19:45:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40000000) 19:45:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) 19:45:43 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x1000000, @loopback}}) 19:45:43 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x18000000, @local}}) 19:45:43 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0xfdfdffff, @loopback}}) 19:45:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x300) 19:45:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 19:45:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3) 19:45:43 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000) 19:45:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f0000000000) 19:45:44 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x60, @local}}) 19:45:44 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback=0x7f000300}}) 19:45:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x80086601, 0x0) 19:45:44 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe603000000000000, @local}}) 19:45:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000000000000) 19:45:44 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000) 19:45:44 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xb000000, @local}}) 19:45:44 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 19:45:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000) 19:45:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803) 19:45:45 executing program 3: mkdir(&(0x7f00000002c0)='./file0\x00', 0x0) 19:45:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4) 19:45:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x40086602, 0x0) 19:45:45 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:45 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:45 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe000000, @local}}) 19:45:45 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) write$binfmt_elf64(r0, 0x0, 0x0) 19:45:45 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2) 19:45:45 executing program 3: mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) select(0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000100)={0x605e, 0xfff}) 19:45:45 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x2, @local}}) 19:45:45 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5452, 0x0) 19:45:45 executing program 3: r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) bind$llc(r0, &(0x7f0000000340)={0x1a, 0xffffffffffffffff, 0x5}, 0x10) sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) 19:45:46 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 19:45:46 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:46 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x1800000000000000, @local}}) 19:45:46 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x2, 0x0) 19:45:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6018230000000000) 19:45:46 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:46 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3f00000000000000, @local}}) 19:45:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100008000000000) 19:45:46 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:46 executing program 3: syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x2f, 0x0, @local, @local, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 19:45:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x541b, 0x0) 19:45:46 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe403000000000000, @local}}) 19:45:47 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:47 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xec030000, @local}}) 19:45:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x37231e917f0000) 19:45:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 19:45:47 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000006c0)=0x200, 0x20) r1 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x40000) getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0) recvfrom$packet(r1, &(0x7f0000004ac0)=""/4096, 0x1000, 0x0, 0x0, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r0, &(0x7f00000005c0)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0xd400}], 0x1, &(0x7f0000000200)=""/20, 0x14, 0xf5}, 0x100) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)) move_pages(0x0, 0x0, &(0x7f0000000540), &(0x7f0000000580)=[0x0], &(0x7f0000000600)=[0x0, 0x0], 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="1400000025000002000000000000ad766da3f292c76022b5000000000000b471dd67cd689f89fef60f8859fa8270951df479ad2a48fb7dc646656eee9d5011101bd0292984d00f2b023c39dafe7557c8a08b43cc3602d3d257077b"], 0x1}}, 0x0) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x0) setsockopt$TIPC_DEST_DROPPABLE(0xffffffffffffffff, 0x10f, 0x81, 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x4, 0x0) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000340)={0x204, 0x9}) r3 = creat(0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) unshare(0x8020000) ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f0000000240)={0x0, 0x0, 0x2}) write$P9_RSETATTR(r3, &(0x7f0000000300)={0x7, 0x1b, 0x2}, 0x7) mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) 19:45:47 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xf000000, @local}}) 19:45:47 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 19:45:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 19:45:47 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:47 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x40000000, @local}}) 19:45:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f000000) 19:45:47 executing program 1: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x281, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r0, 0xc0186419, &(0x7f0000002700)={0x9, &(0x7f0000000040)=""/81, &(0x7f0000002600)=[{0x3, 0x1000, 0x19e, &(0x7f0000000600)=""/4096}, {0x7, 0xdd, 0x8e1, &(0x7f00000000c0)=""/221}, {0x37e2, 0xb7, 0x0, &(0x7f00000001c0)=""/183}, {0x1, 0xe9, 0x39, &(0x7f0000000280)=""/233}, {0x1280, 0xc5, 0x8, &(0x7f0000000380)=""/197}, {0x3, 0x8c, 0x6, &(0x7f0000000480)=""/140}, {0x1, 0x1000, 0x5, &(0x7f0000001600)=""/4096}, {0x9, 0x16, 0x401, &(0x7f0000000540)=""/22}, {0x3ff, 0x1, 0x2, &(0x7f0000000580)=""/1}]}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = add_key(&(0x7f0000002800)='pkcs7_test\x00', &(0x7f0000002840)={'syz', 0x1}, &(0x7f0000002880)="e2973af72191f3d36dd4318a635a89", 0xf, 0xfffffffffffffffd) add_key$user(0x0, 0x0, 0x0, 0x0, r2) ioctl(r1, 0xc5, &(0x7f0000002740)="13bc9d5423d3318ffa21ba567ebcb8608df7c7eef8ca9a67679e7d6bae51f4024414c1c5ba8dbcebfd47bf430347a5fd1a5c2d039ededd101100f60486d8c0b22689327207a6d18f07350d9105a2d591bda20d8ef953f7a2f4934301fe904b0c827edb8f947df67d00ab953f0bc169b48dabad022e286bee99e9bd615927a070ca9606f2cb85290ba0047709794f67cc") setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f00000028c0)=0x1, 0x4) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:47 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe, @local}}) 19:45:48 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) tkill(r2, 0x1000000000016) 19:45:48 executing program 3: bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) 19:45:48 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$NBD_SET_SIZE(r1, 0xab02, 0x8) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'syz_tun\x00', {0x2, 0x4e20, @loopback}}) 19:45:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 19:45:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x5) 19:45:48 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfeffffff00000000, @local}}) 19:45:48 executing program 1: socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x2, 0x0) ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f0000000040)) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) 19:45:48 executing program 3: 19:45:48 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe6030000, @local}}) 19:45:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 19:45:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x60182300) 19:45:48 executing program 3: 19:45:49 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe803, @local}}) 19:45:49 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f00000000c0)) 19:45:49 executing program 3: 19:45:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 19:45:49 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(0x0, 0x1000000000016) 19:45:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4b47, 0x0) 19:45:49 executing program 3: 19:45:49 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x4, @local}}) 19:45:49 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200000, 0x0) getsockname$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000080)=0x1c) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x5000000) 19:45:49 executing program 3: 19:45:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x80087601, 0x0) 19:45:49 executing program 3: 19:45:49 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='memory.swap.current\x00', 0x0, 0x0) ioctl$KDGETLED(r0, 0x4b31, &(0x7f00000000c0)) mq_timedreceive(r0, &(0x7f0000000040)=""/31, 0x1f, 0x8000009, &(0x7f0000000080)={0x0, 0x989680}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)="2426da2d6c6f776c616e3100", 0xfffffffffffffffc) r2 = pkey_alloc(0x0, 0x0) pkey_free(r2) add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r3 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f00000003c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000280)) splice(r0, &(0x7f0000000400), r0, &(0x7f0000000440)=0x58, 0x6, 0x1) add_key$user(0x0, 0x0, 0x0, 0x0, r3) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000002c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x1, @multicast1}}) ioctl$KDMKTONE(r0, 0x4b30, 0x8) sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000380)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2d300013}, 0xc, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000) 19:45:49 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xc, @local}}) 19:45:49 executing program 3: 19:45:50 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) r1 = syz_open_pts(r0, 0x0) read(r1, &(0x7f00000000c0)=""/1, 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)) r2 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) tkill(r2, 0x0) 19:45:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe8030000) 19:45:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 19:45:50 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3e4, @local}}) 19:45:50 executing program 1: r0 = syz_open_dev$media(&(0x7f0000000140)='/dev/media#\x00', 0x10000, 0x440000) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000180)=@routing={0x1d, 0x2, 0x1, 0x6, 0x0, [@mcast2]}, 0x18) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x2, 0x0) ioctl$KVM_GET_IRQCHIP(r2, 0xc208ae62, &(0x7f0000000040)={0x0, 0x0, @ioapic}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:50 executing program 3: 19:45:50 executing program 3: 19:45:50 executing program 1: r0 = semget(0x1, 0x7, 0x28a) semctl$GETNCNT(r0, 0x0, 0xe, &(0x7f00000000c0)=""/134) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @local}}) close(r1) 19:45:50 executing program 3: 19:45:50 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3ea, @local}}) 19:45:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 19:45:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x600) 19:45:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29000000) 19:45:50 executing program 3: 19:45:50 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x100, 0x8000) r2 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x401) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={'bond_slave_0\x00', {0x2, 0xfffffffffffffffc, @empty}}) 19:45:50 executing program 2: 19:45:50 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe00, @local}}) 19:45:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 19:45:51 executing program 3: shmget(0x2, 0x1000, 0x0, &(0x7f0000ffd000/0x1000)=nil) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:51 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x400000000000000, @local}}) 19:45:51 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'veth1_to_bond\x00', &(0x7f00000000c0)=@ethtool_rxfh={0x46, 0x0, 0x0, 0x0, 0x0, "7682f7"}}) 19:45:51 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xffffffffffffd2c1, 0x8080) ioctl$TIOCNOTTY(r0, 0x5422) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc) 19:45:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5451, 0x0) 19:45:51 executing program 3: syz_execute_func(&(0x7f0000000080)="3666440f50f541c3c4e2c9975842c4c27d794e0066420fe2e33e0f1110a94201f09dcccc196f") clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket$inet6(0xa, 0x1, 0x7) mknod(&(0x7f0000000400)='./file0\x00', 0x0, 0x0) r0 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r0) write$tun(r2, 0x0, 0x0) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:51 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xea03, @local}}) 19:45:51 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x4, 0x1390497d3ffaf51c) getpeername$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, &(0x7f0000000080)=0x10) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) timer_create(0x7, &(0x7f00000000c0)={0x0, 0x2b, 0x1}, &(0x7f0000000100)=0x0) timer_delete(r2) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 19:45:51 executing program 3: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000700)=ANY=[@ANYPTR=&(0x7f00000000c0)=ANY=[]]) r0 = getpid() getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000400)={0x0}, &(0x7f0000000440)=0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000005c0), &(0x7f0000000600)=0x8) r2 = syz_open_procfs(r0, &(0x7f0000000540)='stack\x00') ioctl$VIDIOC_S_MODULATOR(r2, 0x40445637, &(0x7f0000000880)={0x80, "5a11259fdb16d7e0ab71509aa0159be28f0d4159095d05f5f3f110274712a3d6", 0x100, 0xf800000000, 0x3702, 0x1, 0x7}) r3 = socket$inet6(0xa, 0x400000000001, 0x0) close(r3) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000680)='trusted.overlay.opaque\x00', &(0x7f0000000740)='y\x00', 0x2, 0x2) getsockopt$inet6_mreq(r3, 0x29, 0x0, &(0x7f00000000c0)={@ipv4={[], [], @local}}, &(0x7f00000003c0)=0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={"00001c0000000000001c9e000200", 0x811}) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0xfffffffffffffffe}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000008001b0000000000"], 0x1}}, 0x0) r6 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000800)={r1, 0x3b, "3d486d5801b4db63c1f3b9b67c62bb3ba4aa24ccb3cabc34a32e78356bf678ff9b9d4ae7e84a647e59ffed70fa1873638c3c5968cf55e3af71e274"}, 0x0) ftruncate(r6, 0x2007fff) fremovexattr(r4, &(0x7f0000000480)=ANY=[@ANYBLOB="747275737461642e00001c00000300000000020000f7"]) ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000000)) write$P9_RSETATTR(r6, &(0x7f0000000040)={0x7}, 0x7) ioctl$TUNSETVNETBE(r4, 0x400454de, &(0x7f0000000240)=0x1) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000340)={r7, 0x8}, &(0x7f0000000380)=0x8) sendfile(r3, r6, &(0x7f0000d83ff8), 0x800000000024) getsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f00000004c0), &(0x7f0000000500)=0x4) creat(&(0x7f0000000200)='./bus\x00', 0x0) write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000580)={0x18, 0xf, 0x0, {{0x31, 0x3, 0x1}, 0x3}}, 0x18) 19:45:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29) 19:45:51 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x4}}}) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:45:51 executing program 1: r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) getsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000040), 0x4) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x80000000, @multicast2}, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x15}}, {0x2, 0x4e22, @multicast2}, 0x20, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000080)='bridge0\x00', 0x600000000000, 0x1, 0x2}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$TIOCOUTQ(r0, 0x5411, &(0x7f0000000140)) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"000000000400000000000000000300", {0x2, 0x0, @remote}}) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f00000001c0)={0x0, {0x2, 0x4e23, @rand_addr=0x200}, {0x2, 0x4e20, @rand_addr=0xc5ba}, {0x2, 0x4e21, @empty}, 0x20a, 0x0, 0x0, 0x0, 0x859, &(0x7f0000000180)='veth0_to_team\x00', 0x1, 0xfffffffffffffff7, 0x7}) write$selinux_load(r0, &(0x7f0000000600)={0xf97cff8c, 0x8, 'SE Linux', "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"}, 0x1010) 19:45:51 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:45:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000) 19:45:51 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xf}}}) 19:45:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:45:52 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:45:52 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) 19:45:52 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:52 executing program 3: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000700)=ANY=[@ANYPTR=&(0x7f00000000c0)=ANY=[]]) r0 = getpid() getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000400)={0x0}, &(0x7f0000000440)=0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000005c0), &(0x7f0000000600)=0x8) r2 = syz_open_procfs(r0, &(0x7f0000000540)='stack\x00') ioctl$VIDIOC_S_MODULATOR(r2, 0x40445637, &(0x7f0000000880)={0x80, "5a11259fdb16d7e0ab71509aa0159be28f0d4159095d05f5f3f110274712a3d6", 0x100, 0xf800000000, 0x3702, 0x1, 0x7}) r3 = socket$inet6(0xa, 0x400000000001, 0x0) close(r3) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000680)='trusted.overlay.opaque\x00', &(0x7f0000000740)='y\x00', 0x2, 0x2) getsockopt$inet6_mreq(r3, 0x29, 0x0, &(0x7f00000000c0)={@ipv4={[], [], @local}}, &(0x7f00000003c0)=0x14) r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={"00001c0000000000001c9e000200", 0x811}) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000100)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0xfffffffffffffffe}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="030000000000000008001b0000000000"], 0x1}}, 0x0) r6 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000800)={r1, 0x3b, "3d486d5801b4db63c1f3b9b67c62bb3ba4aa24ccb3cabc34a32e78356bf678ff9b9d4ae7e84a647e59ffed70fa1873638c3c5968cf55e3af71e274"}, 0x0) ftruncate(r6, 0x2007fff) fremovexattr(r4, &(0x7f0000000480)=ANY=[@ANYBLOB="747275737461642e00001c00000300000000020000f7"]) ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000000)) write$P9_RSETATTR(r6, &(0x7f0000000040)={0x7}, 0x7) ioctl$TUNSETVNETBE(r4, 0x400454de, &(0x7f0000000240)=0x1) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000340)={r7, 0x8}, &(0x7f0000000380)=0x8) sendfile(r3, r6, &(0x7f0000d83ff8), 0x800000000024) getsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f00000004c0), &(0x7f0000000500)=0x4) creat(&(0x7f0000000200)='./bus\x00', 0x0) write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000580)={0x18, 0xf, 0x0, {{0x31, 0x3, 0x1}, 0x3}}, 0x18) 19:45:52 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xb}}}) 19:45:52 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f00000001c0)=0x5, 0x4) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/pfkey\x00', 0x402200, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x4) request_key(&(0x7f0000000140)="00210400000000000000", &(0x7f0000000180)={'syz', 0x1}, &(0x7f0000000200)='\x00', 0xfffffffffffffffb) add_key$user(0x0, 0x0, 0x0, 0x3ec, 0xffffffffffffffff) syz_open_dev$cec(&(0x7f0000000240)='/dev/cec#\x00', 0x1, 0x2) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2) 19:45:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803000000000000) 19:45:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x40049409, 0x0) 19:45:52 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:52 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x7}}}) 19:45:52 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xf2, 0x0) getsockopt$packet_buf(r1, 0x107, 0x6, &(0x7f0000000040)=""/92, &(0x7f00000000c0)=0x5c) 19:45:52 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000000) 19:45:52 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x400000, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000040), &(0x7f0000000080)=0x4) link(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') r2 = accept$nfc_llcp(r1, 0x0, &(0x7f0000000140)) listen(r2, 0x5) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 19:45:52 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:52 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x9}}}) 19:45:52 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:52 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={"62060000000000000000003d00", {0x2, 0x4e21, @loopback}}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300)='/dev/zero\x00', 0x800101046, 0x0) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0x0, 0x500, 0x70bd2c, 0x0, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x8000) 19:45:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000080) 19:45:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 19:45:53 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xc}}}) 19:45:53 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x101) 19:45:53 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x6}}}) 19:45:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x40087602, 0x0) 19:45:53 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10) 19:45:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xa}}}) 19:45:53 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x2, 0x0) 19:45:53 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) 19:45:53 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:45:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5450, 0x0) 19:45:53 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key(&(0x7f0000000080)='asymmetric\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)="7e66e5178267504c39762c388716443c9760e9ce81a287375d694cefdf68646008c1f412eeb98a4a8df0d9a6b22951d08aee1e8d9357452876c239d622c322be0021b4a3e2db5a662aa977e964d89c1a60883c957ad9f203b6faa4351bccbb9e4a98c60f7b13d8b7", 0x68, 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x39, r1) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0xa00, 0x0) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x5}}}) 19:45:53 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:45:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10000000) 19:45:53 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0xc040, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @multicast1, @empty}, &(0x7f0000000080)=0xc) setsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f00000000c0)={@dev={0xfe, 0x80, [], 0x13}, r2}, 0x14) 19:45:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x8}}}) 19:45:53 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:53 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:45:54 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) keyctl$dh_compute(0x17, &(0x7f0000000000)={r1, r1, r1}, &(0x7f0000000040)=""/122, 0x7a, &(0x7f0000000140)={&(0x7f00000000c0)={'tgr128-generic\x00'}, &(0x7f0000000100)="1cc91c2bd98d4c09c6aab7fd35a676b642a8126d98fb6e9c4a5379256888a7e22ff73b86d2cc", 0x26}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={'ip6gretap0\x00', {0x2, 0x1, @empty}}) 19:45:54 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 19:45:54 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xe}}}) 19:45:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000) 19:45:54 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = dup3(r0, r0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000200)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r1, &(0x7f0000000280)={0x13, 0x10, 0xfa00, {&(0x7f0000000000), r2, 0x2}}, 0x18) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000002c0)=0x1008) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000300)={r3, 0x100000001, 0x6, [0x3ff, 0xa3, 0xfffffffffffffffd, 0x400, 0x9, 0x0]}, 0x14) 19:45:54 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) 19:45:54 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x90}}}) 19:45:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000000000000000) 19:45:54 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r2 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x694, 0x10001) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000040)={0x0, @in6={{0xa, 0x4e22, 0x6, @dev={0xfe, 0x80, [], 0x21}, 0x3ff}}}, &(0x7f0000000100)=0x84) getsockopt$inet_sctp6_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000140)={r3, 0x40003, 0xb169, 0x2}, &(0x7f00000001c0)=0x10) r4 = request_key(&(0x7f0000000180)='blacklist\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000240)="626f6e645f736c6176655f30000e00", 0xfffffffffffffffc) keyctl$reject(0x13, r1, 0x0, 0x3, r4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:54 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500) 19:45:54 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) request_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0xfffffffffffffffd) add_key$user(0x0, 0x0, 0x0, 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:54 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x3}}}) 19:45:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f) 19:45:54 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:54 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key(&(0x7f0000000040)='cifs.spnego\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000001c0)="9330d399321cfee70365a71d1dfedb7ca530947553dd393b3725e787055aa10f838e59d262dca8dfc62b32b5eb9c6dce6f93a182c0197678aed1221e214d403aec0bcaf4c6f467f2332ffb6191474e1bd45b2bc778a03a785053862f0137b539cca0f8fca3c2eaef331431c7580aeb209afdd1232712206e7aef918b22bfcc7de9c20069cc95000b8eb36aa0feab4421441c88b1b11d2abb4268d3d6ebb90fc81036e4614d84242d0d83c69ba176ae6146661294f34d2582b39a83fbe20d53dd70f13407195ed7acb4b44f28aa398c1a5f86b6", 0xd3, 0xfffffffffffffff9) add_key$user(0x0, 0x0, 0x0, 0x5a79930e65846c5d, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) pipe2(&(0x7f00000000c0)={0xffffffffffffffff}, 0x800) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x4c, r3, 0x608, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x38, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x26a}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0xd0}, 0x4000) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x100, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00') ioctl$IOC_PR_RELEASE(r2, 0x401070ca, &(0x7f0000000580)={0x9709, 0x6b}) sendmsg$IPVS_CMD_SET_DEST(r4, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x24, r5, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x800}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40040}, 0x0) write$P9_RVERSION(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="15dfffff64fffffac80aa92cbdd7a7c74044c8af6d93cc7100969d96a13d3a2a1c1a962722e827fc33cff19b6feacaeb1589f8f811f35b5e4bb3ecbbeb4aa1df02ccf56d1394d2b5789685f292c3968bbcbeda029e3e6f09a666eeada1cc2321ef3d8d359f0000000087ee96b8f97c8dc2996099c5dc7ecee0f835a1f7d95a177cfc336afcb85663b92ed6c1f45998c72084e797980652480000000000000000000000000000"], 0x15) 19:45:54 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x74}}}) 19:45:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f00) 19:45:54 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x2}}}) 19:45:55 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) mkdir(&(0x7f00000000c0)='./file0/../file0\x00', 0x11a) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x40000, @loopback}}) r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video2\x00', 0x2, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000140)='/dev/vcs#\x00', 0x51, 0x400000) getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000002c0)={0x0, 0x5, 0x0, 0x0, 0x7, 0x8}, &(0x7f0000000300)=0x14) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000340)={0xfffffffffffff22b, 0x6, 0x200, 0x7438, 0x8000, 0x9, 0x6, 0x80, r3}, 0x20) ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f0000000180)={0xf, 0x9, 0x81, 0x84000, r2}) openat$vimc2(0xffffffffffffff9c, &(0x7f0000000380)='/dev/video2\x00', 0x2, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x14000, 0x0) r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x80800, 0x0) fanotify_mark(r4, 0x20, 0x1, r5, &(0x7f0000000080)='./file0\x00') ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000280)=@get={0x1, &(0x7f00000001c0)=""/178, 0xef5}) 19:45:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfec00) 19:45:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800) 19:45:55 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) io_setup(0x6, &(0x7f0000000000)=0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000a40)='/dev/dmmidi#\x00', 0x81, 0x3) ioctl$VIDIOC_ENUMSTD(r2, 0xc0485619, &(0x7f0000000a80)={0x5, 0xf900, "753991c9e434de446338c758afd07361607a80db12fec83d", {0x200, 0xd3}, 0x2}) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ppp\x00', 0x400, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.memory_pressure\x00', 0x0, 0x0) r5 = syz_open_dev$usb(&(0x7f0000000540)='/dev/bus/usb/00#/00#\x00', 0x2, 0x20840) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0)='/dev/autofs\x00', 0x2000, 0x0) ioctl$SIOCGIFMTU(r3, 0x8921, &(0x7f0000000ac0)) r7 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000008c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000980)='/dev/hwrng\x00', 0x20000, 0x0) io_submit(r1, 0x8, &(0x7f0000000a00)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0x9, r0, &(0x7f0000000040)="fb3df4325cb2a11c4a6014aa3a83e7e4525ce9af47c1c0983d9570773c23966de9efdcab050e73242746b9349b4e1dbf5bf860919b4c9cd596532f24238f293c2800b028df31bdd9fe8548240bb996d59d89394f0cab6f35361f87239e0962bc38931e6c688d683a3c12f103d526628e4cd4955b68b40a585cc62f4537ce1d1c3cee3d9b228b0fb2bc949525c6337a53ab3df28318a4f9404ab75ea5d75adeb0d47cd45c5b9e1bbaf1389dc4586eebdfc5c8b19e5c5492078b657cd0005c4fb9f8d19ccc779c5d7edc07f508c915", 0xce, 0x7, 0x0, 0x1}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x7, r0, &(0x7f0000000180)="fe06962c8b152c8f2567c1e0e2d22b86b2bcef31601cd0071c5460a17c4ef64eca226a1c1cce8bf44f4a5f832c7b910bfad92031a30060bc0492de54d8915dfaece6a5e673226fb9c2bfa89d2b7ce4384b4c8659d78e3e1f529914431a19f5bccce0299b152e5b39b78f3de10d2d4fdf0360daa73e477965f95b17a498ca1d608ca905f652d0eab98604d9f2c137e4788f640a7567564eb96a4369c58250cb931d1fa4950a231d3c1c4e08578c1f05bfeb23023a3ea415cc2da684689a5fa41cc648bd49c875ec50cef34d", 0xcb, 0x4, 0x0, 0x1, r3}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x8, 0x4, r0, &(0x7f0000000300)="1a86904a88d4b586bca480477729e8ab5d4e1145ff9bd9032d119cd8bacad30445cf61d603ac5470af4bd72c5e6084b2ff3e683f46ef7fc35661a027dee474db33b53d849df969a1351161d30f2b3b377a215276ea1936f51ee7cc15d7fb612e0d60d4eb40dafcbb10adcb1b8434c50eadfb38e91969485434fceace177ba3f8498b85a1933481dafcf053648d737a2e5d381e025fab92a57d240852f2b4e9e1406900817964214d42438cc34826dc1c72c3e29ee2e986028832bb208bea088802c5bde3e266e0baf43be83a4740cc458b3057", 0xd3, 0x3, 0x0, 0x1, r4}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x5, r0, &(0x7f0000000480)="6b1e87847a64487aca90e8e34d629251445e102b9e0cfe28ef5775cee6aa5fc5387939166d3d5d62fe088c03c91740d24378c9fa7e9125b1b4194c36325e4b6f2aa08475f0b7cf6f92c5061adea24311cae2c61df8de41c3942b86d9501496c720121957dbd94154c66112a4f10a19dff2f6c0c7ee74a93be87ae613b73ee192e79cc3f7aba99b87ee90ce646fcc2538869419bbd633cf0399c6d97bef5d57ebf619bfde59dcbed9b28ab4af0d5a85b3d72125680ef746c735", 0xb9, 0x9, 0x0, 0x2, r5}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x7, 0x5, r0, &(0x7f0000000600)="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", 0xfe, 0x0, 0x0, 0x0, 0xffffffffffffff9c}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x3, 0x7, r0, &(0x7f0000000740)="9bbe52b0f0c3ef588e3beed5a3bc066896657356889d10b9940c79e53c02f7050fa0b067dd3108eaf300c0466da978fc30c41a56257672ce8ac96e3400e737d7babe5f7e7a", 0x45, 0x1, 0x0, 0x2, r6}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000840)="429376e082bea36bc305638b76d3a46cf1d8a94b2ba1b3bff45bb90dccd4cca5b7c7cedd2583a730db7029819d52bfb98a4d0cb6742d08587f83480c7bda316234b9d9279fef60cd71afb697015a5e6144b4d5e10ea42d3fb09a8b0b201f9f16afc7a94ce9db9a0da9f2a9e2", 0x6c, 0xe6e, 0x0, 0x0, r7}, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0xf, 0x0, r0, &(0x7f0000000940)="050c", 0x2, 0x7, 0x0, 0x0, r8}]) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0xd}}}) 19:45:55 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfec00) 19:45:55 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xe}}}) 19:45:55 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000040), 0x4) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000080)={0x6, r1, 0x1}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000000c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) 19:45:55 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x1ffffe, 0x0) write$P9_RSETATTR(r1, &(0x7f0000000040)={0x7, 0x1b, 0x2}, 0x7) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000000)=0x9) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:55 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xa}}}) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 19:45:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000000000000000) 19:45:55 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:55 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x649, 0x111400) ioctl$VIDIOC_G_PARM(r1, 0xc0cc5615, &(0x7f0000000040)={0xb, @output={0x1000, 0x1, {0x5, 0x4}, 0x80000000, 0x4}}) r2 = getpgid(0xffffffffffffffff) getpgid(r2) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) getpgid(r2) 19:45:55 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xd}}}) 19:45:56 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) tkill(r1, 0x19) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000040)=0x8) 19:45:56 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f) 19:45:56 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000) 19:45:56 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xb}}}) 19:45:56 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={0x0, 0x10000, 0x1}, &(0x7f0000000100)=0xc) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000140)={r2, @in6={{0xa, 0x4e22, 0x3ff, @mcast2, 0x100000001}}, 0x0, 0x2}, &(0x7f0000000200)=0x90) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x82000, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f0000000240)=@assoc_value={r3, 0x1ff}, &(0x7f0000000280)=0x8) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:56 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x6}}}) 19:45:56 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:56 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00) 19:45:56 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x2}}}) 19:45:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000) 19:45:56 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @empty}}) 19:45:56 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:56 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xf}}}) 19:45:56 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000000)) r1 = add_key(&(0x7f0000000040)='cifs.spnego\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f00000000c0)="7d0213abb8a53eb6d4227962c46da9ebc34c4de3311b1d5f247d0ef61d22fb17962e3b6256d8b2b7da7508749c23402634daea3bf4a0472b1e8f646e0bbc9bf010db103eabb746cdbb6d1fffaff33e4971588086377851098686b4782e787f97ba19251721dc8254b96bd602de60084cb0a0450e5c550940059562aecc8c15b9a63aa7636c05ac2e8d461b523f2c8edc39481426122326ce9fcfa11f8ab3d3e91369963b315072ddd2450491cbaa1924a19b25c2cb3bffaf6fafde2a39785f1e442fca52052778c2b789162e551aabacb4ae66c7b99a60c9d5768af17766f7ca237d7e2fd3296e2e71be78ccde5be2c483c1cf23fe50e617ae950f9eeb05", 0xfe, 0x0) add_key$user(0x0, 0x0, 0x0, 0xffffffffffffff68, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 19:45:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000) 19:45:56 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(0x0, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:57 executing program 3: r0 = syz_open_dev$dri(0x0, 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x7}}}) 19:45:57 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 1: syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0xfc3f, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = dup2(r0, r0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f0000000100)={0xa4ad, 0x3ff, 0x2, 0x2, 0x3f, 0x5, 0x6, 0xbcb2, 0x0}, &(0x7f0000000180)=0x20) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000600)={r2, 0x1000, "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"}, &(0x7f00000001c0)=0x1008) r3 = request_key(&(0x7f0000000000)='.request_key_auth\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="626f6e645f736c6176655f30000e00", 0xfffffffffffffffc) add_key$user(0x0, 0x0, 0x0, 0xfffffee4, r3) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x4, @loopback}}) r4 = fcntl$getown(r0, 0x9) ptrace$poke(0x5, r4, &(0x7f00000000c0), 0x8) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000200)) 19:45:57 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000) 19:45:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900) 19:45:57 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x74}}}) 19:45:57 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x101000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000040)={0x2, 0x56bb, 0x5, 'queue1\x00'}) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:57 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x4}}}) 19:45:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7f911e233700) 19:45:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f0000000000) 19:45:57 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/mls\x00', 0x0, 0x0) ioctl$VIDIOC_S_CROP(r1, 0x4014563c, &(0x7f0000000140)={0x1, {0x8000, 0x5c, 0xa487, 0x2}}) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x60000, 0x0) ioctl$sock_ifreq(r2, 0x89b1, &(0x7f0000000080)={'bridge_slave_1\x00', @ifru_settings={0x0, 0x81, @fr=&(0x7f0000000040)={0x4, 0x9, 0x0, 0x9, 0x7, 0x3}}}) clock_gettime(0x0, &(0x7f0000000440)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000480)={0x0, 0x0}) write$evdev(r1, &(0x7f00000004c0)=[{{r3, r4/1000+10000}, 0x16, 0xc8, 0x1ff}, {{}, 0x17, 0x1, 0xeae}, {{}, 0x3, 0xfffffffffffffffd, 0x5b9}, {{}, 0x1f, 0x8eb, 0x6}, {{r5, r6/1000+10000}, 0x4, 0x8000, 0x7}], 0x78) ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000400)={0x3, 0x1, &(0x7f0000000180)=""/180, &(0x7f0000000240)=""/246, &(0x7f0000000340)=""/131, 0x1}) r7 = syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x9, 0x200) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000600)={0x0, 0x5c, &(0x7f0000000540)=[@in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e21, @rand_addr=0x3}, @in={0x2, 0x4e22, @empty}, @in={0x2, 0x4e22, @empty}, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x6}]}, &(0x7f0000000640)=0x10) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f0000000680)={r8, 0x9, 0x0, 0x0, 0x3}, &(0x7f00000006c0)=0x18) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:57 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x8}}}) [ 480.168008] QAT: Invalid ioctl [ 480.183624] QAT: Invalid ioctl [ 480.202705] QAT: Invalid ioctl [ 480.213398] QAT: Invalid ioctl 19:45:57 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 1: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PIO_FONTX(r1, 0x4b6c, &(0x7f0000000600)="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") read$eventfd(r0, &(0x7f0000000140), 0x8) r2 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r3 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x3, 0x82000) ioctl$VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000040)={0xff, 0x0, 0x1}) bind$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e23}, 0x6e) getsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 19:45:57 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:57 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x3}}}) 19:45:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 19:45:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40000) 19:45:58 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xc}}}) 19:45:58 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 19:45:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40000) 19:45:58 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x90}}}) 19:45:58 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0xfffffffffffffe20, 0xfffffffffffffffb) setsockopt$inet_tcp_buf(r0, 0x6, 0x1c, &(0x7f0000000000)="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", 0xff) socket$bt_hidp(0x1f, 0x3, 0x6) fcntl$setlease(r0, 0x400, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/policy\x00', 0x0, 0x0) 19:45:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18) 19:45:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700) 19:45:58 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:58 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x9}}}) 19:45:58 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x231860) 19:45:59 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80040, 0x80) getsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00') getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000140)={0x0, @empty}, &(0x7f0000000180)=0xc) getpeername$packet(r1, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000200)=0x14) recvmsg(r0, &(0x7f0000001880)={&(0x7f0000000240)=@xdp={0x2c, 0x0, 0x0}, 0x80, &(0x7f00000017c0)=[{&(0x7f00000002c0)=""/141, 0x8d}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000000380)=""/168, 0xa8}, {&(0x7f0000000440)=""/134, 0x86}, {&(0x7f0000000500)=""/138, 0x8a}, {&(0x7f0000001600)=""/33, 0x21}, {&(0x7f0000001640)=""/83, 0x53}, {&(0x7f00000016c0)=""/207, 0xcf}], 0x8, &(0x7f0000001840)=""/47, 0x2f}, 0x3) getpeername$packet(r1, &(0x7f00000018c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001900)=0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001940)={'syzkaller0\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001d00)={{{@in=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in=@remote}}, &(0x7f0000001e00)=0xe8) getsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000001e40)={@mcast2, 0x0}, &(0x7f0000001e80)=0x14) accept$packet(r1, &(0x7f0000001ec0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001f00)=0x14) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001f40)={{{@in6, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6}}, &(0x7f0000002040)=0xe8) recvmmsg(r0, &(0x7f0000005e40)=[{{&(0x7f0000002080)=@hci={0x1f, 0x0}, 0x80, &(0x7f00000032c0)=[{&(0x7f0000002100)=""/127, 0x7f}, {&(0x7f0000002180)=""/50, 0x32}, {&(0x7f00000021c0)=""/4096, 0x1000}, {&(0x7f00000031c0)=""/77, 0x4d}, {&(0x7f0000003240)=""/54, 0x36}, {&(0x7f0000003280)=""/17, 0x11}], 0x6, &(0x7f0000003340)=""/150, 0x96}, 0x5e5}, {{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000003400)=""/163, 0xa3}, {&(0x7f00000034c0)=""/242, 0xf2}, {&(0x7f00000035c0)=""/61, 0x3d}, {&(0x7f0000003600)=""/11, 0xb}], 0x4, &(0x7f0000003680)=""/114, 0x72}, 0x7fffffff}, {{&(0x7f0000003700)=@nl=@proc, 0x80, &(0x7f0000004c40)=[{&(0x7f0000003780)=""/135, 0x87}, {&(0x7f0000003840)=""/154, 0x9a}, {&(0x7f0000003900)=""/184, 0xb8}, {&(0x7f00000039c0)=""/113, 0x71}, {&(0x7f0000003a40)=""/4096, 0x1000}, {&(0x7f0000004a40)=""/108, 0x6c}, {&(0x7f0000004ac0)=""/119, 0x77}, {&(0x7f0000004b40)=""/108, 0x6c}, {&(0x7f0000004bc0)=""/79, 0x4f}], 0x9}, 0x3}, {{&(0x7f0000004d00)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000005d80)=[{&(0x7f0000004d80)=""/4096, 0x1000}], 0x1, &(0x7f0000005dc0)=""/71, 0x47}, 0xffffffffffffff01}], 0x4, 0x10020, &(0x7f0000005f40)={0x77359400}) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000005f80)={@broadcast, @loopback, 0x0}, &(0x7f0000005fc0)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000060c0)={{{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f00000061c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000006200)={'bond0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000006240)={'veth0_to_bond\x00', 0x0}) getsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000006280)={@multicast1, @loopback, 0x0}, &(0x7f00000062c0)=0xc) accept(r0, &(0x7f00000063c0)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000006440)=0x80) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000006480)={{{@in, @in6=@ipv4={[], [], @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@empty}}, &(0x7f0000006580)=0xe8) accept4$packet(r1, &(0x7f0000006600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000006640)=0x14, 0x800) getsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f0000006680)={@local, 0x0}, &(0x7f00000066c0)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000006700)={'lo\x00', 0x0}) getsockname$packet(r1, &(0x7f0000006740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000006780)=0x14) getsockname(r1, &(0x7f00000067c0)=@can={0x1d, 0x0}, &(0x7f0000006840)=0x80) getsockname$packet(r1, &(0x7f0000006880)={0x11, 0x0, 0x0}, &(0x7f00000068c0)=0x14) getpeername$packet(r1, &(0x7f0000006900)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000006940)=0x14) sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000007480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000008}, 0xc, &(0x7f0000007440)={&(0x7f0000006980)={0xab8, r2, 0x92c, 0x70bd2c, 0x25dfdbfd, {}, [{{0x8, 0x1, r3}, {0x1a4, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r4}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8}}, {0x8, 0x6, r5}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x9596}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x401}}}]}}, {{0x8, 0x1, r7}, {0xec, 0x2, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0xfffffffffffffffa}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x235}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x10001}}}]}}, {{0x8, 0x1, r10}, {0x258, 0x2, [{0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'broadcast\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r11}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x3f}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r12}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x7fff}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8}}}]}}, {{0x8, 0x1, r13}, {0x2ac, 0x2, [{0x64, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x34, 0x4, [{0x9, 0x8000, 0x7ff00, 0x1eb1ce31}, {0x7, 0x6, 0x7f, 0x400}, {0x12b, 0xeb, 0xffffffffffffffff}, {0x0, 0x7, 0x5, 0x3}, {0x6, 0x3447, 0x6, 0xffffffffffff7025}, {0x81, 0xffffffffffffff00, 0x9, 0x1}]}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r14}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r15}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r16}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x1}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x8, 0x44, 0x844}, {0x2, 0x0, 0xfffffffffffffffc, 0x9}, {0x7fff, 0x9, 0x5, 0x6}, {0x1, 0x1, 0x6, 0x80000000}]}}}]}}, {{0x8, 0x1, r17}, {0xec, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r18}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0xfffffffffffffffd}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r19}}}]}}, {{0x8, 0x1, r20}, {0x4}}, {{0x8, 0x1, r21}, {0x16c, 0x2, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r22}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r23}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x200}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8}, {0x8, 0x4, 0xb89}}, {0x8, 0x6, r24}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r25}}}]}}, {{0x8, 0x1, r26}, {0x74, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x3f}}}]}}]}, 0xab8}, 0x1, 0x0, 0x0, 0x2000c001}, 0x4000000) 19:45:59 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500) 19:45:59 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0x5}}}) 19:45:59 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 19:45:59 executing program 1: add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) ioctl$KIOCSOUND(r0, 0x4b2f, 0x4) openat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x100) r1 = add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r1) fsetxattr$security_ima(r0, &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@v2={0x3, 0x1, 0x11, 0x5, 0xf1, "3fdc008397a823261d0a6d477474ed5cab5926028e5093aa725584603c5a491b17d68d1dabf3f53a5ee86b651c36caf0e145d65c0f9c4ddb7f7b07c733e0ca5b67a0d0a317f4970edb649a1d820003cb845589a842214ef72af9f42a7d08feddcd17c3900d16a64aeb42b65dfedd96b7519c0b3ea45bf08af8f651915f7eee4cbfd7e94ad88d9490b554c76edb490196287e50b6077338cb483c33baae4299c70e0d20ba0605b7205807f4694565576fa484af835a49a9fcda8381a209a6984072e8897db6a46c06595d746f6119c12e947a56aa4390a2c795b4cab0fd0e3d0daec9e1e0f4f0f4f07bf7cfba4b1e85e414"}, 0xfb, 0x3) 19:45:59 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:45:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7) 19:45:59 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup2(r3, r2) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r5, &(0x7f0000b55000)={0x2, 0x2}, 0x10) ioctl$sock_FIOSETOWN(r5, 0x8901, &(0x7f0000000040)=0xffffffffffffffff) ioctl$int_in(r5, 0x5452, &(0x7f00000000c0)=0x6) sendto$inet(r5, 0x0, 0x0, 0x900000020000000, &(0x7f0000000000)={0x2, 0x2, @loopback}, 0x10) sendto$inet(r5, &(0x7f0000000080)="f4", 0x1, 0x8801, 0x0, 0x0) connect$bt_rfcomm(r1, &(0x7f00000001c0)={0x1f, {0x4, 0x8000, 0x0, 0x2, 0x5, 0x1ff}, 0x100}, 0xa) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000080)={0x4, 0x200, 0x10000, [], &(0x7f0000000040)={0x9b096e, 0xf59b, [], @ptr=0x3}}) sendto(r1, &(0x7f00000000c0)="be17390c7f169fa3f2296091b8c39bc02c1d83de75e5e923afd88110eb196a38affd2199febc2e733e3e26a285863a23fa238c955506142c837c054bea3640521bca7b90177a19b723f6202014a37ecfb708d9ae8417f6d378fd02137d8b6860d9b183e94d51051db4416003d759492b846d463bce06a645ec91bf", 0x7b, 0x40480c1, &(0x7f0000000140)=@nfc={0x27, 0x1, 0x0, 0x3}, 0x80) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:59 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f00) 19:45:59 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:45:59 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:45:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf) 19:45:59 executing program 3: syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) 19:45:59 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0xffffffffffffff46, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:45:59 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:45:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 19:46:00 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xf}}}) 19:46:00 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:00 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@mcast2, @in6=@mcast1}}, {{}, 0x0, @in6=@dev}}, &(0x7f00000001c0)=0xe8) write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000280)={0xa0}, 0xa0) mmap(&(0x7f00009c3000/0x2000)=nil, 0x2000, 0x0, 0x4013, r1, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000000)={0x5c, {{0x2, 0x4e21, @multicast1}}, {{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}}}, 0x108) 19:46:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100) 19:46:00 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:00 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29) 19:46:00 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:00 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3e8) 19:46:00 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf) 19:46:01 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xf}}}) 19:46:01 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:01 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = semget$private(0x0, 0x1, 0x404) semctl$SETVAL(r1, 0x1, 0x10, &(0x7f0000000000)=0x7) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r2 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x0, 0x10002) ioctl$SG_EMULATED_HOST(r2, 0x2203, &(0x7f0000000080)) 19:46:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) 19:46:01 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 19:46:01 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:01 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000000c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000100), &(0x7f0000000140)=0xc) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x400941, 0x0) clone(0x13102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mixer\x00', 0x800, 0x0) setsockopt$XDP_TX_RING(r3, 0x11b, 0x3, &(0x7f0000000280)=0x2000, 0x4) tkill(r2, 0x17) ptrace$cont(0x18, r2, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x30, 0x0, 0x0, 0x28}) ptrace$setregs(0x7, r2, 0x2, &(0x7f0000000180)="77f7c15bc4cff7b97c597c40a842a1502d66f9db8954a23a7256c4e4637124e5d8d61cbb7e00ce4998895ab4616d96bdadc089ec932c60ad230882ea7d2d536580d4d05246a526cfa0ca0fb6e1d4a4d5b532fed33cb690a757dd0650519126817d8d5ffe0f556ace09f6d478129cc0690e09708040dc86716ff628617cd43ed5d156ebfc41db3124e108663f370c25c2ab922ad6c9367257fd18a5c74e") ptrace$cont(0x1f, r2, 0x100000000, 0x0) connect$nfc_llcp(r1, &(0x7f0000000040)={0x27, 0x0, 0x0, 0x5, 0x1097, 0x40, "f1b188d4adc3ebde328e04d63cc154cb839c672aad3b94b6602283cbc5bed439e1aa44c82b1b2e12ff8261aeaa72ff03440fb5645112d8d1c95108b648ee1e", 0x19}, 0x60) 19:46:01 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f00000000) 19:46:01 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:01 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:02 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xf}}}) 19:46:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f00000000000000) 19:46:02 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:02 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:02 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8) 19:46:02 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:04 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100000) 19:46:04 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@mcast2, @in6=@mcast1}}, {{}, 0x0, @in6=@dev}}, &(0x7f00000001c0)=0xe8) write$FUSE_CREATE_OPEN(0xffffffffffffffff, &(0x7f0000000280)={0xa0}, 0xa0) mmap(&(0x7f00009c3000/0x2000)=nil, 0x2000, 0x0, 0x4013, r1, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000000)={0x5c, {{0x2, 0x4e21, @multicast1}}, {{0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}}}, 0x108) 19:46:04 executing program 1: openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x4e20, @multicast1}}) syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000000c0)={0x6, &(0x7f0000000080)=[{0x7, 0x7fffffff, 0x6, 0x400}, {0xffffffffffffffc0, 0x100000001, 0x1ff, 0x4}, {0x1, 0x5a46, 0xfffffffffffff801, 0x3}, {0xab6, 0x4, 0x1, 0x4}, {0x7fff80, 0x2, 0x9, 0x40}, {0x0, 0x1, 0x359, 0x9}]}) 19:46:04 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000) 19:46:04 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:04 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:04 executing program 2: ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) 19:46:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000) 19:46:04 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xd}}}) 19:46:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11) 19:46:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 19:46:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x800000000000000) 19:46:05 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x3}}}) 19:46:05 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) ioctl$PPPIOCGFLAGS(r1, 0x8004745a, &(0x7f0000000380)) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@local, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@remote}}, &(0x7f0000000500)=0x86) bind$can_raw(r1, &(0x7f0000000200)={0x1d, r2}, 0x10) getsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x4e23, @loopback}}) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000240)={0x0, @in={{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x16}}}, 0x2, 0x7, 0x3, 0x1ff, 0x1}, &(0x7f0000000300)=0x98) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000340)={r3, 0x80000, 0x5, [0x9, 0xe, 0xfba, 0x2, 0x8]}, 0x12) 19:46:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 19:46:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803000000000000) 19:46:05 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:05 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xd}}}) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000000000000) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10000000000000) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000) 19:46:06 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x3}}}) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 19:46:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x20000000) 19:46:07 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) socket$bt_bnep(0x1f, 0x3, 0x4) r1 = getpgrp(0xffffffffffffffff) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000000)=r1) r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x8, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x118, r3, 0x6, 0x70bd27, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x6c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x10000}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xffffffffffffffc1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}, @IPVS_DEST_ATTR_L_THRESH={0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x7}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x40}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0x2}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xc5}, @IPVS_CMD_ATTR_DEST={0x58, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@empty}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xcf}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7ff}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xfffffffffffffbff}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x9}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}]}, 0x118}, 0x1, 0x0, 0x0, 0x800}, 0x0) 19:46:07 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x14, 0xd}}}) 19:46:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f000000) 19:46:07 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000) 19:46:07 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) socket$inet_udplite(0x2, 0x2, 0x88) 19:46:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x7fff, 0x4000) setsockopt$inet_udp_int(r3, 0x11, 0x6f, &(0x7f0000000080)=0xffff, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000040)={0xf000, 0x6000, 0x1555, 0x9, 0x1}) ioctl$KVM_RUN(r2, 0xae80, 0x0) fadvise64(r2, 0x0, 0xffffffffffff3154, 0x7) ioctl$SCSI_IOCTL_STOP_UNIT(r3, 0x6) [ 490.035143] *** Guest State *** [ 490.039019] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 490.048636] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 490.058222] CR3 = 0x0000000000004000 [ 490.062399] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 490.069635] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 490.077441] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 490.085813] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 490.092289] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 490.099826] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 490.108690] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 490.117497] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 490.126243] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 490.134976] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 490.143441] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 490.152303] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 490.161081] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 19:46:07 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x3}}}) [ 490.183841] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 490.198720] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 490.206926] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 490.219337] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 490.238467] Interruptibility = 00000000 ActivityState = 00000000 [ 490.252499] *** Host State *** [ 490.256601] RIP = 0xffffffff812047de RSP = 0xffff88817a9cf390 [ 490.262824] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 490.269599] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 490.278143] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 490.284430] CR0=0000000080050033 CR3=00000001b9a5a000 CR4=00000000001426e0 [ 490.291694] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 490.306217] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 490.312480] *** Control State *** [ 490.316252] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 490.323110] EntryControls=0000d1ff ExitControls=002fefff [ 490.328913] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 490.336180] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 490.343109] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 490.349910] reason=80000021 qualification=0000000000000002 [ 490.357387] IDTVectoring: info=00000000 errcode=00000000 [ 490.363022] TSC Offset = 0xfffffef7b995b24f [ 490.367562] EPT pointer = 0x00000001c777901e [ 490.433795] *** Guest State *** [ 490.437603] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 490.447864] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 490.471043] CR3 = 0x0000000000004000 [ 490.485511] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 490.498758] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 490.507798] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 490.514435] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 490.520824] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 490.530491] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 490.540745] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 490.549481] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 490.558126] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 490.566776] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 490.575421] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 490.584041] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 490.594396] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 490.602687] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 490.612655] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 490.621276] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 490.628359] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 490.636419] Interruptibility = 00000000 ActivityState = 00000000 [ 490.643025] *** Host State *** [ 490.646957] RIP = 0xffffffff812047de RSP = 0xffff88818858f390 [ 490.653284] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 490.660432] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 490.669052] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 490.675547] CR0=0000000080050033 CR3=00000001b9a5a000 CR4=00000000001426e0 19:46:08 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:08 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000200)=0x0) r2 = gettid() setpgid(r1, r2) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f0000000280)={'bridge_slave_1\x00', {0x2, 0x4e23, @remote}}) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_PORTS(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x401}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r4, 0x102, 0x70bd27, 0x25dfdbfb, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) recvfrom$llc(0xffffffffffffffff, &(0x7f0000000300)=""/185, 0xb9, 0x2, &(0x7f00000003c0)={0x1a, 0x7, 0x7fffffff, 0x8001, 0x8, 0x7, @local}, 0x10) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000040)=[0x0, 0x0], 0x2}) getsockopt$inet_sctp_SCTP_ASSOCINFO(r3, 0x84, 0x1, &(0x7f0000000400)={0x0, 0x7, 0x5, 0x1, 0x3, 0x4}, &(0x7f0000000440)=0x14) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000240)=ANY=[@ANYRES32=r5, @ANYBLOB="00be4c725e54a279468a0006000000010e2c96289c9ec2ca00"], &(0x7f00000004c0)=0x14) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 490.684138] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 490.691194] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 490.697958] *** Control State *** [ 490.701772] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 490.714437] EntryControls=0000d1ff ExitControls=002fefff [ 490.719907] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 490.764151] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 490.770836] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 490.823792] reason=80000021 qualification=0000000000000002 [ 490.830143] IDTVectoring: info=00000000 errcode=00000000 [ 490.854417] TSC Offset = 0xfffffef7b995b24f [ 490.859019] EPT pointer = 0x00000001c777901e 19:46:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) ioctl$SG_SET_TIMEOUT(r3, 0x2201, &(0x7f0000000040)=0x4) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 491.037532] *** Guest State *** [ 491.041479] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 491.051169] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 491.070384] CR3 = 0x0000000000004000 [ 491.076915] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 491.089292] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 491.097500] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 491.104229] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 491.110606] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 491.117986] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 491.126749] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.137252] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 491.145893] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.154577] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.163130] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.172448] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 491.181142] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 491.189937] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 491.198612] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 491.207386] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 491.214474] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 491.222395] Interruptibility = 00000000 ActivityState = 00000000 [ 491.229400] *** Host State *** [ 491.233007] RIP = 0xffffffff812047de RSP = 0xffff88818858f390 19:46:08 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:08 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f00) [ 491.239756] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 491.246920] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 491.277462] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 491.342626] CR0=0000000080050033 CR3=00000001c083f000 CR4=00000000001426e0 [ 491.381432] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 491.403475] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 491.423228] *** Control State *** [ 491.434337] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 491.451345] EntryControls=0000d1ff ExitControls=002fefff [ 491.459826] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 491.467655] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 491.475081] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 491.482145] reason=80000021 qualification=0000000000000002 [ 491.489163] IDTVectoring: info=00000000 errcode=00000000 [ 491.495329] TSC Offset = 0xfffffef73079225c 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 491.502580] EPT pointer = 0x00000001ba1ad01e 19:46:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffec2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x24, 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vsock\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000003c0)=ANY=[@ANYBLOB="10e5a17e98dda3ed0bf51df712ab683c13d48892f3131417c828e539320db118645d20cfff7f000000000000b7459e4c08c4902e36f6b59e293fb694496e7fe584ac4dfeaf608cad615ac3958798106c3fa2c46f8117e6f5c7156c6b8e11a0f96d332de7885be5902fb4445ef1bc52a20bd09e9ac07c37614f4b187b956a1d01ba450b2b7ec3b8b846e44c3b3da7fcd8d3b5ae8558342bcd3eb08df3c0f45655eaaca1c4efc4c06970c0549de1c67e7ac564d645458eac", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x1000000000c}, 0x0, 0x0, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1) ioctl$SNDRV_CTL_IOCTL_PVERSION(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)) r4 = socket(0x11, 0x2, 0x0) r5 = syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x6) ioctl$NBD_SET_SOCK(r5, 0xab00, r4) ioctl$NBD_CLEAR_SOCK(r5, 0xab03) r6 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xb9a, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000200)={0x0, 0x7}, &(0x7f00000002c0)=0x8) fcntl$setstatus(r0, 0x4, 0x400) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r6, 0x84, 0x7b, &(0x7f0000000040)={r7, 0x81}, &(0x7f0000000080)=0x141) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f00000005c0)=ANY=[@ANYRES32=r8, @ANYBLOB="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"], &(0x7f00000001c0)=0xc6) 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 491.792517] *** Guest State *** [ 491.799778] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 491.815499] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 491.824559] CR3 = 0x0000000000004000 [ 491.828488] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 491.835262] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 491.842013] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 491.848274] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 491.855250] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 491.877688] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) [ 491.886066] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.894345] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 491.903178] block nbd0: Receive control failed (result -22) [ 491.912852] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.921212] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.936776] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 491.954060] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 491.963997] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 491.972253] IDTR: limit=0x000001ff, base=0x0000000000003800 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 491.986005] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 492.001074] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 492.015664] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 492.031325] Interruptibility = 00000000 ActivityState = 00000000 [ 492.047438] *** Host State *** [ 492.054453] RIP = 0xffffffff812047de RSP = 0xffff888184e07390 [ 492.068725] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 492.077320] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 492.085648] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 19:46:09 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x1, 0x0) ioctl$VIDIOC_S_OUTPUT(r1, 0xc004562f, &(0x7f0000000040)=0x2000) 19:46:09 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x9}}}) 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:09 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 492.121744] CR0=0000000080050033 CR3=00000001cb417000 CR4=00000000001426e0 [ 492.157727] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 492.197421] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 19:46:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00) [ 492.239861] *** Control State *** [ 492.250306] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 19:46:09 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000600)="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", 0x1000, 0xfffffffffffffffe) r1 = add_key(&(0x7f0000000080)='rxrpc\x00', &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)="db52a500070b31c2220666a91344879ebcfdeb8a195796de6877c5b7ae60592cede75c637826a8e2441335f40e6b3c10142bf18867eb5bc16a36f85f0d9e38bf296c58902f2ef1792e892228d406994654ac97a7e49c1f68f66d8f8efa5de392521be9518b2e73952ba77fc54beaeb5d00945e633ab9bc02b9b1eb60e5cb379ff5461c141ff1c25153489b90c74d28c4931b9e62afeb340de19753a4606094d3563b46e4cfeba0c2eb4d87a67363168e8d96a5ce32eb", 0xb6, 0xfffffffffffffffb) add_key$user(0x0, 0x0, 0x0, 0x0, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/ip_tables_targets\x00') ioctl$KDSETMODE(r2, 0x4b3a, 0x5) 19:46:09 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 492.322878] EntryControls=0000d1ff ExitControls=002fefff [ 492.345456] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 492.377370] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 492.407062] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 492.436536] reason=80000021 qualification=0000000000000002 [ 492.446685] IDTVectoring: info=00000000 errcode=00000000 [ 492.452443] TSC Offset = 0xfffffef6cbfc536c [ 492.457748] EPT pointer = 0x00000001b697001e 19:46:10 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 492.547072] block nbd0: Device being setup by another task [ 492.555094] *** Guest State *** [ 492.579714] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 492.605347] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 492.645958] CR3 = 0x0000000000004000 [ 492.661940] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 492.705215] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 492.714019] block nbd0: shutting down sockets [ 492.727914] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 492.734670] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 492.741021] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 492.748837] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 492.759141] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 492.767700] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 492.777818] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 492.786501] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 492.795106] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 492.803850] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 492.812208] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 492.822194] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 492.830891] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 492.839480] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 492.846557] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 492.854691] Interruptibility = 00000000 ActivityState = 00000000 [ 492.861268] *** Host State *** [ 492.865043] RIP = 0xffffffff812047de RSP = 0xffff8881d3acf390 [ 492.871349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 492.878414] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 492.886727] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 492.893042] CR0=0000000080050033 CR3=00000001cb417000 CR4=00000000001426f0 [ 492.900746] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 492.907936] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 492.914531] *** Control State *** [ 492.918316] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 492.925579] EntryControls=0000d1ff ExitControls=002fefff [ 492.931430] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 492.938945] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 492.946157] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 492.953039] reason=80000021 qualification=0000000000000002 [ 492.959954] IDTVectoring: info=00000000 errcode=00000000 [ 492.966016] TSC Offset = 0xfffffef6cbfc536c [ 492.970707] EPT pointer = 0x00000001b697001e 19:46:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x109080, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x280082, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x2) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:10 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:10 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 493.159172] *** Guest State *** [ 493.162482] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 493.185287] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 493.202304] CR3 = 0x0000000000004000 19:46:10 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 493.206454] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 493.223623] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 493.230210] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 493.230222] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 493.248495] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 493.259523] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 493.273704] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 493.293661] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 493.302055] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 493.310519] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 493.318943] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 493.327866] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 493.336323] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 493.344635] IDTR: limit=0x000001ff, base=0x0000000000003800 19:46:10 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 493.352960] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 493.361371] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 493.368249] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 493.376097] Interruptibility = 00000000 ActivityState = 00000000 [ 493.382608] *** Host State *** [ 493.386167] RIP = 0xffffffff812047de RSP = 0xffff8881cd357390 [ 493.392430] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 493.399263] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 19:46:11 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x9}}}) 19:46:11 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:11 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = request_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)=']\x00', 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x418, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 493.453910] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 493.474063] CR0=0000000080050033 CR3=00000001b4bd2000 CR4=00000000001426f0 [ 493.481247] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 19:46:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000000000000) [ 493.507666] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 493.536080] *** Control State *** [ 493.553196] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 19:46:11 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 493.582890] EntryControls=0000d1ff ExitControls=002fefff [ 493.593613] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 493.600684] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 493.608183] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 493.649852] reason=80000021 qualification=0000000000000002 [ 493.674840] IDTVectoring: info=00000000 errcode=00000000 [ 493.684109] TSC Offset = 0xfffffef60fc151a6 [ 493.689071] EPT pointer = 0x00000001c22c601e 19:46:11 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 493.764266] *** Guest State *** [ 493.767601] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 493.786252] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 493.795735] CR3 = 0x0000000000004000 [ 493.799685] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 493.807140] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 493.814186] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 493.820378] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 493.847263] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 19:46:11 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 493.861521] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 493.885019] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 493.914308] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 493.944817] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 493.953070] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 493.961780] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 493.970548] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 493.979098] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 493.996826] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 494.014660] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 494.043770] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 494.050820] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 494.058570] Interruptibility = 00000000 ActivityState = 00000000 [ 494.065125] *** Host State *** [ 494.068578] RIP = 0xffffffff812047de RSP = 0xffff88817c417390 [ 494.075827] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 494.082870] FSBase=00007f911e1f1700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 494.091078] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 494.097408] CR0=0000000080050033 CR3=00000001b4bd2000 CR4=00000000001426e0 [ 494.104796] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 494.111737] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 494.123384] *** Control State *** [ 494.127408] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 494.134390] EntryControls=0000d1ff ExitControls=002fefff [ 494.140121] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:46:11 executing program 4: r0 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/mls\x00', 0x0, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000200)={@multicast1, @loopback, 0x1, 0x5, [@remote, @remote, @rand_addr=0x1, @broadcast, @multicast1]}, 0x24) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r4 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = msgget$private(0x0, 0x0) msgctl$IPC_INFO(r5, 0x3, &(0x7f0000002400)=""/232) ioctl$SG_IO(r4, 0x2285, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x1000, 0x3, @buffer={0x0, 0x50, &(0x7f0000000000)=""/80}, &(0x7f0000000380)="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", &(0x7f0000000080)=""/102, 0xc429, 0x33, 0x0, &(0x7f0000000100)}) ioctl(r3, 0x8, &(0x7f0000001380)="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") ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000002380)) [ 494.147385] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 494.154638] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 494.161546] reason=80000021 qualification=0000000000000002 [ 494.168177] IDTVectoring: info=00000000 errcode=00000000 [ 494.174434] TSC Offset = 0xfffffef60fc151a6 [ 494.179036] EPT pointer = 0x00000001c22c601e 19:46:11 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:11 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) [ 494.348633] *** Guest State *** [ 494.364185] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 494.373511] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 494.383220] CR3 = 0x0000000000004000 [ 494.387627] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 494.394976] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 494.402034] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 494.409753] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 494.416979] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 494.424895] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 494.433346] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 494.442147] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 494.450745] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 494.464007] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 494.483666] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 19:46:12 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) request_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="626f6e645f736c6176655f30000e00", 0xfffffffffffffff8) r1 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video0\x00', 0x2, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r1, 0xc0305602, &(0x7f0000000280)={0x0, 0x100, 0x3003, 0x1}) r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x0, r2) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) io_setup(0x9, &(0x7f0000000180)=0x0) r4 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x3, 0x4801) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000240)='/dev/full\x00', 0x84200, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000480)='/dev/usbmon#\x00', 0x0, 0x2) io_submit(r3, 0x4, &(0x7f0000000500)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1, r0, &(0x7f0000000600)="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", 0x1000, 0x5, 0x0, 0x0, r4}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x2, r1, &(0x7f00000002c0)="e630533f23d86038cf9e7c48611fbbda7ff6107d71586d02dd09072513b9c1e91074065210f2721577de60a58ef9313788a6755a09f98277aa16627a0796028ec4a2d593b7f54485b5b90873788f34571268f0f35e1cc3b838945ad7ddd351795e2bd5bb1967474667532f27665e5768245230a8f71e854c7956f641aeb4273d8e532498298f4e4074304e67bcaf9d54ea64749285", 0x95, 0x1091fcff, 0x0, 0x2, r5}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x6, 0xdc35, r1, &(0x7f00000003c0)="2fba73e295f449da7ef02e842c38031d03b4a4722b8a6ab75a88ceeabdb238191746d1f6259f8a9b290a569d2fd5380a10487affa86a55838701e76539f6640a4e5f6fc028f6eae2b1efb94c3e764093972e1779f966d5999536fed36c7cec39419137f61a5d2677283db896db80f238cca5", 0x72, 0x6, 0x0, 0x1, 0xffffffffffffff9c}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x8, 0x8, r1, &(0x7f0000001600)="0874b73799a687dfa8e81604a1be3951ebcee87a98c612f4e2839d970ef53a3c62a94f227036478a361b036bd54ea8e35a285931df1aca17088f65c7b0b773caced18e685bbd1d08f72c306a896a0fdce25607758079b99682c10a8e5ab6c117cfda5a30787afd9e1fae58725066d02ffce468e741fcf69cd1935592bf30af6ddce7dc8605c960e58daa69a61a0ec3a1821cbf7508ea7aa68ee641a0744f9ca3570c401d5e4203adf557a4d3cafdf4e0176b950e05473d6cd7e5a4de046b978906005d5410d84bc0fb217b033ed679dd82da417f70f9121ca6908c1aaee84af87192baaddf5f206e0c2486d55d5ce3c778c32a2f8860261bb04061ce346ac990666f72b029ff630dac8c80ecb29d02a9bf2b4c176f694404280907d1de21b549ce5c27557d76d01919f63c5f801e69418f729bc138e714a830c41534a25ef41d3d6321dca98a312c92102668557559495d86c7d3ed1076267c70bb64c29bd3ffcf4072ca2eb90e146e5f955c07b9e197d2e841a277e0ce2dc5850db0da75b900d7f402ed34ba53ecdd80477dcf4e84d40506772bc679faaf4c495a07fb05723733074686c53462f080939330bbe54db205c1604f3448fd9b1e668a1920a8ea20cf2bd06f87cd3730c210db26657b577a81cc20d084ca4c2d56ef6a55822f04fe09bbde5f83259d844830fb437437b735b624cbd3c526311793abae21fe68b381f64dfb3440d1da25c41b96e45635522fc95dd37dfe896f2435a276629ea1564ee7356ce0af9d81befd8fdfa166141f88b54a4860970eadc734761cb487bdd7001d0f65d48ddea3d94ebf4f044c1f7c5ca9ebacc679bc73fdd1a22ddd39abf561be14bd617975f01e0e92745d23fbecbeceb8bb0b9140adf1980bf7a35142f54441210bb1d8bf6b0448c8f0e3fe825813283025e108fed25c7c4347f734431952a6946ed2e9e482f1db7db4e3710be1548e3b7dc7007fcae4b28a21ede67cfc1c8c60f2d9ca32e71c4a76d8db80f0d7e6043812116c7e6908c318a29a5715e934625e52259ae4b0d9d7bf95856345d0861ac930e64afdcb2c6b89d06f9310db0f41f6422916c8d3276e387e791ff249cbec8b5c007c7d3db20b68f99a50edbf583027b2e4554a4a6a45b1a6b538177ed92929b5dcd9c1ba274e89a98e8ab10d911b6ff828c0b77dbaebbb4b7a116b8550c4483fee34b3f9541ab08d836f16afe2cb1c9cd6c5dcc91f89518edf7a3b54b48d0a2c2dcbbe7918281664527ed945bb1af50e3881615ac7e7d46a77c1bb8484b6dde34399ec679bc95efd9342f2a095774a0dce6c3a2b656ca2ac9c6c8e8d76d86d675ce35f0aff6196e1767e450ab1950005ac800e93394447e629a6c814cf05ce0269b9985faca25826b35039f1aeda062647ccbf6a47880b9572e9dbe9ee3ad98a199f9493fd2231c6918bd67d048e6050f61bacee4cc0feba8b54e1c3e0d0a24677721364f18df9529f22091218f6bdfbe4cdb3aeffc3e68f5f16a767402550f736aea277a059b00629e43c15889408893802774602574acd1dc541e6c3b6e643bd4ef1cf11669adc4ae3c4ec7b9dbf7c7fbf0fd9be70b094e3b8c246793f9f999b5f3400ffc200b42c81d18a3ce9f9ebdccb4c7c77a707b7ca679e62fa066356a5472f298f3e0489f23598bca2941cb170213dc5b65a18634ab3be4e49812310868bdf38fc079a80e54761f04b8b96cee1d1d37e1991d6f305716b03d969510b96ed2eff2b443bea386b9c0c55f1107fda29249da875933b2535a94c19df00e82e469e1ce78bd002cab6022e8f82a9ac73fd22856e7ad614389c6d2b0b3f0c275075e691a1d7e2eca00850fd4f41c37b11aa5930ae6866d4d390f9f0175009cf676237bc72186581e674ffdcc99e7876921a5f7b4e60ef366a6fb5c32f51c4efd336cea4b18c28b9602ea15028baf910598621183e49e513fc3c2c90d907fac0f9fdfdc1e426694be4d0771b77a0f183efe5a99e46b069b6ed44ffaab4659ed6c49d8573cb005095417b74307e6afe8b165dc4e9144a8a7e9a5dbae980ead40be5231b92df67e89cd26162a01a661dfad66255ffc24e9679fb219b157d56b8c3999f4beca62ff62872deb6271ecf78898df848f6e600aeb3acf4f021c332d45419c790c0670672267d17d63ec464edce55697104898a376c6f58437807fdea0590d20821e7055b4d937da61ec00c45b8a85f091fd5e8be0b92691d20031d432d35aa0906d2068f1a250c81a8cb1d76519b27cd7f447dadd86ac25dee16a328911626ae5c9d802680c140ecb95290a2bb0a80241a64af46b40d42f18121ca0171836dea13a6379c8436054e45869703de8eacacfd85cbb5c8618c38b841c8982831915c4af7f7b7929b2a59883fbcefd6d83ce388cb15ce6e5b836238e765aebcd9082cd54faf27d4625e4a3687406753cbf5fdd9028ffbcb5495a8dce0b900b85a0a6355c1c203c3faccacd8ff7641948fe61cc293aee7c08f1141b12e81251dd1bc21d734ea89a0e845b192b6e0e44476568c471a7f69bdd93c661fc0e875735a34a16e0c230b1db4d1488f049dcbccd7635122b3bdf961beff8180881218dba5d75f356311d3f7772f757311149d1e565a47b27b6642b450ce599b88cb06a5973a44b40a1580778f6df1ed71bf509c8f38ac1cd774945f1c2e6bf8f95eb8f330f011c5f2479be7bd5e3f41c3e446121bdd9e997c0d0c6f142ff665958f666b41c5681e15eb4d9c3d61680257b93e2a42910daaaae62d210150ee89d904abc30ca6e09514f3ce2f9cfcd48af2e0760842fb216b1f35c323108eef243e81006051c8b7e1006cdae09cccb11f7dd23cf09d04a8a9052b79f007fa77613d9d4c05311459e7c3e443293c0441bf1c2d0c3c7a96a63621be6923fea22e327c8aebca6891e96cae031c3c1e3cdd8086dee24bd5af3363bca29c063f50e7c6e5bc61656b224ff752a9e66b3f75279f50009ba5d4edcd463511c47fec685139a6e569b7e5e71aaeb8ee8cc0cb260d1dff759a5b0e093ecd3f4181f0d0d2e6f8ea5bc5e06e985a942133c128ddc34d2c053e1761523910e6aeb1522e50da7e435e06127bbc24e371a00b27317c96d8c1830ce001930e44ad9cc3c3b85f9a4f7fa6804b5550f1edab2ad166ef62ee0a401a7cbfb64331c145455ba7dc718e7ef554f351f9762d0ec8a3bbb9f9295fd375bb41608e0cfdc63cadb6343c6dd584f2e715fa6e81f94ea0a0bdbd141a6182b61d2d742442159c24fc91539fad9e3c2824cae9e645a76cf6e54892cb8248d8b572e4deb7bf656bebfbaacf70d2c618bd3986963c553804f526c06597d3eb28e63c2650f04c87e4e3a6396a767d81275520761d6d62f5c50230bfb2acc59dfa07198a29df0e712f352e22ab66fc3246cd0674e8f490b0774af04a5e36c11962ea96b6279c44c0bb0d521b9480285e43d63e1d1abd38b16f73f881a8ca5ec64e8f58fc2468d503d75fd7e2bf7700d531618c8ab2783cd7c34ec21d3b53255088c03ff71cda8dfd0dc41fbf31821ecde7039fd36fefa654f6b48ce142653ab1cf41da9a066cd714c78ad5b02ace291fc5690521aca154751cdb27fa52719dd5d7dcab263f3dff8ea4f987cedfbf6508eb5cbac9f081cb23abb118cbc0f09c81282f099ad32ce166138b2ba86ca35a716c16377344307f76476c57d68b6c3d83e6969076763441fee20a20a0b06d914a4c6684882c8205a56fa7c8e963a67abe4044822db29803092be6c09ae3b04ff3d0779205559171f7ddde384a5fcaa2d9b2ccace8c0bea4c41434ed8c519d87a8df47a7f71c93bf94b70db63886d4f64ffd93d6dac3eeab06f8a485bc019532affff474c1b30950efb28f4e64a38b9e0df331d627e6c1817aa40290440d0b260b49721c04d88b73e7912ff7e1e70e456bf9ec42b734c129b63ba465df10933fb8f42e48ed16c291ba866796fde1a66401e04976e52340af9823b89eeab3b20ced557e5cf67b902eed39cfcaedbd41ad704905d8797f34b28c68f00cc0a7317e1a777d235a944959f02eb647e5a195022ee727589702512d46b2f4228c13f841c275ceab8be4f82e8f9e82c8ddb4cbce13006a93f8ad6e98a2ca6c391b891045b7e7640f6b14f7406fff112f536665f927a8425b71bc14f7dde3d98907bb3191bb97ec53422515f7a8b93af453232489af8f1b6df8e8681ba3785e4621af04551ea51e09f44726e3700828643769c6322db7197f9ea0c17b7f24e1b2faca9fbde4dbf9a6bf1c7672f8c5944def7bce2588f6df2944a11c4b2ef5e34a8c62106c8942380a5c746d73982a33260eaa6e5a8e484c2b6c55ebc6681a5e4a5675e27c95636dd3295e5f1772e7e5d6d93dd80395ad947578d1088d3cb2598efb70db0f9473e8d847682688a941f5d24f25e2e34e5c521829c76b5d207b046671b3cab5c798ec49053956c74a21d9ef75feb1ce199e20f4ebc8e487d2892550a79d1ad4ba6fba34847978914353e237f90c25916ee7f0ffe297f55e54fb2bb99cf6c1d7653ee0b69fa13c8b3e493bb01474f9b577512762ca776613dab3d9daa5c0b46ed61613a4997aed0d8b4b4047aac729c29563274bbc8d4a2f0f56c9c347e8b8b902a44a1ed53012b9595d5d2b12c46c7870b087e2667ec03a862db3219f8d027704cf9dd745d760b1033bac1cd160595f6a1d1812cd4a1f736b3db0f028a3dc1e5a83bd0ede76a5da78f868c2ede113f070c63994baeadfdabc75782ae3e563e44c07c9994d0444f01f6caa3b760ab6470981b69f0d0892ddc44ea6d5e2e3659bd77da43f2eec5926e4881201481817cc95100ed26d45e9efea03c0c4a2270b9e2497fa176f7bf7d1c1a253130ee94a8a1dbf4733b3b82b05fa3460a3df2b8b4009ec0a4b932bf1e68c0a42105b31f8efbe8d9678b8f1cf823e336bc8c30db5bb2a46fcb247c3a6f6b25d7bb78f708fc86e40aa0b5208138fd8f7845cd1ba0ce1aafa729360b4ceba2f21861c2aade1e06245ffbbdbe927ef9c33e665e7435628105c04ca087b7669f4c0210645c316b206203c95c0adf304296182cdcbd5b5770488270d5af42e8f7c94a1e85aeed609d673025bafa0f225ff59ab628c8c9ff7cb6a6cf9b0305cd8a051c367a5b20aecda2c300e3a6a4f73e502b6369d86763f89418b13147a7c2b08f874b47f513df3e324a8119519b2c14042d268772b95ad2f02e43730cd5d5cd7d0d999027b2ba04bb80c73e8780933841b304f83e9f8dffe06988f9cda41d446f006afc8c10eda9d5b043412fe8912629071b3c326e7c087abd79bb10fb819a41823e1c674dccf594b3ae87b2b4b7880d7ae2255aa45493829742e84ca9957e3bb2e7d68f64c7bc89af9542b551222b55ada2212eb85471f42fc9f5d18756639d7e4fbd9e0f9ce7937bfcf426f8f501cce9bc6c7fa32ecc819c5d610aebb7e4f69a92c94f5984bda2cd4e39ba5243ee64558e9d013a8d9ae2192d78bc15a4c825c85bd27f9050fa8534cd278716be205537362f4a8290fbb780476e69b1b53af921e8896f6e6e05ca254595d33eee868b8e99c585b709877a03287883af42abaa905bf498a1b057369979e2210a719d24ffabc7e665f78a815515a782d6928a02e56a75939310261b4a6a5982fb80522edc5e9932e5ce657419a33206b256d9a7492baccdbf37cd1967d44e19bfea21c64ddc508d21300665462aa6372fd0c1bd3ebbc0ca03463097f5d28e7b0d0948b435e0ea9f4365567d3e58d801c3c9f2df76b36540bda44d4b6bab4", 0x1000, 0x3, 0x0, 0x2, r6}]) [ 494.494560] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 494.505434] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 494.513894] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 494.522147] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 494.531322] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 494.538274] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 19:46:12 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 494.553944] Interruptibility = 00000000 ActivityState = 00000000 [ 494.596396] *** Host State *** [ 494.614327] RIP = 0xffffffff812047de RSP = 0xffff88817c417390 [ 494.624635] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 494.631439] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 494.640012] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 494.646943] CR0=0000000080050033 CR3=00000001b9275000 CR4=00000000001426f0 [ 494.654682] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 494.662227] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 494.669458] *** Control State *** [ 494.673215] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 494.680613] EntryControls=0000d1ff ExitControls=002fefff [ 494.686721] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:46:12 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local={0xac, 0x9}}}) 19:46:12 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) [ 494.694229] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 494.713133] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 19:46:12 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 494.764232] reason=80000021 qualification=0000000000000002 [ 494.793729] IDTVectoring: info=00000000 errcode=00000000 [ 494.822628] TSC Offset = 0xfffffef56ccf1b6b 19:46:12 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 494.846070] EPT pointer = 0x00000001caa8f01e 19:46:12 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) ioctl$TIOCGETD(r3, 0x5424, &(0x7f0000000180)) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x3a198543572ca857}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, r4, 0x800, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x200}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x45300000000000}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}]}, 0x40}}, 0x4000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(r3, 0x4040ae75, &(0x7f0000000140)={0x8001, 0x0, 0x18d, 0x200}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000200)={0x0}, &(0x7f00000002c0)=0xc) perf_event_open(&(0x7f0000000380)={0x0, 0x70, 0x80000001, 0x1, 0x2, 0x2, 0x0, 0x0, 0x1009, 0x3, 0x4, 0x4, 0x1, 0x8, 0x2, 0x7fffffff, 0xfffffffffffffffd, 0x1f, 0xffffffff, 0x0, 0x1000, 0x7f, 0x6, 0x2, 0x7f, 0xabf9, 0x1, 0x7fff, 0x4, 0x7f, 0x5, 0x40, 0xbd2, 0xc5, 0x3, 0x5, 0x400, 0xfffffffffffffffe, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000001c0), 0x2}, 0x18, 0x80, 0x20000, 0x0, 0x1, 0x7, 0x10000000000000}, r5, 0x6, r3, 0x8) [ 495.118468] *** Guest State *** [ 495.122410] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 495.133030] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 495.142347] CR3 = 0x0000000000004000 [ 495.146734] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 495.153756] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 495.161245] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 19:46:12 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 495.167964] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 495.184636] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 495.200379] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 495.228464] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 495.258888] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 495.268583] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 19:46:12 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 495.277154] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 495.285727] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 495.294235] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 495.302706] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 495.320814] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 495.349325] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 495.357707] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 495.364619] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 495.385299] Interruptibility = 00000000 ActivityState = 00000000 [ 495.391677] *** Host State *** [ 495.395288] RIP = 0xffffffff812047de RSP = 0xffff8881b9707390 [ 495.401384] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 495.408528] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 495.416981] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 495.423421] CR0=0000000080050033 CR3=00000001c3868000 CR4=00000000001426e0 [ 495.430868] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 495.438043] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 495.444609] *** Control State *** [ 495.448308] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 495.455489] EntryControls=0000d1ff ExitControls=002fefff [ 495.461428] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 495.468880] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 495.476059] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 495.482858] reason=80000021 qualification=0000000000000002 [ 495.489630] IDTVectoring: info=00000000 errcode=00000000 [ 495.495537] TSC Offset = 0xfffffef5021489ad 19:46:13 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 495.500068] EPT pointer = 0x00000001c0c2901e [ 495.563903] *** Guest State *** [ 495.568812] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 495.607690] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 495.617686] CR3 = 0x0000000000004000 [ 495.621783] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 495.629578] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 495.636734] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 495.643177] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 495.650611] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 19:46:13 executing program 3: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 495.659285] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 495.668044] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 495.684020] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 495.697841] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 495.741264] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 19:46:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) [ 495.790313] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 495.803694] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 495.823719] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 495.863915] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 495.889488] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 495.898127] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 495.905187] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 495.912889] Interruptibility = 00000000 ActivityState = 00000000 19:46:13 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:13 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:13 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:13 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @broadcast}}) r1 = add_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="325fe95e4c6eeb6984b0ae4d8cc36a7c0aa0438b2e65470c7afbe1287b60f484650c924ce982e770e06348cf7ee8486b95b7a06f89523aa4d9238cc4c8a14f2a5664f42ed079ba43ecc7ba1f145ac0fe97a2443ad1223f0a00532f4dd22d65b06cdc09e66188227fb6cdae113ef8d572f6fedf4134725eb973c84b226ca681284b236fa5047f3269a20ff9032885178492f327cfb7ced3b06b07f88c0a2f9f309fab2e5c3bcb62efab526cc349453fccbc86661ce5", 0xb5, 0xfffffffffffffffd) request_key(&(0x7f0000000040)='blacklist\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000000c0)='loem0md5sumvboxnet0vmnet0\x00', r1) [ 496.008315] *** Host State *** [ 496.011590] RIP = 0xffffffff812047de RSP = 0xffff8881c0987390 [ 496.053644] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 496.084881] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 19:46:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11000000) [ 496.104404] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 496.111577] CR0=0000000080050033 CR3=00000001c3868000 CR4=00000000001426e0 [ 496.119012] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 496.126493] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 496.133902] *** Control State *** [ 496.142252] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 19:46:13 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.158793] EntryControls=0000d1ff ExitControls=002fefff [ 496.169181] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 496.186628] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 496.203264] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 496.233334] reason=80000021 qualification=0000000000000002 [ 496.245790] IDTVectoring: info=00000000 errcode=00000000 [ 496.261104] TSC Offset = 0xfffffef5021489ad [ 496.269849] EPT pointer = 0x00000001c0c2901e 19:46:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffe46) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) write$P9_RLOPEN(r3, &(0x7f0000000000)={0x18, 0xd, 0x1, {{0x6, 0x4, 0x7}, 0x8}}, 0x18) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) 19:46:13 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.455491] *** Guest State *** [ 496.459103] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 496.468528] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 496.478077] CR3 = 0x0000000000004000 [ 496.482007] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 496.489042] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 19:46:14 executing program 3: r0 = syz_open_dev$dri(0x0, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.504511] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 496.513426] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 496.526002] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 496.554864] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 496.585679] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 496.595886] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 496.604445] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 496.612690] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 496.621842] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 496.630346] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 496.646832] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 19:46:14 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.663162] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 496.707996] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 496.733398] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 496.749403] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 496.760532] Interruptibility = 00000000 ActivityState = 00000000 [ 496.767022] *** Host State *** [ 496.770406] RIP = 0xffffffff812047de RSP = 0xffff8881bf207390 [ 496.776722] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 496.783362] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 496.791439] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 496.797586] CR0=0000000080050033 CR3=00000001c17ff000 CR4=00000000001426f0 19:46:14 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.804849] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 496.811724] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 496.818175] *** Control State *** [ 496.822403] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 496.829342] EntryControls=0000d1ff ExitControls=002fefff [ 496.835872] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 496.843013] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 496.853351] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 496.866000] reason=80000021 qualification=0000000000000002 [ 496.877781] IDTVectoring: info=00000000 errcode=00000000 [ 496.883406] TSC Offset = 0xfffffef4491922d6 [ 496.897956] EPT pointer = 0x00000001ccc7501e 19:46:14 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 496.943987] *** Guest State *** [ 496.947292] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 496.984784] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 497.024393] CR3 = 0x0000000000004000 [ 497.028133] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 497.060259] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 497.073676] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 497.081157] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 497.096153] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 497.111237] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 497.119756] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 497.128290] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 497.136756] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 497.145296] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 497.153472] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 497.166204] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 497.178639] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 497.190351] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 497.207643] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 19:46:14 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:14 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:14 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:14 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100) [ 497.221857] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 497.229185] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 497.263916] Interruptibility = 00000000 ActivityState = 00000000 [ 497.270169] *** Host State *** [ 497.273367] RIP = 0xffffffff812047de RSP = 0xffff8881859a7390 19:46:14 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 497.354080] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 497.360528] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 497.450274] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 497.473846] CR0=0000000080050033 CR3=00000001c17ff000 CR4=00000000001426f0 [ 497.480990] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 497.487878] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 497.494172] *** Control State *** [ 497.497778] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 497.504629] EntryControls=0000d1ff ExitControls=002fefff [ 497.510251] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 497.517382] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 497.524216] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 497.530941] reason=80000021 qualification=0000000000000002 [ 497.537592] IDTVectoring: info=00000000 errcode=00000000 [ 497.543166] TSC Offset = 0xfffffef4491922d6 19:46:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) write$selinux_context(r3, &(0x7f0000000000)='system_u:object_r:sshd_var_run_t:s0\x00', 0x24) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:15 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 497.547707] EPT pointer = 0x00000001ccc7501e 19:46:15 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 497.688215] *** Guest State *** [ 497.695704] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 497.734467] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 497.776339] CR3 = 0x0000000000004000 [ 497.796109] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 497.804685] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 497.811603] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 497.818131] RFLAGS=0x00000006 DR7 = 0x0000000000000400 19:46:15 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 497.824707] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 497.831829] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 497.840567] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 497.849093] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 497.867297] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 497.889833] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 497.932273] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 497.962387] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 497.971535] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 497.980298] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 497.989073] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 497.998140] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 498.005313] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 498.013222] Interruptibility = 00000000 ActivityState = 00000000 [ 498.020243] *** Host State *** [ 498.024164] RIP = 0xffffffff812047de RSP = 0xffff8881856c7390 19:46:15 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 498.030619] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 498.039277] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 498.047863] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 498.054481] CR0=0000000080050033 CR3=00000001c6fad000 CR4=00000000001426f0 [ 498.067880] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 498.080361] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 498.106081] *** Control State *** [ 498.121065] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 498.153593] EntryControls=0000d1ff ExitControls=002fefff [ 498.174256] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 498.187720] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 19:46:15 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 498.198715] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 498.205991] reason=80000021 qualification=0000000000000002 [ 498.212641] IDTVectoring: info=00000000 errcode=00000000 [ 498.233225] TSC Offset = 0xfffffef3a6c680ad [ 498.245065] EPT pointer = 0x00000001bd8e001e 19:46:16 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:16 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:16 executing program 1: r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x2}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x4e21, @multicast1}}, 0x6, 0x0, 0x65a4, 0x2, 0x40}, 0xffffff5e) r2 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6) 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0x100000, 0x1000, &(0x7f0000ff1000/0x1000)=nil}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0x0) r4 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$negate(0xd, r3, 0x86, r4) setxattr$security_smack_transmute(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.SMACK64TRANSMUTE\x00', &(0x7f00000000c0)='TRUE', 0x4, 0xff0bcb8334b8cc04) [ 498.625201] *** Guest State *** [ 498.628731] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 498.638241] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 498.658904] CR3 = 0x0000000000004000 [ 498.669053] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 498.695191] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 498.711087] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 498.726289] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 498.740670] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 498.750928] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 498.764101] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 498.772461] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 498.781123] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 498.789797] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 498.806585] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 498.826613] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 498.850666] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 498.882606] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 498.914299] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 498.922848] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 498.930016] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 498.938153] Interruptibility = 00000000 ActivityState = 00000000 [ 498.945081] *** Host State *** [ 498.948618] RIP = 0xffffffff812047de RSP = 0xffff88817d787390 [ 498.973893] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 498.984385] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 498.992192] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 499.041940] CR0=0000000080050033 CR3=00000001bbba6000 CR4=00000000001426e0 [ 499.093617] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 499.100326] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 499.133673] *** Control State *** [ 499.137615] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 499.145434] EntryControls=0000d1ff ExitControls=002fefff [ 499.151357] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 499.159069] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 499.176207] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 499.194263] reason=80000021 qualification=0000000000000002 [ 499.202859] IDTVectoring: info=00000000 errcode=00000000 [ 499.230930] TSC Offset = 0xfffffef31f963f21 [ 499.247930] EPT pointer = 0x00000001cd5c201e 19:46:16 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 499.374021] *** Guest State *** [ 499.377338] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:17 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 499.428590] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 499.484698] CR3 = 0x0000000000004000 [ 499.492474] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 499.507948] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 499.514773] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 499.520768] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 499.533748] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 499.540429] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 499.558180] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 499.575484] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 499.583489] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 499.591897] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 499.600733] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 499.613888] GDTR: limit=0x000007ff, base=0x0000000000001000 19:46:17 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:17 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:17 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="d65d984625ee0efcc379e734faa0ab6999e03d87dc6a41fde80eb52c26940167fb8c1755efbeb958ca246db37d46a1ac1b740bcd41798c9546af7ef37da9d606e1e71047a729bb2ea804497b86562b9e25154b9f2864b178c914c25a77094fb89df86def3307c2eb62a3a9828f3830e6c44ad2f8c2d72fea7cba0518c67b09e0aa7b27ca895ab20c0765aeb3fb23a7898472c2cd2208c749b90c1970e47f485fcec908cfde6621ebb28f6e0c6d29e91e60", 0xb1, 0xfffffffffffffffc) r2 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0x0, r2) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x2}, &(0x7f0000000240), 0x0, r1) 19:46:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f00000000000000) [ 499.634101] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 499.650159] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 499.665266] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 19:46:17 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 499.703653] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 499.722522] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 499.748471] Interruptibility = 00000000 ActivityState = 00000000 [ 499.781820] *** Host State *** [ 499.810140] RIP = 0xffffffff812047de RSP = 0xffff8881b75e7390 [ 499.843830] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 499.870658] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 499.894071] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 499.915477] CR0=0000000080050033 CR3=00000001bbba6000 CR4=00000000001426f0 [ 499.922897] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 499.929829] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 499.936262] *** Control State *** [ 499.939947] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 499.946897] EntryControls=0000d1ff ExitControls=002fefff [ 499.952580] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 499.959769] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 499.966723] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 499.973660] reason=80000021 qualification=0000000000000002 [ 499.980207] IDTVectoring: info=00000000 errcode=00000000 [ 499.985952] TSC Offset = 0xfffffef31f963f21 [ 499.990504] EPT pointer = 0x00000001cd5c201e 19:46:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:46:17 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:17 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x80000001, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000040)={0x0, 0x80000, 0xffffffffffffff9c}) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x40, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f00000000c0)={r2, 0x80000, r3}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r4 = request_key(&(0x7f00000001c0)='syzkaller\x00', &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)='\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="e8d7dcef5f246ea601c360db0e220699db50f4989791", 0x16, r4) 19:46:17 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x17e, 0x0) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x3fcd, 0x13, 0x6}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 500.384255] *** Guest State *** [ 500.388016] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 500.407108] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 500.428636] CR3 = 0x0000000000004000 [ 500.441157] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 500.468546] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 500.494042] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 500.511551] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 500.527743] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 500.550770] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 500.578502] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 500.613642] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 500.652650] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 500.660877] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 500.670052] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 500.678352] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 500.686653] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 500.702795] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 500.713086] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 500.721511] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 500.728208] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 500.748928] Interruptibility = 00000000 ActivityState = 00000000 [ 500.762247] *** Host State *** [ 500.769156] RIP = 0xffffffff812047de RSP = 0xffff888184d5f390 [ 500.775393] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 500.782023] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 500.790169] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 500.796407] CR0=0000000080050033 CR3=00000001d35d0000 CR4=00000000001426f0 [ 500.803727] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 19:46:18 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10000000) 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:18 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 500.810617] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 500.817147] *** Control State *** [ 500.820832] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 500.828948] EntryControls=0000d1ff ExitControls=002fefff [ 500.835733] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 500.848475] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 19:46:18 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x10201, 0x2, 0x10000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) [ 500.903922] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 500.910543] reason=80000021 qualification=0000000000000002 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 501.002097] IDTVectoring: info=00000000 errcode=00000000 [ 501.050428] TSC Offset = 0xfffffef22f925afa [ 501.063922] EPT pointer = 0x00000001be75701e 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 501.132133] *** Guest State *** 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 501.152513] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 501.188621] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 501.232762] CR3 = 0x0000000000004000 [ 501.250765] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 501.264062] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 501.270862] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 501.277191] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 501.283476] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 501.290591] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 501.298932] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.307336] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 501.315676] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.324064] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.332378] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.340702] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 501.349082] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 501.358877] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 501.367205] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 501.375567] EFER = 0x0000000000000001 PAT = 0x0007040600070406 19:46:18 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 501.382336] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 501.390227] Interruptibility = 00000000 ActivityState = 00000000 [ 501.396828] *** Host State *** [ 501.400896] RIP = 0xffffffff812047de RSP = 0xffff888184d5f390 [ 501.407336] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 501.414120] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 501.422260] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 501.428529] CR0=0000000080050033 CR3=00000001d35d0000 CR4=00000000001426f0 [ 501.435920] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 501.442965] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 501.449400] *** Control State *** [ 501.453356] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 501.471955] EntryControls=0000d1ff ExitControls=002fefff [ 501.490348] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 501.507625] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 501.521335] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 501.535832] reason=80000021 qualification=0000000000000002 [ 501.543375] IDTVectoring: info=00000000 errcode=00000000 [ 501.549898] TSC Offset = 0xfffffef1c9b50079 [ 501.559885] EPT pointer = 0x00000001d840a01e 19:46:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_read_part_table(0x6, 0x3, &(0x7f0000000140)=[{&(0x7f0000000000)="2cde0e511b0ce8849322b0565eac9715065d3a8c100cc349bf51c8614ec8b8b8b383afacb9e78c0eef4e4d9ac1bce8a09a1384e4e731061699b496bd010b482ff9d40012f45870187280b3a88557c9f90cd93b68f803d7077ee3d779867e839dcc38362c7c3355c34f441ca90581f108c5e7950a32898bebb75f090aff8546c574510434cfa454bb62f91f0069032a6e8ce266300a81a4a794", 0x99, 0x80}, {&(0x7f0000000380)="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", 0x1000, 0x81be}, {&(0x7f00000000c0)="5e272b6c75cd813e9f20f20b40e4c55a010931823bd3474211b3a45a40d5b902780325e887b48367d2f63cdf9afd769a4f673ff8db38a2de49fb9dedc9b62501a33e355660f332e2af3918b3e6759aee8c6207f9675ec953057ee37cf206cc8c173f424edd73bd16938023", 0x6b, 0x7f}]) 19:46:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 501.884056] *** Guest State *** [ 501.887670] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 501.906553] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 501.916110] CR3 = 0x0000000000004000 [ 501.920155] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 501.927501] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 501.935636] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 501.943274] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 501.949756] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 501.956881] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 501.965338] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.973868] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 501.983064] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 501.991609] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 502.000125] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 502.009915] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 502.022399] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 19:46:19 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 19:46:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(0xffffffffffffffff) 19:46:19 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x7f, 0x9, 0x19, 0x1c, "aa103948498f3fa21971c5c63819ef25bed3c27315a44a7ab354151d38c3fdaa40c77365a686c4a51c5d8c410f7f934b523f48abb0adc31ffe49b69054b9d6df", "4302184a78aec712bdd4e1e1513cb7d22fe2341233dfa21858c2589a057d5b29", [0x7, 0x9]}) add_key$user(&(0x7f0000000240)='user\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="cacabccc0c1ecf656fc603aa045497a8c4c45f90bb5b1d94d2dc235a94314a89e088cedb15de2bae511791868fa2200ba5007a3cb22f521cd8e9a2bc694e7c56130f0361f2a40e59384c2a5fa8337594d626ca3e60100b4883c4eced91c174a232c638702610c8f20437c6d8ea5bcbc4f3fad48dd58a060c05eb269411eee6b43604cfb6b71dd7ad3e5f5beec3620200fff5197fae2790c072d35d82ca812492c40a7b470829cac76cbd38f0cbc20d4dcba8713ba54badcb3156", 0xba, 0xfffffffffffffffd) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000380)={"627b6e645f736c6176655f30000e00", {0x2, 0x4e22, @broadcast}}) r2 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc) add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="948fca1960cf949da2588757ba9fa78ffa43a2c070256bbc097c0f5d36fff9eee214d4", 0x23, r2) 19:46:19 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 502.030927] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 502.039631] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 502.049092] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 502.075741] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 502.133054] Interruptibility = 00000000 ActivityState = 00000000 [ 502.171654] *** Host State *** [ 502.182649] RIP = 0xffffffff812047de RSP = 0xffff8881859a7390 [ 502.193810] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 19:46:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 502.226100] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 502.263711] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 502.295365] CR0=0000000080050033 CR3=00000001d4576000 CR4=00000000001426e0 [ 502.328044] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 502.337810] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 19:46:19 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 502.363997] *** Control State *** [ 502.371729] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 502.388746] EntryControls=0000d1ff ExitControls=002fefff [ 502.406338] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:46:20 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) [ 502.438465] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 502.462461] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 502.476957] reason=80000021 qualification=0000000000000002 [ 502.496692] IDTVectoring: info=00000000 errcode=00000000 [ 502.522193] TSC Offset = 0xfffffef1686baa3a [ 502.548912] EPT pointer = 0x00000001c27d601e 19:46:20 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:20 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:46:20 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) [ 502.900114] *** Guest State *** [ 502.903651] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 502.912500] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 502.921603] CR3 = 0x0000000000004000 [ 502.925452] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 502.931959] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 502.938684] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 502.944823] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 502.964320] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 502.981238] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 503.009658] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 503.047962] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 503.070165] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 503.085464] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 503.094792] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 503.102850] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 503.111042] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 503.119517] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 503.127711] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 503.143606] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 503.150021] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 503.157571] Interruptibility = 00000000 ActivityState = 00000000 [ 503.163916] *** Host State *** [ 503.167145] RIP = 0xffffffff812047de RSP = 0xffff88817bcbf390 [ 503.173345] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 503.179921] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 503.187881] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 503.193843] CR0=0000000080050033 CR3=00000001c3378000 CR4=00000000001426f0 [ 503.200871] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 503.207675] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 503.214082] *** Control State *** 19:46:20 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 503.217565] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 503.224393] EntryControls=0000d1ff ExitControls=002fefff [ 503.229857] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 503.236857] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 503.243688] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 503.250277] reason=80000021 qualification=0000000000000002 [ 503.256748] IDTVectoring: info=00000000 errcode=00000000 [ 503.262205] TSC Offset = 0xfffffef0d709ffb9 [ 503.266659] EPT pointer = 0x00000001c1ece01e 19:46:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900) 19:46:20 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:46:20 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) request_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)='\'\x00', 0xffffffffffffffff) r1 = request_key(&(0x7f00000000c0)='.dead\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)='\x00', 0xfffffffffffffffe) add_key$user(0x0, 0x0, 0x0, 0xfffffffffffffeaf, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) setsockopt$sock_void(r0, 0x1, 0x3f, 0x0, 0x0) 19:46:20 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 503.357795] *** Guest State *** [ 503.361105] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:21 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 503.437070] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 503.454985] CR3 = 0x0000000000004000 19:46:21 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 503.487475] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:21 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) mkdirat(r1, &(0x7f0000000040)='./file0\x00', 0x0) 19:46:21 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 503.532880] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 503.604344] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 503.610340] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 503.678382] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 503.703025] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 503.726472] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 503.734937] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 503.744537] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 503.756302] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 503.764992] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 503.772985] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 503.781037] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 503.789151] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 503.797188] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 503.805193] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 503.811583] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 503.819065] Interruptibility = 00000000 ActivityState = 00000000 [ 503.825357] *** Host State *** [ 503.828550] RIP = 0xffffffff812047de RSP = 0xffff8881be947390 [ 503.834588] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 503.841000] FSBase=00007f911e1f1700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 503.848849] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 503.854819] CR0=0000000080050033 CR3=00000001c3378000 CR4=00000000001426f0 [ 503.861851] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 503.868578] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 503.874721] *** Control State *** [ 503.878168] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 503.884864] EntryControls=0000d1ff ExitControls=002fefff [ 503.890322] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 503.897871] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 503.904607] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 503.911184] reason=80000021 qualification=0000000000000002 [ 503.917572] IDTVectoring: info=00000000 errcode=00000000 [ 503.923062] TSC Offset = 0xfffffef0d709ffb9 19:46:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:46:21 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:21 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803) 19:46:21 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:21 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@timestamp, @mss={0x2, 0x9}, @mss={0x2, 0x3ff}, @timestamp, @window={0x3, 0x0, 0x20}, @window={0x3, 0x2, 0x80000001}], 0x6) [ 503.927424] EPT pointer = 0x00000001c1ece01e 19:46:21 executing program 3: sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(0xffffffffffffffff) 19:46:21 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0xfffffffffffffe3c, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000180)={"626f6e645f736c6176655f30000e00", {0x2, 0x4e20, @multicast2}}) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100)='/dev/nullb0\x00', 0x400, 0x0) ioctl$BLKFRASET(r1, 0x1264, &(0x7f0000000140)=0x7) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f00000002c0)={0x0, 0x6}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000340)={r3, 0x2, 0x1, [0x6]}, &(0x7f0000000380)=0xa) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x400000, 0x0) clock_adjtime(0x7, &(0x7f00000001c0)={0x1, 0x80, 0x8, 0x7, 0x0, 0x3, 0x7, 0x2, 0x80000001, 0x9, 0x5241, 0xfff, 0x1, 0x1, 0x1, 0x0, 0x5, 0x0, 0x4, 0x9, 0x4, 0x4, 0x101, 0x401, 0x2, 0x6}) ioctl$KVM_ENABLE_CAP_CPU(r4, 0x4068aea3, &(0x7f0000000080)={0x7b, 0x0, [0x3, 0x6, 0x0, 0x9]}) 19:46:21 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:21 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:46:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1fffffffffffe) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x24000, 0x0) ioctl$BLKPG(r3, 0x1269, &(0x7f00000000c0)={0x5, 0x101, 0x41, &(0x7f0000000040)="9ab72ac30b9cba38ba7eef6d6d84bb60056419a1c0325983df57e8b76d750aea69fbfe016d20f043d8e95faa312efdc99a52d5699f5c453d4a63f2cface1251665"}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r4 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KDSKBSENT(r4, 0x4b49, &(0x7f0000000180)="01a7f65a4e4d1420aec48af597abe9012e1649fd562b0a89072c7ef91473f8e82f2901412b9761e60333a37bf3393bda4292365ddce809b94b6ee915073f413516b05f2df08867d5") syncfs(r2) ioctl$KVM_RUN(r2, 0xae80, 0x0) write$P9_RRENAME(r4, &(0x7f0000000100)={0x7, 0x15, 0x1}, 0x7) setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, &(0x7f0000000140)={0x2, 'veth0_to_bridge\x00'}, 0x18) 19:46:21 executing program 3: r0 = syz_open_dev$dri(0x0, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:21 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt(r0, 0x8, 0x81, &(0x7f0000000000)=""/173, &(0x7f00000000c0)=0xad) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x0, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x204000, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000180)={r2, 0x4, 0xfb15, r3}) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={0x0, 0x3ff}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000240)={r4, @in={{0x2, 0x4e22, @multicast1}}, 0x5, 0x401}, &(0x7f0000000300)=0x90) 19:46:21 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000) 19:46:21 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:46:21 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000040)=0x1, 0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) 19:46:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x400000, 0x0) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10000000000000) 19:46:22 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000240)={"626f6e095f736c6176655f30000e00", {0x2, 0x200004e21, @remote}}) r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video37\x00', 0x2, 0x0) openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x400000, 0x0) setsockopt$inet6_buf(r1, 0x29, 0x32, &(0x7f0000000100)="15911212b216e8146e21c81638323201caca889145c59a3d01cffce8adf2e1699beeea4bf103503f546cbc86ca019edd6f1a8713729935a265eb1634127659ffa51e95d71a2f7a6617b0da98f7f911", 0x4f) ioctl$VIDIOC_S_MODULATOR(r1, 0x40445637, &(0x7f0000000080)={0x7, "c79d092e3d4c656db2e6dd23f00a5582b8cc9b76a2874c1a2d4b1a8f5c4eef98", 0x1, 0x1, 0x1, 0x20000b, 0x6}) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x222000, 0x0) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffe) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000000)={{{@in=@multicast1, @in6=@loopback}}, {{@in6=@local}, 0x0, @in=@loopback}}, &(0x7f0000000100)=0xe8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(0xffffffffffffffff) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, [], [{0x2, 0x6, 0x3c2, 0x949, 0xfffffffffffffff9, 0xc8c}, {0x3f, 0x16fde365, 0x5, 0x2, 0xef}], [[], []]}) 19:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 19:46:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) utimensat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={{r3, r4/1000+30000}}, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:22 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:22 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x2, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000300)=""/63) sendmsg$TIPC_CMD_SET_NETID(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r2, 0x10, 0x70bd2b, 0x25dfdbff, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x18000000}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x4040) r3 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x9, 0x40800) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_GET_MAX_PORTS(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r4, 0x5, 0x70bd2b, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:23 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:23 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 505.571611] *** Guest State *** 19:46:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) [ 505.627406] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:23 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x3) getpeername$llc(0xffffffffffffffff, &(0x7f0000000080)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f00000000c0)=0x10) r1 = getpgrp(0xffffffffffffffff) ptrace$poke(0xffffffffffffffff, r1, &(0x7f0000000040), 0x0) 19:46:23 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:23 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 505.680014] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 505.714340] CR3 = 0x0000000000004000 [ 505.733092] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:23 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 505.780313] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 505.800930] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 505.846868] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 505.872579] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 505.887528] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 505.906886] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 505.933738] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 505.958210] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 505.988794] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.001636] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.009914] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 506.018230] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 506.026562] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 506.034682] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 506.042714] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 506.049188] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 506.056698] Interruptibility = 00000000 ActivityState = 00000000 [ 506.062915] *** Host State *** [ 506.066177] RIP = 0xffffffff812047de RSP = 0xffff8881c246f390 [ 506.072166] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 506.078657] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 506.086535] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 506.092422] CR0=0000000080050033 CR3=00000001c987a000 CR4=00000000001426f0 [ 506.099568] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 506.106296] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 506.112351] *** Control State *** [ 506.115896] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 506.122562] EntryControls=0000d1ff ExitControls=002fefff [ 506.128095] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 506.135065] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 506.141716] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 506.148333] reason=80000021 qualification=0000000000000002 19:46:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f0000000000)={0x1, 0x3, [{0x1, 0x0, 0xd5}]}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:23 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0xffffffffffffffcb, 0xfffffffffffffffd) ioctl$FICLONE(r0, 0x40049409, r0) pipe(&(0x7f0000001380)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-blowfish-asm\x00'}, 0x58) r4 = accept4(r3, 0x0, 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r4, 0x6, 0x1, &(0x7f00000000c0), 0x4) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r5, 0x7, &(0x7f0000000080)="0a5c2d029dd1484d75e663c1d909ce7840316285717070") splice(r1, 0x0, r4, 0x0, 0x20000000003, 0x0) close(r4) renameat(r2, &(0x7f0000000140)='./file0\x00', r1, &(0x7f0000000180)='./file0\x00') write$binfmt_elf32(r2, &(0x7f0000000100)=ANY=[@ANYRES32=r2], 0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000)=0x0) syz_open_procfs(r6, &(0x7f0000000040)='net/ptype\x00') 19:46:23 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) mq_unlink(0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29000000) [ 506.154691] IDTVectoring: info=00000000 errcode=00000000 [ 506.160132] TSC Offset = 0xfffffeef6b04a478 [ 506.164525] EPT pointer = 0x00000001b30a801e 19:46:23 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000380)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:23 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:23 executing program 2: socketpair(0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 506.377870] *** Guest State *** 19:46:24 executing program 1: r0 = socket$bt_rfcomm(0x1f, 0x3, 0x3) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f00000000c0), &(0x7f0000000140)=0x68) r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000000)='eql\x00') add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 506.425942] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:24 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 506.496748] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 506.535595] CR3 = 0x0000000000004000 [ 506.546858] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 506.611243] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 506.653664] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 506.677456] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 506.693697] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 506.708254] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 506.716497] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.724639] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 506.732703] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.741288] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.749441] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.757560] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 506.765718] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 506.773895] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 506.781958] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 506.790104] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 506.796646] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 506.804266] Interruptibility = 00000000 ActivityState = 00000000 [ 506.810594] *** Host State *** [ 506.813927] RIP = 0xffffffff812047de RSP = 0xffff8881be88f390 [ 506.820056] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 506.826610] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 506.834536] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 506.840514] CR0=0000000080050033 CR3=00000001c3225000 CR4=00000000001426f0 [ 506.847674] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 506.854463] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 506.860618] *** Control State *** [ 506.864213] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 506.870989] EntryControls=0000d1ff ExitControls=002fefff [ 506.876598] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 506.883676] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 506.890440] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 506.897253] reason=80000021 qualification=0000000000000002 [ 506.903726] IDTVectoring: info=00000000 errcode=00000000 [ 506.909271] TSC Offset = 0xfffffeef0082fc64 [ 506.913772] EPT pointer = 0x00000001cdda301e [ 506.927825] *** Guest State *** [ 506.931127] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 506.940054] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 506.948925] CR3 = 0x0000000000004000 [ 506.952628] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 506.959183] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 506.965735] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 506.971697] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 506.977793] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 506.984500] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 506.984521] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 506.984539] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 507.000539] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.000558] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.024578] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.032536] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 507.040615] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 507.048644] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 507.057357] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 507.065390] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 507.071797] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 507.079299] Interruptibility = 00000000 ActivityState = 00000000 [ 507.085557] *** Host State *** [ 507.088741] RIP = 0xffffffff812047de RSP = 0xffff8881be88f390 [ 507.094769] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 507.101188] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 507.109047] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 507.114993] CR0=0000000080050033 CR3=00000001c3225000 CR4=00000000001426e0 [ 507.122014] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 507.128761] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 507.134863] *** Control State *** [ 507.138316] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 507.145025] EntryControls=0000d1ff ExitControls=002fefff [ 507.150498] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:46:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0xfffbffffffffffff) dup(r2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x20000000) 19:46:24 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:24 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:24 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) 19:46:24 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r0, 0x891b, &(0x7f0000000000)={'bcsh0\x00', {0x2, 0x4e23, @empty}}) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 507.157460] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 507.164174] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 507.170736] reason=80000021 qualification=0000000000000002 [ 507.177091] IDTVectoring: info=00000000 errcode=00000000 [ 507.182555] TSC Offset = 0xfffffeef0082fc64 [ 507.187544] EPT pointer = 0x00000001cdda301e 19:46:24 executing program 2: r0 = syz_open_dev$dri(0x0, 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:24 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) 19:46:24 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:25 executing program 1: add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000000)) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000005c0)={"620706000000000000655f30000e00", {0x2, 0x0, @loopback}}) 19:46:25 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 507.437493] *** Guest State *** [ 507.453418] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:25 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) [ 507.525411] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 507.587773] CR3 = 0x0000000000004000 [ 507.605437] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 507.640767] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 507.659508] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 507.675155] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 507.685725] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 507.694937] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 507.713876] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.722036] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 507.730258] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.738546] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.746586] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 507.754586] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 507.762541] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 507.770548] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 507.778572] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 507.786583] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 507.793007] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 507.800511] Interruptibility = 00000000 ActivityState = 00000000 [ 507.806788] *** Host State *** [ 507.809991] RIP = 0xffffffff812047de RSP = 0xffff88817c427390 [ 507.816049] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 507.822460] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 507.830302] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 507.836222] CR0=0000000080050033 CR3=00000001b4d0d000 CR4=00000000001426f0 [ 507.843232] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 507.849937] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 507.856154] *** Control State *** [ 507.859601] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 507.866357] EntryControls=0000d1ff ExitControls=002fefff [ 507.871824] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 507.878806] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 507.885494] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 507.892055] reason=80000021 qualification=0000000000000002 [ 507.898409] IDTVectoring: info=00000000 errcode=00000000 [ 507.903899] TSC Offset = 0xfffffeee6e2dcf6a [ 507.908227] EPT pointer = 0x00000001be50b01e 19:46:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x60) 19:46:25 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:25 executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0xf12, 0xfffffffffffffe01, 0x9, 0x100}, {0x1, 0x4, 0xfffffffffffffffd, 0x3}, {0x3, 0x7e5d, 0x6, 0xfffffffffffffffe}]}) r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff9) add_key$user(0x0, 0x0, 0x0, 0x0, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:25 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:25 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:25 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:25 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:25 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:25 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xd9) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=0x0) sched_getparam(r1, &(0x7f0000000040)) [ 508.177658] *** Guest State *** [ 508.194191] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:25 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:25 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x400000, 0x0) sendto(r0, &(0x7f0000000080)="2e78b91b38698e614ac10b8f6189f8b8e3930a1f035c25a2f4a1fcbba6ed3f12253ae1e0b9d755797555d3dc70a3253881925738461e5544df1814511caf3a4a538f00668fbc2ccca0de423a597bb2c8544051b5c142ef9e87e44083bbb40da52ce4aad36712d20bdedbac4be23926ebd7c23a35e571577ea42cf1fcf05949d7486ac5dbc7273b1a0ecfb0cb036f1b07f9f021905eae89f75e2e8e0f", 0x9c, 0x800, &(0x7f0000000140)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @empty}, 0x1, 0x4, 0x1, 0x1}}, 0x80) setsockopt$inet_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000040)={0xd97f}, 0x4) [ 508.220376] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 508.239959] CR3 = 0x0000000000004000 [ 508.249225] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 508.261308] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 508.270105] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 508.308999] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 508.343344] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 508.375337] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 508.400452] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 508.420445] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 508.429331] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 508.450143] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 508.458671] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 508.467689] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 508.475906] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 508.483961] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 508.491960] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 508.500597] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 508.507099] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 508.514618] Interruptibility = 00000000 ActivityState = 00000000 [ 508.520835] *** Host State *** [ 508.524082] RIP = 0xffffffff812047de RSP = 0xffff8881bcf67390 [ 508.530094] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 508.536564] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 508.544388] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 508.550264] CR0=0000000080050033 CR3=00000001ba885000 CR4=00000000001426e0 [ 508.557325] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 508.564055] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 508.570097] *** Control State *** [ 508.573629] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 508.580289] EntryControls=0000d1ff ExitControls=002fefff [ 508.585799] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 508.592726] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 508.599461] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 508.606128] reason=80000021 qualification=0000000000000002 [ 508.612429] IDTVectoring: info=00000000 errcode=00000000 [ 508.617916] TSC Offset = 0xfffffeee0881a3e6 [ 508.622239] EPT pointer = 0x00000001cc72601e 19:46:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:26 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7f6e8580a700) 19:46:26 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:26 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(0xffffffffffffffff) 19:46:26 executing program 1: getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f00000000c0)={0x0, 0x16}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000140)={r0, 0x1}, 0x8) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0xfffffffffffffffc, 0x0) r2 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000001c0)={'veth0\x00', 0x2}) 19:46:26 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:26 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:26 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000140)=""/40, &(0x7f0000000180)=0x28) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = fcntl$dupfd(r0, 0x406, r0) r2 = dup2(r0, r0) openat$cgroup_subtree(r2, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f0000000000)) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r3 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x0, 0x1) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f00000001c0)={0x0, 0x20}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000240)={r4, 0x1d5e}, &(0x7f0000000280)=0x8) sendmsg$key(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020b80080e00000029bd7000fedbdf2505001a00fe8000000000000000000000000000bbe00000020000000000000000000000000f00100405001a00e00000020000000000000000002c4c78c2ba6d1b853f00000000000000000000000000000000000001071300020000042cbd7000ff340000b18ec839ba499cdb753f6c84d22fa4d625c17ef8e71a33d53bab3676a8e1c34fe0775c493a0af7de7743d584384410918c92df9c986d8febf7ea3a9fd8dac1534b9746cddf657b784f3805da7683c9232823c0ce9e1da81aecae6189f234d53c178a859333b0b1c5c7300d4c0e971943cfd77be21d93a0ec7a185b0f5b004ee2e7b00e5367128d069d571a"], 0x70}}, 0x80) 19:46:26 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:26 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 508.925576] IPVS: length: 40 != 8 [ 508.957092] IPVS: length: 40 != 8 [ 508.972702] *** Guest State *** 19:46:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100008000000000) [ 509.027145] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 509.093907] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 509.103185] CR3 = 0x0000000000004000 [ 509.133208] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 509.140479] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 509.148515] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 509.155007] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 509.161186] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 509.168974] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 509.179396] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 509.187844] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 509.196897] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 509.205894] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 509.214660] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 509.222790] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 509.231346] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 509.239906] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 509.248297] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 509.256656] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 509.263162] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 509.271160] Interruptibility = 00000000 ActivityState = 00000000 [ 509.278730] *** Host State *** [ 509.282039] RIP = 0xffffffff812047de RSP = 0xffff88817dc2f390 [ 509.288421] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 509.295259] FSBase=00007f911e1d0700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 509.303096] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 509.309073] CR0=0000000080050033 CR3=00000001bba3f000 CR4=00000000001426f0 [ 509.316126] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 509.322789] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 509.328908] *** Control State *** [ 509.332371] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 509.339079] EntryControls=0000d1ff ExitControls=002fefff 19:46:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@getspdinfo={0x14, 0x25, 0x1}, 0x14}}, 0x0) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/rfkill\x00', 0x80000, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000500)={{{@in=@remote, @in6=@ipv4={[], [], @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@remote}}, &(0x7f0000000200)=0xe8) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ATTR(r4, &(0x7f0000000680)={0x78, 0xfffffffffffffff5, 0x7, {0x58c3, 0x3, 0x0, {0x3, 0x643, 0x1, 0x0, 0x6, 0x4, 0x0, 0xcc, 0x9, 0x872d, 0x7f, r5, r6, 0x5, 0xe7be}}}, 0x78) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r4, 0x4058534c, &(0x7f0000000740)={0x6, 0x4, 0x3, 0x5, 0xdd2c, 0xc0df}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r7 = dup(0xffffffffffffffff) ioctl$SG_SET_COMMAND_Q(r7, 0x2271, &(0x7f0000000180)=0xfffffffffffffffd) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_id=0x0, &(0x7f0000000040)=0x4) ioctl$SG_GET_REQUEST_TABLE(r7, 0x2286, &(0x7f0000000380)) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r7, 0x84, 0x5, &(0x7f0000000080)={r8, @in={{0x2, 0x4e21, @multicast1}}}, 0x84) 19:46:26 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:26 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:26 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x103000, 0x0) ioctl$VIDIOC_G_FMT(r1, 0xc0d05604, &(0x7f0000000040)={0x4, @sliced={0x1f, [0x9, 0x2, 0x0, 0x6, 0x7f, 0x200daf74, 0x9, 0x800, 0x81, 0x1f, 0x0, 0x2, 0x9, 0xfffffffffffffffa, 0xffffffff, 0x7f, 0x0, 0x2, 0x3, 0x1ff, 0x80000001, 0x20, 0x9, 0x1000, 0x5, 0x6, 0x7, 0x1, 0x81, 0x401, 0x80000001, 0x3be, 0x100, 0x2, 0x3, 0x18, 0xb10, 0x3, 0x2, 0x80000000, 0x7fff, 0xfffffffffffff059, 0x1, 0x0, 0x7a7, 0x0, 0x2, 0x8], 0x8001}}) socket$inet6(0xa, 0x800, 0x4fd) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='bond_slave_1\x00', 0x10) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:26 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) [ 509.344570] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 509.351496] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 509.358229] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 509.364841] reason=80000021 qualification=0000000000000002 [ 509.371159] IDTVectoring: info=00000000 errcode=00000000 [ 509.376642] TSC Offset = 0xfffffeed9f884931 [ 509.380972] EPT pointer = 0x00000001be86601e 19:46:27 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000000)=""/211) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:27 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:27 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:27 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r1) getpeername$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) 19:46:27 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:27 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 509.877814] *** Guest State *** [ 509.886084] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 509.902807] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 509.954271] CR3 = 0x0000000000004000 [ 509.970445] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 509.990184] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 510.008743] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 510.022919] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 510.046636] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 510.061639] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 510.078030] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 510.086697] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 510.095233] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 510.103454] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 510.113450] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 510.122104] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 510.130629] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 510.139277] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 510.148040] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 510.156514] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 510.163408] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 510.171519] Interruptibility = 00000000 ActivityState = 00000000 [ 510.178319] *** Host State *** [ 510.182141] RIP = 0xffffffff812047de RSP = 0xffff88818130f390 [ 510.188859] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 510.195934] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 510.204438] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 510.210896] CR0=0000000080050033 CR3=00000001cae5d000 CR4=00000000001426e0 [ 510.218615] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 510.225905] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 510.232458] *** Control State *** [ 510.244027] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 510.263759] EntryControls=0000d1ff ExitControls=002fefff [ 510.273080] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 510.298472] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 510.324684] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 510.331292] reason=80000021 qualification=0000000000000002 [ 510.337924] IDTVectoring: info=00000000 errcode=00000000 [ 510.343486] TSC Offset = 0xfffffeed1d16fdcc [ 510.348266] EPT pointer = 0x00000001b8a9001e [ 510.367752] *** Guest State *** [ 510.371067] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 510.388961] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 510.397905] CR3 = 0x0000000000004000 [ 510.401632] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 510.408205] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 510.414832] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 510.420810] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 510.426879] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 510.433872] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 510.441863] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 510.449911] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 510.457962] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 510.466066] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 19:46:28 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) [ 510.474157] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 510.482137] GDTR: limit=0x000007ff, base=0x0000000000001000 19:46:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 19:46:28 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:28 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) gettid() [ 510.549969] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) [ 510.601545] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 510.654231] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 510.662235] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 510.662270] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 510.662297] Interruptibility = 00000000 ActivityState = 00000000 [ 510.662302] *** Host State *** [ 510.662316] RIP = 0xffffffff812047de RSP = 0xffff88818130f390 [ 510.662342] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 510.739681] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 510.747763] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 510.753909] CR0=0000000080050033 CR3=00000001cae5d000 CR4=00000000001426f0 [ 510.763908] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 510.770681] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 510.776939] *** Control State *** [ 510.781081] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0x0, &(0x7f0000000200)) close(r0) [ 510.788098] EntryControls=0000d1ff ExitControls=002fefff [ 510.794017] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 510.801069] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 510.807899] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 510.814803] reason=80000021 qualification=0000000000000002 [ 510.821272] IDTVectoring: info=00000000 errcode=00000000 [ 510.826995] TSC Offset = 0xfffffeed1d16fdcc [ 510.831533] EPT pointer = 0x00000001b8a9001e 19:46:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x12, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, 0x0) close(r0) 19:46:28 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(0xffffffffffffffff) 19:46:29 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:29 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000000)) mlock2(&(0x7f0000fef000/0x1000)=nil, 0x1000, 0x1) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x84000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000) 19:46:29 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:29 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) r1 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x9, 0x1) getsockopt$inet_udp_int(r1, 0x11, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 511.837861] *** Guest State *** [ 511.843037] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 511.852162] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 511.861942] CR3 = 0x0000000000004000 [ 511.866008] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 511.872736] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 511.879618] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 511.885936] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 511.892268] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 511.899212] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 511.907474] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 511.915793] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 511.924167] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 511.932450] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 511.940741] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 511.948944] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 511.957273] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 511.965522] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 511.973846] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 511.982030] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 511.988735] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 511.996457] Interruptibility = 00000000 ActivityState = 00000000 [ 512.002905] *** Host State *** [ 512.006366] RIP = 0xffffffff812047de RSP = 0xffff8881ce34f390 [ 512.012593] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 512.019265] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 512.027313] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 512.033430] CR0=0000000080050033 CR3=00000001c3175000 CR4=00000000001426f0 [ 512.040898] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 512.063633] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 512.070224] *** Control State *** [ 512.075732] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 512.082883] EntryControls=0000d1ff ExitControls=002fefff [ 512.089186] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 512.096817] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 512.104256] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 512.111315] reason=80000021 qualification=0000000000000002 [ 512.118364] IDTVectoring: info=00000000 errcode=00000000 [ 512.124539] TSC Offset = 0xfffffeec0fa6ef02 [ 512.129398] EPT pointer = 0x00000001b20ab01e 19:46:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000000)={0xfd, "1700edc78ac6252a39c659d05b30648526fb43acdcfe31d6599df4d6c3c5c3a156de36602fe4fae062f44dd51271178697df5903a38bbcdf2e9eca539ae942cca9dce8ab5aa244f54faa74362d7846ca6b6df7d45670d695e830d900eeeb42c2a7c243cc75b6e7cc4531ae5a34c07228c2a3cb24220abf4edf11ff8722adbc354f5ef777ce6b2192815751e71ecc65f2cfd3b4a9d7d9e18d6ea9030dbe484294ce61dc53be2551b9c15eb740ce8eecf505589dbf7608b40028b4ca834241712e0d63b28b45311dfab4f6a440ce6d181fc84ff0264a168e63491845e8e8871e8ed6888d2010698e1bd5c1dbf03c3a19c83da633f6c70d5f4e88cc6d6604"}) accept4$alg(r3, 0x0, 0x0, 0x800) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 512.396567] *** Guest State *** [ 512.400335] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 512.409679] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 512.419182] CR3 = 0x0000000000004000 [ 512.423369] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 512.430570] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 512.437689] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 512.446909] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 512.453389] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 512.460865] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 512.470989] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 512.479829] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 512.488564] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 512.497436] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 512.506215] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 512.514945] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 512.523455] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 512.532298] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 512.549637] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 512.592830] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 512.609266] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 512.622863] Interruptibility = 00000000 ActivityState = 00000000 [ 512.631906] *** Host State *** [ 512.635746] RIP = 0xffffffff812047de RSP = 0xffff8881ce34f390 19:46:30 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffff9c) ioctl$TCGETS(r0, 0x5401, &(0x7f0000000140)) setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000040)=0x101, 0x4) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 512.642102] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 512.649257] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 512.663870] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 512.678798] CR0=0000000080050033 CR3=00000001ae59f000 CR4=00000000001426f0 [ 512.686123] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 512.700892] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 512.707583] *** Control State *** [ 512.712000] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 512.722911] EntryControls=0000d1ff ExitControls=002fefff [ 512.728584] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 512.735723] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 512.742537] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 512.749444] reason=80000021 qualification=0000000000000002 [ 512.756177] IDTVectoring: info=00000000 errcode=00000000 [ 512.761779] TSC Offset = 0xfffffeebc0f9354a [ 512.766321] EPT pointer = 0x00000001d20ac01e 19:46:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x1, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40, 0x0) write$P9_RREAD(r2, &(0x7f0000000040)={0xdd, 0x75, 0x1, {0xd2, "8bb747762f30984eb31d3a9805010a34c3467a46038011c3fc2ef3715a3d79230fb1bb36bc0a7fbfdf1a67b7e626a97a759ecafcef04d42cce967bf9b88fa6bd926e0c63fa5700edfaebd04d84ac292027e667cd6d41af5984e34d6977e37f2445e0441ce2d745287a9caee25567175366adbf59d2565292ebab64a7ccc369a2f27778128880e2a3c7d4aac2c874b5db60acd4c78a5ec65b254e8136ac2a53512d79ca59a749733a2ba2a15bb013f5eb9a307af094760d03210dbb13c78c2cdfce35c512469f9fbd7d28063c33369d61f706"}}, 0xdd) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x32, 0x0, 0x0) 19:46:30 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) timer_create(0x2, &(0x7f0000000000)={0x0, 0x1a, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_getoverrun(r2) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r4 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) writev(r0, &(0x7f0000000080)=[{&(0x7f0000000380)="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", 0x1000}], 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) 19:46:30 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:30 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) setsockopt$inet_buf(r0, 0x0, 0x0, &(0x7f0000000000)="596c6dca16ea184a28b9f413d2e6fe002871368d374c0e3ede34f53c0a6c9aa39310b08823f0ceb011dde3f7d4b81302a4a65d81a9d239220e5ffefa2a58e96e95a3d1f40c0710ca547b0f890c45dfa083607d85856483a4cece43b96f527e1259e919870be8a7ca907c40e4c595744c793c94df4750623b78966b7854221f2bf43246dfc97dcc7b089f0a9f3d2f85945b7284a3c930da75cc3e8f514547d7adef74512d700bca9b92593b9c03711ac058f6f71a2928e52780c8a42b82c0a7ae6c1ba63a44a7b88fa2ba7a45a5eb59b40cf8f1d276662d241b12c13d4f", 0xdd) r1 = syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x1, 0x2) ioctl$RNDCLEARPOOL(r1, 0x5206, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x4) 19:46:30 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x20000040001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) 19:46:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6000000) [ 513.408450] *** Guest State *** [ 513.412048] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 513.421262] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 513.430448] CR3 = 0x0000000000004000 [ 513.434538] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 513.441337] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 513.448787] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 513.455616] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 513.462141] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 513.469216] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 513.479882] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 513.488430] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 513.496873] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 513.505301] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 513.513749] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 513.522118] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 513.530583] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 513.539100] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 513.547510] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 513.555889] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 513.562658] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 513.570542] Interruptibility = 00000000 ActivityState = 00000000 [ 513.577189] *** Host State *** [ 513.580755] RIP = 0xffffffff812047de RSP = 0xffff888180d5f390 [ 513.589799] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 513.596936] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 513.605488] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 513.611848] CR0=0000000080050033 CR3=00000001be341000 CR4=00000000001426f0 [ 513.619670] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 513.627237] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 513.634097] *** Control State *** [ 513.638050] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 513.645492] EntryControls=0000d1ff ExitControls=002fefff [ 513.651438] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 513.659157] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 513.666563] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 513.675294] reason=80000021 qualification=0000000000000002 [ 513.682105] IDTVectoring: info=00000000 errcode=00000000 [ 513.688533] TSC Offset = 0xfffffeeb35eeb126 [ 513.693384] EPT pointer = 0x00000001bc65101e 19:46:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) time(&(0x7f00000000c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r3, 0xc0205649, &(0x7f0000000080)={0x0, 0x81, 0x80000000, [], &(0x7f0000000040)={0x0, 0xfc, [], @p_u8=&(0x7f0000000000)=0x5}}) [ 513.913006] *** Guest State *** [ 513.916385] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 513.925430] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 513.935310] CR3 = 0x0000000000004000 [ 513.939043] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 513.945642] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 513.952158] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 513.959103] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 513.965330] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 513.972124] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 513.980277] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 513.988414] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 513.996565] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.004733] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.012795] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.020903] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 514.029049] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 514.037180] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 514.045536] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 514.053668] EFER = 0x0000000000000001 PAT = 0x0007040600070406 19:46:31 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 514.060223] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 514.068665] Interruptibility = 00000000 ActivityState = 00000000 [ 514.091670] *** Host State *** [ 514.096265] RIP = 0xffffffff812047de RSP = 0xffff8881843cf390 [ 514.116853] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 514.143621] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 514.151520] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 514.173793] CR0=0000000080050033 CR3=00000001ae1de000 CR4=00000000001426e0 [ 514.180914] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 514.203620] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 514.209717] *** Control State *** [ 514.213190] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 514.220115] EntryControls=0000d1ff ExitControls=002fefff [ 514.225662] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 514.232610] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 514.239492] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 514.246167] reason=80000021 qualification=0000000000000002 [ 514.252492] IDTVectoring: info=00000000 errcode=00000000 [ 514.258046] TSC Offset = 0xfffffeeaef06df85 [ 514.262390] EPT pointer = 0x00000001ae59f01e 19:46:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11) 19:46:31 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:31 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="dc34a82a6dff1c92b3d9eb49763c1f80b2f1428782de6254f81d41691865b10215800f3695657b772031a5d0c334884b3f9d74334d68d87b1a0c6e24c689", 0x3e, 0x0) r1 = add_key(&(0x7f00000000c0)='trusted\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="02f288f259eda5f580d028c5d4fcc289c9ea7b2a8390b7158e9c87412e998746ab05b35cc1af06579de1406a35fd8a0df8650020ab7e53efb8709e2bd8ca6ae4daaca0c879aa6240cf16cc8f7aa03e318fe5184b204e4a0c0c31d47368911982066e519bc48a1d8db83f73b6e1d6a51859869b040fccd2e23259499782a082e95b4a0161580e1aa7d9592e2352f0cf3da5c4ba658cf08ab18c2fc895c2e05bb599c3de35ba551172da1bb6dd0f18f561d9d89f0b43b7652ab3b975a591ae0b1b0e9e33b024550b618b1edd3ad90c59d98dc6fe2900ee11f7539a05efac4072ceb9cc097a771f4f5030d5e45c", 0xec, 0xfffffffffffffffd) add_key$user(0x0, 0x0, 0x0, 0x0, r1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:32 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3ea, @local}}) 19:46:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$VIDIOC_STREAMOFF(r3, 0x40045613, &(0x7f0000000000)=0x7d2) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 514.661432] *** Guest State *** [ 514.665107] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 514.674759] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 514.684193] CR3 = 0x0000000000004000 [ 514.688184] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 514.695279] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 514.702045] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 514.708619] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 514.715148] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 514.722116] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 514.730674] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.739212] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 514.747747] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.756203] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.764649] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 514.772833] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 514.781357] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 514.789792] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 514.798268] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 514.806707] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 514.813338] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 514.821474] Interruptibility = 00000000 ActivityState = 00000000 [ 514.828213] *** Host State *** [ 514.831678] RIP = 0xffffffff812047de RSP = 0xffff888184837390 [ 514.838194] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 514.845119] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 514.853177] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 514.859602] CR0=0000000080050033 CR3=00000001ae1de000 CR4=00000000001426f0 [ 514.867152] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 514.874433] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 514.880757] *** Control State *** [ 514.884748] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 514.891693] EntryControls=0000d1ff ExitControls=002fefff [ 514.897676] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 514.905111] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 514.912047] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 514.919141] reason=80000021 qualification=0000000000000002 [ 514.926168] IDTVectoring: info=00000000 errcode=00000000 [ 514.931896] TSC Offset = 0xfffffeea89aa5427 [ 514.936752] EPT pointer = 0x00000001c6fa201e [ 515.003944] *** Guest State *** [ 515.007727] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 515.017151] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 515.026516] CR3 = 0x0000000000004000 [ 515.030684] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 515.037828] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 515.044798] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 515.052838] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 515.059634] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 515.067055] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 515.075795] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 515.085941] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 515.094663] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 515.103074] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 515.111765] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 515.120496] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 515.129357] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 515.143724] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 515.151722] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 515.169833] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 515.176354] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 515.176366] Interruptibility = 00000000 ActivityState = 00000000 [ 515.176371] *** Host State *** [ 515.176384] RIP = 0xffffffff812047de RSP = 0xffff8881c336f390 19:46:32 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3e4, @local}}) 19:46:32 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x0, 0x20000) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x1b, 0x14, 0x0, "2c2ab22263c4ea4cb7bd9720f6e122f6245964c45ce22a535c9410ebfefd91d7288d7d90f7d1fd56350cefbe80e14555880c2f5f815175ab6234bf64c130d42e", "51cd604818e523cab6ac2b6c4016de7abd82e7a5dab515ef158b848737596a8ca2d6fb4bb682d3467fca923b07c53253173ca937a01ae69ac0a36f486ae60bf3", "2d498761d218ff07133e3ffefa0868018d545c35c1dbe6c75d6272225c3b4f22", [0x8, 0x8]}) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x12000) ioctl$UI_GET_VERSION(r2, 0x8004552d, &(0x7f0000000040)) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={'tunl0\x00', {0x2, 0x4e20, @local}}) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 515.176409] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 515.176423] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 515.176440] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 515.220510] CR0=0000000080050033 CR3=00000001ae1de000 CR4=00000000001426e0 [ 515.229328] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 515.236199] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 515.254432] *** Control State *** [ 515.257905] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 515.293970] EntryControls=0000d1ff ExitControls=002fefff [ 515.316823] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 515.342048] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 515.349644] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 515.356535] reason=80000021 qualification=0000000000000002 19:46:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x40) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f00000000c0)={0x5, &(0x7f0000000080)=[{0x1f, 0x3, 0x2, 0x9}, {0x5, 0x10000, 0x100000000, 0x6}, {0x7, 0x7, 0xd11e, 0xfffffffffffffff9}, {0x20, 0x6c, 0x6a, 0xffffffff}, {0x12, 0x0, 0x6, 0x2c7}]}) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x2000) [ 515.366572] IDTVectoring: info=00000000 errcode=00000000 [ 515.372068] TSC Offset = 0xfffffeea89aa5427 [ 515.376660] EPT pointer = 0x00000001c6fa201e [ 515.496044] *** Guest State *** [ 515.499578] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 515.508720] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 515.519205] CR3 = 0x0000000000004000 [ 515.523286] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 515.530125] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 515.537660] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 515.544529] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 515.550793] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 515.557917] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 515.566258] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 515.574575] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 515.582809] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 19:46:33 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3ea, @local}}) [ 515.591098] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 515.599400] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 515.608111] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 515.630768] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 515.645744] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 515.667034] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 515.689275] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 515.696739] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 515.705690] Interruptibility = 00000000 ActivityState = 00000000 [ 515.712444] *** Host State *** [ 515.717438] RIP = 0xffffffff812047de RSP = 0xffff88817f667390 [ 515.725271] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 515.736232] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 515.746178] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 515.752297] CR0=0000000080050033 CR3=00000001ba0d1000 CR4=00000000001426e0 [ 515.759840] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 515.767164] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 515.773445] *** Control State *** [ 515.777540] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 515.784747] EntryControls=0000d1ff ExitControls=002fefff [ 515.790433] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 515.797997] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 515.805132] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 515.811953] reason=80000021 qualification=0000000000000002 [ 515.818804] IDTVectoring: info=00000000 errcode=00000000 [ 515.824797] TSC Offset = 0xfffffeea174dfe51 [ 515.829367] EPT pointer = 0x00000001beaef01e [ 515.895213] *** Guest State *** [ 515.898964] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 515.908496] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 515.919223] CR3 = 0x0000000000004000 [ 515.923337] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 515.930619] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 515.949200] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 515.955978] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 515.962355] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 515.969874] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 515.978692] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 515.987396] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 515.997712] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.006405] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.020839] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.030392] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 516.039366] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 516.049454] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 516.058164] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 516.068156] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 516.075298] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 516.094193] Interruptibility = 00000000 ActivityState = 00000000 [ 516.100824] *** Host State *** [ 516.106122] RIP = 0xffffffff812047de RSP = 0xffff888189c67390 [ 516.115106] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 516.121879] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 516.130476] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 516.139886] CR0=0000000080050033 CR3=00000001ba0d1000 CR4=00000000001426e0 [ 516.147582] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 516.154847] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 516.161258] *** Control State *** [ 516.165360] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 516.173718] EntryControls=0000d1ff ExitControls=002fefff [ 516.179438] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:46:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x10) 19:46:33 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 516.194546] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 516.201226] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 516.209239] reason=80000021 qualification=0000000000000002 [ 516.225246] IDTVectoring: info=00000000 errcode=00000000 [ 516.230801] TSC Offset = 0xfffffee9e0f3165f [ 516.236213] EPT pointer = 0x00000001c249101e 19:46:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/status\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) dup(0xffffffffffffffff) ioctl$FICLONE(r0, 0x40049409, r2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:33 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3e4, @local}}) [ 516.457174] *** Guest State *** [ 516.463815] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 516.473166] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 516.494927] CR3 = 0x0000000000004000 [ 516.498767] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 516.513711] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 516.520655] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 516.527537] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 516.534257] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 516.541311] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 516.549964] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.558736] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 516.568902] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.577553] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.586298] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 516.594973] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 516.603384] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 516.612086] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 516.620793] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 516.629467] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 516.636662] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 516.644843] Interruptibility = 00000000 ActivityState = 00000000 [ 516.651485] *** Host State *** [ 516.655435] RIP = 0xffffffff812047de RSP = 0xffff88817d37f390 [ 516.661833] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 516.668908] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 516.677407] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 516.683645] CR0=0000000080050033 CR3=00000001cd37e000 CR4=00000000001426f0 19:46:34 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = getpid() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x0, &(0x7f0000000000)=""/253) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 516.709852] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 19:46:34 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3ea, @local}}) [ 516.766736] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 516.807145] *** Control State *** [ 516.811602] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 516.825498] EntryControls=0000d1ff ExitControls=002fefff [ 516.832733] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 516.840816] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 516.857322] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 516.865373] reason=80000021 qualification=0000000000000002 [ 516.872390] IDTVectoring: info=00000000 errcode=00000000 [ 516.878359] TSC Offset = 0xfffffee999c27225 [ 516.883103] EPT pointer = 0x00000001d8ca601e [ 516.918472] *** Guest State *** [ 516.922021] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 516.931406] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 516.940661] CR3 = 0x0000000000004000 [ 516.944765] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 516.952695] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 516.967173] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 516.973370] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 516.979771] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 516.986949] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 516.995612] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.004087] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 517.012245] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.020732] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.029251] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.037635] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 517.046046] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 517.054459] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 517.062724] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 517.071122] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 517.077962] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 517.087036] Interruptibility = 00000000 ActivityState = 00000000 [ 517.093433] *** Host State *** [ 517.097136] RIP = 0xffffffff812047de RSP = 0xffff8881bc0bf390 [ 517.103355] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 517.110216] FSBase=00007f911e1f1700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 517.118466] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 517.124789] CR0=0000000080050033 CR3=00000001cd37e000 CR4=00000000001426e0 [ 517.132014] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 517.139243] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 517.145711] *** Control State *** [ 517.149350] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 517.156465] EntryControls=0000d1ff ExitControls=002fefff [ 517.162099] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 517.169978] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 517.177104] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 517.184120] reason=80000021 qualification=0000000000000002 [ 517.190621] IDTVectoring: info=00000000 errcode=00000000 [ 517.203652] TSC Offset = 0xfffffee9520f0474 [ 517.208443] EPT pointer = 0x00000001baf7801e 19:46:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x40000, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r3, 0x4, 0x0, r4}) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 517.338497] *** Guest State *** [ 517.341810] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 517.352158] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 517.361583] CR3 = 0x0000000000004000 [ 517.365913] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 517.372419] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 517.379334] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 517.385716] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 517.391793] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 517.398902] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 517.407222] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.415556] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 517.423907] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.432010] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.440454] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 517.448824] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 517.457340] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 517.465672] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 517.474953] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 517.483034] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 517.489924] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 517.497736] Interruptibility = 00000000 ActivityState = 00000000 [ 517.504361] *** Host State *** [ 517.507641] RIP = 0xffffffff812047de RSP = 0xffff888189267390 [ 517.514035] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 517.520577] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 517.528776] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 19:46:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) [ 517.535709] CR0=0000000080050033 CR3=00000001cd37e000 CR4=00000000001426e0 [ 517.542847] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 517.549896] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 517.556307] *** Control State *** [ 517.559891] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 19:46:35 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:35 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x3e4, @local}}) [ 517.602429] EntryControls=0000d1ff ExitControls=002fefff [ 517.647707] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 517.673932] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 517.704275] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 517.725571] reason=80000021 qualification=0000000000000002 [ 517.731996] IDTVectoring: info=00000000 errcode=00000000 [ 517.738775] TSC Offset = 0xfffffee91a1e4f90 [ 517.752360] EPT pointer = 0x00000001c3f7801e [ 517.824044] *** Guest State *** [ 517.840500] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 517.849806] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 517.859168] CR3 = 0x0000000000004000 [ 517.863280] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 517.871868] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 517.878944] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 517.886590] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 517.892966] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 517.900188] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 517.908669] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 19:46:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x40) ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f00000000c0)={0x5, &(0x7f0000000080)=[{0x1f, 0x3, 0x2, 0x9}, {0x5, 0x10000, 0x100000000, 0x6}, {0x7, 0x7, 0xd11e, 0xfffffffffffffff9}, {0x20, 0x6c, 0x6a, 0xffffffff}, {0x12, 0x0, 0x6, 0x2c7}]}) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x2, 0x2000) [ 517.917157] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 517.936740] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 517.946637] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 517.962731] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 19:46:35 executing program 1: r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x101, 0x2000) ioctl$sock_ifreq(r0, 0x0, &(0x7f0000000040)={'team0\x00', @ifru_mtu=0x4}) r1 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) [ 517.980720] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 517.989062] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 517.997376] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 518.007115] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 518.029811] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 518.039834] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 518.061316] Interruptibility = 00000000 ActivityState = 00000000 [ 518.082500] *** Host State *** [ 518.113687] RIP = 0xffffffff812047de RSP = 0xffff8881848c7390 [ 518.120145] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 518.128789] FSBase=00007f911e212700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 518.138490] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 518.145185] CR0=0000000080050033 CR3=00000001cd37e000 CR4=00000000001426e0 [ 518.152624] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 518.160077] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 518.166803] *** Control State *** [ 518.170796] *** Guest State *** [ 518.170811] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 518.170825] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 518.170832] CR3 = 0x0000000000004000 [ 518.170845] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 518.170857] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 518.170866] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 518.170877] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 518.170893] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 518.170907] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 518.170927] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.175034] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 518.250558] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 518.260323] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.269013] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.277809] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.286434] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 518.295176] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 518.303850] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 518.312234] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 518.320855] EntryControls=0000d1ff ExitControls=002fefff [ 518.326963] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 518.334036] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 518.341401] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 518.349504] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 518.356760] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 518.364050] Interruptibility = 00000000 ActivityState = 00000000 [ 518.370701] reason=80000021 qualification=0000000000000002 [ 518.377694] *** Host State *** [ 518.381312] RIP = 0xffffffff812047de RSP = 0xffff8881bf3bf390 [ 518.389242] IDTVectoring: info=00000000 errcode=00000000 [ 518.395393] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 518.402198] TSC Offset = 0xfffffee91a1e4f90 [ 518.407187] EPT pointer = 0x00000001c3f7801e [ 518.412022] FSBase=00007ffa53ecf700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 518.433626] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 518.450940] CR0=0000000080050033 CR3=00000001ae59f000 CR4=00000000001426f0 19:46:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000000)={0x0, 0x8d, "bd259846cbad404eeb007c537fe925607ad7256a9d0cb79d50dd2a350d2ce28127e45abc348c8bea02b1d33b39c553fc7eae618f9a63f49eb6d60837a2a35682d80a7052e322923cdebcf5d9ca20fa6f98af8c0c57d050a0f1cbdc09686a613e1e8a447ef30b16476aa52ea5a1f04a2abf6988923a3ea740ee99186feb499e9153e67400de3f752c4b8f91d3f3"}, &(0x7f00000000c0)=0x95) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000100)={0x7fff, 0x4, 0x0, 0x7ff, 0x81, 0x5, 0x2, 0x7f, r4}, 0x20) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 518.469512] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 518.487332] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 518.502123] *** Control State *** [ 518.510974] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 518.518460] EntryControls=0000d1ff ExitControls=002fefff [ 518.524534] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 518.531902] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 518.553260] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 518.575586] reason=80000021 qualification=0000000000000002 [ 518.586784] IDTVectoring: info=00000000 errcode=00000000 [ 518.592744] TSC Offset = 0xfffffee8acd00f0c [ 518.597610] EPT pointer = 0x00000001c019d01e [ 518.610717] *** Guest State *** [ 518.614138] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 518.623002] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 518.632197] CR3 = 0x0000000000004000 [ 518.636270] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 518.642782] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 518.649737] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 518.665628] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 518.672007] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 518.679168] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 518.687617] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.703977] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 518.712147] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.720592] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.729072] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 518.737719] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 518.746341] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 518.754815] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 518.762969] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 19:46:36 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe803, @local}}) [ 518.771454] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 518.781326] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 518.799167] Interruptibility = 00000000 ActivityState = 00000000 [ 518.806048] *** Host State *** [ 518.809435] RIP = 0xffffffff812047de RSP = 0xffff888187a37390 [ 518.815897] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 518.831133] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 518.844296] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 518.850910] CR0=0000000080050033 CR3=00000001c3b79000 CR4=00000000001426e0 [ 518.858664] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 19:46:36 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:36 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x0, 0x40200) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r1, 0xc0305615, &(0x7f0000000040)={0x0, {0x4c5, 0x1}}) 19:46:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000) 19:46:36 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe000000, @local}}) [ 518.893837] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 518.922925] *** Control State *** [ 518.928292] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 518.994684] EntryControls=0000d1ff ExitControls=002fefff [ 519.041765] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 519.065056] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 519.082124] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 519.089057] reason=80000021 qualification=0000000000000002 [ 519.096108] IDTVectoring: info=00000000 errcode=00000000 [ 519.101828] TSC Offset = 0xfffffee86b971900 [ 519.106915] EPT pointer = 0x00000001bdf4401e 19:46:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_names\x00') fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0}) mq_notify(r1, &(0x7f0000000080)={0x0, 0x2b, 0x5, @tid=r2}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) fcntl$notify(r4, 0x402, 0x4) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 519.366127] *** Guest State *** [ 519.369949] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 519.379736] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 519.389783] CR3 = 0x0000000000004000 [ 519.394300] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 519.401295] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 519.408660] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 519.444270] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 519.450740] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 519.458380] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 519.467157] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.475906] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 519.484678] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.493185] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.502012] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.510790] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 519.519718] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 519.528506] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 519.537565] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 519.546335] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 519.553284] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 519.561543] Interruptibility = 00000000 ActivityState = 00000000 [ 519.568599] *** Host State *** [ 519.572338] RIP = 0xffffffff812047de RSP = 0xffff888184fff390 [ 519.579188] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 519.586504] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 519.595092] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 519.601581] CR0=0000000080050033 CR3=00000001be245000 CR4=00000000001426e0 [ 519.609439] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 519.616884] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 519.623472] *** Control State *** [ 519.627761] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 519.644197] EntryControls=0000d1ff ExitControls=002fefff [ 519.650120] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 519.663134] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 519.672365] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 519.679755] reason=80000021 qualification=0000000000000002 [ 519.686823] IDTVectoring: info=00000000 errcode=00000000 [ 519.692756] TSC Offset = 0xfffffee80661037c [ 519.697971] EPT pointer = 0x00000001adcec01e [ 519.751789] *** Guest State *** [ 519.770473] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 519.780079] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 519.803741] CR3 = 0x0000000000004000 [ 519.807581] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 519.820910] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 519.834807] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 519.840900] RFLAGS=0x00000006 DR7 = 0x0000000000000400 19:46:37 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe803, @local}}) [ 519.853629] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 519.864210] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 519.872279] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.880556] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 519.889044] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.897227] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.906705] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 519.914889] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 519.931033] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 519.943857] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 519.957968] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 519.967154] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 519.973791] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 519.981380] Interruptibility = 00000000 ActivityState = 00000000 [ 519.987802] *** Host State *** [ 519.991167] RIP = 0xffffffff812047de RSP = 0xffff888184fff390 [ 519.997347] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 520.004570] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 520.012524] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 520.019425] CR0=0000000080050033 CR3=00000001be245000 CR4=00000000001426f0 [ 520.026655] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 520.033561] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 520.040066] *** Control State *** [ 520.043689] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 520.050577] EntryControls=0000d1ff ExitControls=002fefff 19:46:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x200800, 0x0) accept4$nfc_llcp(r2, &(0x7f0000000040), &(0x7f00000000c0)=0x60, 0x80000) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 520.056266] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 520.063355] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 520.070297] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 520.077149] reason=80000021 qualification=0000000000000002 [ 520.083684] IDTVectoring: info=00000000 errcode=00000000 [ 520.089290] TSC Offset = 0xfffffee7d0ddad56 [ 520.094721] EPT pointer = 0x00000001bf65b01e 19:46:37 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:37 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x8, 0x40000) r2 = add_key(&(0x7f0000000180)='id_legacy\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)="0e201562aada08bb1878d991f23cdb66b116378058f1fb1bd507b17d43964d0726cb2b3f020b2154f5f5e4f521cc1785d0b0873fead341f74ed290346be1c53c525ab0e7112fba4563536bfed011b22ee08ad1c9292e40c6c7e3802933459d593f6df6cf6420bcdd286d", 0x6a, 0xfffffffffffffff9) add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f0000000600)="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", 0x1000, r2) ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f0000000040)={0x0, @reserved}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)) stat(&(0x7f0000000940)='./file0\x00', &(0x7f00000008c0)) mount$bpf(0x0, &(0x7f00000007c0)='./file0/f.le.\x00', &(0x7f0000000800)='bpf\x00', 0x1000, &(0x7f0000000a00)=ANY=[@ANYBLOB="2c6673636f6e746511ff2205e80714ad835ceccc463d726f6f742c00"]) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x0, 0x0) syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0) ioctl$KVM_SET_CLOCK(r3, 0x4030ae7b, &(0x7f00000002c0)={0x1ff, 0x4}) r4 = creat(&(0x7f0000000880)='./file0/f.le.\x00', 0x0) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, 0x0) ioctl$DRM_IOCTL_RM_CTX(0xffffffffffffffff, 0xc0086421, &(0x7f0000000280)={0x0, 0x2}) lsetxattr$trusted_overlay_nlink(&(0x7f0000000400)='./file0/f.le.\x00', &(0x7f0000000440)='trusted.overlay.nlink\x00', &(0x7f0000000480)={'L+', 0x6}, 0x28, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$nfc_llcp_NFC_LLCP_RW(r3, 0x118, 0x0, &(0x7f0000000780)=0x4, 0x4) semctl$SETALL(0x0, 0x0, 0x11, &(0x7f00000003c0)=[0x0]) r5 = open(&(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x0) write$P9_RREADLINK(r5, &(0x7f00000005c0)=ANY=[@ANYBLOB="1000000017010007002e2f2fd56c65306909d396619abc5d2ea8cdd8950b6ed08d2ae3762ac639dbc7907b9a6141424320228310e322fecf684ecc3df2c62342cc73612204cd8c60c64436050eceef45251918bc7547749601000000000000001b"], 0x61) mkdirat(r5, &(0x7f0000000740)='./file0\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r3, 0xc0305302, &(0x7f0000000300)={0x0, 0x4, 0x0, 0x5, 0x0, 0x8000}) mkdirat(r5, &(0x7f0000000580)='.//ile0\x00', 0x1) mkdirat(r4, &(0x7f0000000840)='./file0/../file0/../file0\x00', 0x80) renameat(r5, &(0x7f0000000240)='.//ile0\x00', r5, &(0x7f0000000140)='./file0/../file0\x00') getpeername$unix(r3, &(0x7f0000000980)=@abs, &(0x7f0000000000)=0x6e) syz_mount_image$msdos(&(0x7f0000000080)='msdos\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x3ff, 0x1, &(0x7f0000002b40)=[{&(0x7f00000006c0)="5520c0d0a4511361b2962b16de95", 0xe, 0x7}], 0x2, 0x0) add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) 19:46:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) [ 520.218773] *** Guest State *** 19:46:37 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe000000, @local}}) [ 520.271357] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 520.322547] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 520.360066] CR3 = 0x0000000000004000 [ 520.372604] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 520.383838] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 520.409074] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 520.433722] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 520.453644] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 520.486807] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 520.543390] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 520.554599] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 520.562961] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 520.571580] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 520.581312] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 520.589884] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 520.606632] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 520.615433] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 520.624097] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 520.632476] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 520.639849] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 520.648132] Interruptibility = 00000000 ActivityState = 00000000 [ 520.655119] *** Host State *** [ 520.658760] RIP = 0xffffffff812047de RSP = 0xffff8881c2197390 [ 520.665570] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 520.672420] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 520.680920] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 520.687494] CR0=0000000080050033 CR3=00000001b1b9d000 CR4=00000000001426e0 [ 520.695265] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 520.702338] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 520.709144] *** Control State *** [ 520.713039] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 520.720486] EntryControls=0000d1ff ExitControls=002fefff [ 520.726649] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 520.744006] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 520.752269] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 520.763360] reason=80000021 qualification=0000000000000002 [ 520.770420] IDTVectoring: info=00000000 errcode=00000000 [ 520.776493] TSC Offset = 0xfffffee793f66592 [ 520.781208] EPT pointer = 0x00000001c0aa101e 19:46:38 executing program 4: r0 = dup(0xffffffffffffffff) ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000380)="62c94fb6fffc3d8478510612023bf57aac8ad16342b31f63374cc1a0b348bd74871d9cf06c1e4208860686286dcc1bd36db678865925386bca565112e1a18ed3338963a41b60567bf039e50dd20b3f2d1886a970a9d905d605f698e33d10aaebd69ff44b4ea5789ab51f5139035b6810ff04295c2135b6548d86389e2ce1405a912966761ea947ac4f12ad1e33d170fe2987229031a2abc56d156cf798374919470daa5dd07c5e5fa94096f3cd46f3e4b2106abc470a5bc2cf2fac24c8773f") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x80001, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00') ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000440)={"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"}) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r4, 0x800, 0x70bd28, 0x25dfdbfd, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x5, 0x0, 0xcd, 0xfffffffffffffffd}}}, ["", "", ""]}, 0x30}}, 0x4008044) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000180)) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r2, 0x800442d2, &(0x7f0000000200)={0x0, &(0x7f0000000180)}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000140)) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 520.974591] *** Guest State *** [ 520.978609] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 520.988605] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 520.997975] CR3 = 0x0000000000004000 [ 521.002129] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 521.010524] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 521.017560] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 19:46:38 executing program 3: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe803, @local}}) [ 521.024053] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 521.035335] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 521.047140] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 521.070772] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.090768] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 521.100229] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.109360] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.118936] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.163771] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 521.172451] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 521.182620] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 521.206186] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 521.214602] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 521.221688] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 521.229634] Interruptibility = 00000000 ActivityState = 00000000 [ 521.241150] *** Host State *** [ 521.245710] RIP = 0xffffffff812047de RSP = 0xffff8881b9037390 [ 521.251850] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 521.259515] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 521.267818] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 521.275310] CR0=0000000080050033 CR3=00000001cba9e000 CR4=00000000001426e0 [ 521.282519] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 521.289648] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 521.296187] *** Control State *** [ 521.299829] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 521.307015] EntryControls=0000d1ff ExitControls=002fefff [ 521.312647] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 521.320292] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 521.327415] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 521.334462] reason=80000021 qualification=0000000000000002 [ 521.341020] IDTVectoring: info=00000000 errcode=00000000 [ 521.346941] TSC Offset = 0xfffffee729b7b1df [ 521.351486] EPT pointer = 0x00000001c0aa101e 19:46:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$evdev(r1, &(0x7f0000000080)=[{{0x0, 0x2710}, 0x0, 0x7, 0x2}], 0x18) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(r2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r3, 0xc058534f, &(0x7f0000000000)={{0x7fffffff, 0x8}, 0x1, 0x2, 0x1000, {0x7f, 0x7}, 0x5, 0x9}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 521.474828] *** Guest State *** [ 521.478362] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 521.487535] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 521.496716] CR3 = 0x0000000000004000 [ 521.500700] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:39 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xa780856e7f0000) 19:46:39 executing program 2: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xfe000000, @local}}) [ 521.539271] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 521.598909] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 521.644094] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 521.678024] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 521.709703] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 521.728002] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.736920] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 521.745404] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.753874] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.762050] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 521.770621] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 521.782610] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 521.791245] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 521.799748] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 521.808351] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 521.815297] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 521.823011] Interruptibility = 00000000 ActivityState = 00000000 [ 521.829873] *** Host State *** [ 521.833398] RIP = 0xffffffff812047de RSP = 0xffff8881b9037390 [ 521.839936] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 521.846938] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000003000 [ 521.855296] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 521.861490] CR0=0000000080050033 CR3=00000001cba9e000 CR4=00000000001426e0 [ 521.869098] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 521.876375] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 521.882711] *** Control State *** [ 521.886733] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 521.903902] EntryControls=0000d1ff ExitControls=002fefff [ 521.909596] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 521.916898] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 521.943673] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 521.950717] reason=80000021 qualification=0000000000000002 [ 521.957824] IDTVectoring: info=00000000 errcode=00000000 [ 521.963901] TSC Offset = 0xfffffee6e381fae5 [ 521.968614] EPT pointer = 0x00000001b20e101e 19:46:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0xa002, 0x0) ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000040)) signalfd(r2, &(0x7f0000000080)={0x9}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:39 executing program 1: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0xe000000, @local}}) [ 522.132307] *** Guest State *** [ 522.151760] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 522.181109] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 522.202812] CR3 = 0x0000000000004000 [ 522.207632] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:39 executing program 3 (fault-call:3 fault-nth:0): r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 522.239433] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 522.246386] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 522.252761] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 522.260453] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 522.267571] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 522.290337] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 522.317448] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 522.340560] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 522.360317] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 522.382385] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 19:46:39 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 522.402912] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 522.439895] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 522.477866] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 522.506530] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 19:46:40 executing program 3: sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/hash_stats\x00', 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f00000000c0)) close(0xffffffffffffffff) syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x3, 0xc080) [ 522.531050] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 522.563681] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 522.593788] Interruptibility = 00000000 ActivityState = 00000000 [ 522.600070] *** Host State *** [ 522.603272] RIP = 0xffffffff812047de RSP = 0xffff888183baf390 [ 522.610606] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 522.617384] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 522.625819] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 522.631867] CR0=0000000080050033 CR3=00000001cd4a6000 CR4=00000000001426f0 19:46:40 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x7fff, 0x4000) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 522.639580] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 522.646919] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 522.653235] *** Control State *** [ 522.672281] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 522.679421] EntryControls=0000d1ff ExitControls=002fefff [ 522.685955] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 522.692994] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 522.711764] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 522.718800] reason=80000021 qualification=0000000000000002 [ 522.733923] IDTVectoring: info=00000000 errcode=00000000 [ 522.739488] TSC Offset = 0xfffffee68a602b04 19:46:40 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) ioctl$DRM_IOCTL_MAP_BUFS(r0, 0xc0186419, &(0x7f00000001c0)={0x4, &(0x7f0000000000)=""/14, &(0x7f0000000440)=[{0xcd, 0x41, 0x2, &(0x7f00000000c0)=""/65}, {0x0, 0x53, 0x10000, &(0x7f0000000140)=""/83}, {0x7fffffff, 0xe5, 0x800, &(0x7f0000000240)=""/229}, {0x9, 0xfe, 0x8, &(0x7f0000000340)=""/254}]}) close(r0) dup(r0) [ 522.745325] EPT pointer = 0x00000001b8d3d01e 19:46:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$binfmt_elf64(r1, &(0x7f0000000380)={{0x7f, 0x45, 0x4c, 0x46, 0x5, 0x0, 0x9, 0x6, 0x6f, 0x2, 0x0, 0x0, 0x348, 0x40, 0x2f7, 0x7fffffff, 0xd7b, 0x38, 0x2, 0x0, 0x8000, 0x1}, [{0x60000007, 0x6, 0x5, 0x8547, 0x100, 0x3, 0xfffffffffffffffa, 0x2}, {0x1, 0x59d9, 0xfffffffffffffb2c, 0xfffffffffffff800, 0x9, 0x7, 0xee9, 0x1}], "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"}, 0x10b0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:40 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) pipe(&(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e20, 0x5, @empty, 0x7}}, 0xf3, 0x2, 0x7, 0x9, 0x100000001}, &(0x7f0000000240)=0x98) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000280)={r2, 0xfffffffffffff7fc, 0xafc, 0x100000001}, &(0x7f00000002c0)=0x10) close(r0) 19:46:40 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 19:46:40 executing program 2 (fault-call:4 fault-nth:0): r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:40 executing program 1 (fault-call:3 fault-nth:0): r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:40 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x90000, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f00000000c0)={0x9a94, 0x5, 0x1, 0x0, 0x8, 0x8, 0x5, 0xffffffff80000000, 0x2, 0x1, 0x5, 0x400, 0x0, 0x7, 0x80, 0xd, 0x3, 0x3, 0x8ed8}) 19:46:40 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 523.107142] *** Guest State *** [ 523.117009] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:46:40 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:40 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 523.153739] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 523.201476] CR3 = 0x0000000000004000 [ 523.213903] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:46:40 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xff19, 0x0}, 0xfffffffffffffffc) close(r0) 19:46:40 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f00000000c0)=0x8001, &(0x7f0000000100)=0x2) close(r0) [ 523.243665] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 523.274722] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 523.293689] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 523.314709] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 523.332599] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 523.367743] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 523.402374] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 523.424707] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 523.442341] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 523.456772] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 523.472069] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 523.484548] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 523.492635] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 523.500867] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 523.509447] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 523.515924] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 523.523415] Interruptibility = 00000000 ActivityState = 00000000 [ 523.530332] *** Host State *** [ 523.534143] RIP = 0xffffffff812047de RSP = 0xffff88818a82f390 [ 523.540121] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 523.546809] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 523.554688] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 523.560587] CR0=0000000080050033 CR3=00000001d8002000 CR4=00000000001426f0 [ 523.567705] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 523.574409] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 523.580454] *** Control State *** [ 523.583952] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 523.590631] EntryControls=0000d1ff ExitControls=002fefff [ 523.596113] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 523.603055] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 523.609782] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 523.616405] reason=80000021 qualification=0000000000000002 [ 523.622721] IDTVectoring: info=00000000 errcode=00000000 [ 523.628199] TSC Offset = 0xfffffee606d64fe5 [ 523.632526] EPT pointer = 0x00000001ba33d01e 19:46:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 19:46:41 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:41 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f00000000c0)="7997a4922bf562cbdf09dad501f7b90bd04bc63624c6a45cfad7060003") perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:46:41 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x80000000, 0xfffffffffffffffd) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:46:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) munlockall() dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:41 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_GET_STATS(r0, 0x80f86406, &(0x7f00000000c0)=""/98) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r1, 0x10e, 0x2, &(0x7f0000000140)=0x1f, 0x4) 19:46:41 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffb9, &(0x7f00000000c0)) close(r0) 19:46:41 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x80000) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) r1 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x200, 0x800) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000380)=0x0) ptrace$poke(0x4, r2, &(0x7f00000003c0), 0x5) getsockopt$TIPC_NODE_RECVQ_DEPTH(r1, 0x10f, 0x83, &(0x7f0000000100), &(0x7f0000000140)=0x4) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xc040, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r3, 0xae45, 0x1) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) getsockopt$inet_int(r3, 0x0, 0x32, &(0x7f0000000180), &(0x7f00000001c0)=0x4) close(r0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000580)=ANY=[@ANYRES32=0x0, @ANYBLOB="5500000037f62444e96c266fc193ce5f47db52c3a77012a6fbb18e1bdea57f6bb8e1240bd5a8220d9067d9e78adb8c1cee91f0c777b6c889fccd7c72236f5dd085f65aa4e7b59c0d43328a14ff98ad81836cbe5cfcb3ee64928d192830cbfef116b575abe8d18f6343ca00007e929bb9bc9288757167d0a76070b1cbd357990b439b413449672883b200dc9ddbf7c1fd"], &(0x7f0000000240)=0x5d) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000300)={r4, 0x68, &(0x7f0000000280)=[@in={0x2, 0x4e24, @multicast2}, @in={0x2, 0x4e22, @local}, @in6={0xa, 0x4e24, 0x69, @ipv4={[], [], @remote}, 0x8}, @in={0x2, 0x4e20, @broadcast}, @in6={0xa, 0x4e24, 0xc342, @ipv4={[], [], @loopback}, 0x20}]}, &(0x7f0000000340)=0x10) ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0205647, &(0x7f0000000480)={0x0, 0x5, 0x0, [], &(0x7f0000000440)={0x98091f, 0x101, [], @p_u16=&(0x7f0000000400)=0x80}}) 19:46:41 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 523.921359] *** Guest State *** [ 523.933665] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 523.957786] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 19:46:41 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x100, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f00000000c0)={0x0, 0x86, "8afd86aacb7d040d651d48f03522bfcbaf5f5df9cd6fbbb5afe84285521a6d519615c3b5a58d201ee3fca4e94f4ccf79bc2e98ec53dd55941634d5975f5b10d629afef2016c41823ef6a3779096f9caa46836ca98371684e7a0890becd4e39824ec4c55dec90f4859b1a7bdd55cd9bc6711137f2549f2315ca3ae99506e2b65033d692703859"}, &(0x7f0000000180)=0x8e) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f00000001c0)={r2, 0x101}, &(0x7f0000000240)=0x8) [ 523.975965] CR3 = 0x0000000000004000 [ 523.983472] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 523.997215] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 524.010963] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 19:46:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000) [ 524.025119] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 524.037414] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 524.052581] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 524.068952] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 524.094018] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 19:46:41 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) open(&(0x7f0000000000)='./file0\x00', 0x4002, 0xe) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x10004) [ 524.125172] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 524.140498] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 524.174682] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 524.197625] GDTR: limit=0x000007ff, base=0x0000000000001000 19:46:41 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:41 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 524.223420] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 524.233778] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 524.241788] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 524.303683] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 524.316092] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 524.346073] Interruptibility = 00000000 ActivityState = 00000000 [ 524.363018] *** Host State *** [ 524.371328] RIP = 0xffffffff812047de RSP = 0xffff8881d895f390 [ 524.390443] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 524.411358] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 524.435347] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 524.487400] CR0=0000000080050033 CR3=00000001bc7a7000 CR4=00000000001426f0 [ 524.528154] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 524.544659] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 524.550725] *** Control State *** [ 524.563734] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 524.570423] EntryControls=0000d1ff ExitControls=002fefff [ 524.577439] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 524.584902] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 524.591594] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 524.599451] reason=80000021 qualification=0000000000000002 [ 524.606402] IDTVectoring: info=00000000 errcode=00000000 [ 524.613093] TSC Offset = 0xfffffee59b2ab16c [ 524.617820] EPT pointer = 0x00000001bf49c01e [ 524.673950] *** Guest State *** [ 524.677380] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 524.711382] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 524.726228] CR3 = 0x0000000000004000 [ 524.730069] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 524.744831] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 524.756965] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 524.768356] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 524.779494] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 524.786494] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 524.794660] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 524.802760] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 524.810907] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 524.819100] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 524.827277] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 524.835441] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 524.843597] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 524.851700] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 524.859851] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 524.868056] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 524.874691] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 524.882278] Interruptibility = 00000000 ActivityState = 00000000 [ 524.888761] *** Host State *** [ 524.892099] RIP = 0xffffffff812047de RSP = 0xffff888163b2f390 [ 524.898268] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 524.904848] FSBase=00007f911e1f1700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 524.912887] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 524.918974] CR0=0000000080050033 CR3=00000001bc7a7000 CR4=00000000001426f0 [ 524.926426] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 524.933215] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 524.939579] *** Control State *** [ 524.943195] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 524.950131] EntryControls=0000d1ff ExitControls=002fefff [ 524.955783] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 524.962830] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 524.969713] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 524.976493] reason=80000021 qualification=0000000000000002 [ 524.982998] IDTVectoring: info=00000000 errcode=00000000 [ 524.988629] TSC Offset = 0xfffffee59b2ab16c [ 524.993125] EPT pointer = 0x00000001bf49c01e [ 529.943186] oom_reaper: reaped process 21206 (syz-executor2), now anon-rss:0kB, file-rss:32704kB, shmem-rss:0kB [ 530.108507] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 [ 530.128808] rsyslogd cpuset=/ mems_allowed=0 [ 530.133975] CPU: 1 PID: 6019 Comm: rsyslogd Not tainted 4.20.0-rc6+ #151 [ 530.140829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 530.150176] Call Trace: [ 530.152781] dump_stack+0x244/0x39d [ 530.156438] ? dump_stack_print_info.cold.1+0x20/0x20 [ 530.161632] ? mark_held_locks+0x130/0x130 [ 530.165870] ? mark_held_locks+0x130/0x130 [ 530.170691] dump_header+0x27b/0xf72 [ 530.174441] ? pagefault_out_of_memory+0x197/0x197 [ 530.179378] ? __lock_acquire+0x62f/0x4c20 [ 530.183622] ? percpu_ref_get_many+0x240/0x240 [ 530.188215] ? print_usage_bug+0xc0/0xc0 [ 530.192282] ? zap_class+0x640/0x640 [ 530.196014] ? print_usage_bug+0xc0/0xc0 [ 530.200082] ? print_usage_bug+0xc0/0xc0 [ 530.204156] ? zap_class+0x640/0x640 [ 530.207885] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 530.213435] ? find_held_lock+0x36/0x1c0 [ 530.217516] ? mark_held_locks+0xc7/0x130 [ 530.221673] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 530.226777] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 530.231871] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 530.236436] ? trace_hardirqs_on+0xbd/0x310 [ 530.240735] ? kasan_check_read+0x11/0x20 [ 530.244879] ? ___ratelimit+0x3b4/0x672 [ 530.248837] ? trace_hardirqs_off_caller+0x310/0x310 [ 530.253947] ? trace_hardirqs_on+0x310/0x310 [ 530.258334] ? lock_downgrade+0x900/0x900 [ 530.262461] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 530.267541] ? ___ratelimit+0x3b9/0x672 [ 530.271610] ? idr_get_free+0xf70/0xf70 [ 530.275586] ? find_held_lock+0x36/0x1c0 [ 530.279644] oom_kill_process.cold.27+0x10/0x903 [ 530.284382] ? zap_class+0x640/0x640 [ 530.288097] ? check_preemption_disabled+0x48/0x280 [ 530.293108] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 530.298019] ? kasan_check_read+0x11/0x20 [ 530.302159] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 530.307417] ? oom_evaluate_task+0x540/0x540 [ 530.311804] ? find_held_lock+0x36/0x1c0 [ 530.315847] ? out_of_memory+0x974/0x1430 [ 530.319975] ? lock_downgrade+0x900/0x900 [ 530.324109] ? check_preemption_disabled+0x48/0x280 [ 530.329133] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 530.334045] ? kasan_check_read+0x11/0x20 [ 530.338171] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 530.343426] ? rcu_softirq_qs+0x20/0x20 [ 530.347416] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 530.352934] ? oom_evaluate_task+0x302/0x540 [ 530.357323] out_of_memory+0xa84/0x1430 [ 530.361281] ? oom_killer_disable+0x3a0/0x3a0 [ 530.365755] ? __alloc_pages_slowpath+0xf5c/0x2de0 [ 530.370671] ? __ww_mutex_check_waiters+0x160/0x160 [ 530.375670] __alloc_pages_slowpath+0x232c/0x2de0 [ 530.380504] ? warn_alloc+0x120/0x120 [ 530.384284] ? mark_held_locks+0x130/0x130 [ 530.388552] ? find_get_entry+0xaae/0x1120 [ 530.392789] ? filemap_map_pages+0x1a20/0x1a20 [ 530.397353] ? zap_class+0x640/0x640 [ 530.401051] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 530.406567] ? check_preemption_disabled+0x48/0x280 [ 530.411565] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 530.417085] ? should_fail+0x22d/0xd01 [ 530.420958] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 530.426044] ? zap_class+0x640/0x640 [ 530.429751] ? __lock_is_held+0xb5/0x140 [ 530.433803] ? mark_held_locks+0x130/0x130 [ 530.438025] ? lock_release+0xa00/0xa00 [ 530.441982] ? perf_trace_sched_process_exec+0x860/0x860 [ 530.447423] ? xa_load+0x2ba/0x460 [ 530.450947] ? lock_downgrade+0x900/0x900 [ 530.455095] ? __might_sleep+0x95/0x190 [ 530.459058] __alloc_pages_nodemask+0xad8/0xea0 [ 530.463711] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 530.468710] ? __page_cache_alloc+0x191/0x5c0 [ 530.473190] ? xa_load+0x2e1/0x460 [ 530.476716] ? xa_clear_mark+0x40/0x40 [ 530.480588] ? zap_class+0x640/0x640 [ 530.484294] ? zap_class+0x640/0x640 [ 530.487998] ? zap_class+0x640/0x640 [ 530.491695] ? __do_page_cache_readahead+0x663/0x810 [ 530.496784] ? find_held_lock+0x36/0x1c0 [ 530.500832] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 530.506392] alloc_pages_current+0x173/0x350 [ 530.510813] __page_cache_alloc+0x38c/0x5c0 [ 530.515151] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 530.520081] ? kasan_check_read+0x11/0x20 [ 530.524208] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 530.529466] ? generic_perform_write+0x6a0/0x6a0 [ 530.534205] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 530.539741] ? check_preemption_disabled+0x48/0x280 [ 530.544746] filemap_fault+0x1595/0x25f0 [ 530.548796] ? __lock_page_or_retry+0xa00/0xa00 [ 530.553449] ? mark_held_locks+0x130/0x130 [ 530.557684] ? filemap_map_pages+0xd6b/0x1a20 [ 530.562160] ? lock_downgrade+0x900/0x900 [ 530.566288] ? check_preemption_disabled+0x48/0x280 [ 530.571287] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 530.576204] ? kasan_check_read+0x11/0x20 [ 530.580350] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 530.585625] ? rcu_softirq_qs+0x20/0x20 [ 530.589592] ? filemap_map_pages+0xd92/0x1a20 [ 530.594076] ? find_get_entries_tag+0x1400/0x1400 [ 530.598906] ? __kernel_text_address+0xd/0x40 [ 530.603405] ? unwind_get_return_address+0x61/0xa0 [ 530.608380] ? lock_acquire+0x1ed/0x520 [ 530.612384] ? ext4_filemap_fault+0x7a/0xad [ 530.616696] ? lock_release+0xa00/0xa00 [ 530.620650] ? perf_trace_sched_process_exec+0x860/0x860 [ 530.626080] ? print_usage_bug+0xc0/0xc0 [ 530.630121] ? print_usage_bug+0xc0/0xc0 [ 530.634185] ? __x64_sys_read+0x73/0xb0 [ 530.638155] ? print_usage_bug+0xc0/0xc0 [ 530.642225] ? down_read+0x8d/0x120 [ 530.645879] ? ext4_filemap_fault+0x7a/0xad [ 530.650182] ? __down_interruptible+0x700/0x700 [ 530.654837] ext4_filemap_fault+0x82/0xad [ 530.659010] __do_fault+0x100/0x6b0 [ 530.662638] ? trace_hardirqs_on+0xbd/0x310 [ 530.666946] ? pmd_devmap_trans_unstable+0x220/0x220 [ 530.672047] ? mark_held_locks+0x130/0x130 [ 530.676261] ? mark_held_locks+0x130/0x130 [ 530.680489] ? do_syslog+0x147b/0x1690 [ 530.684359] ? do_syslog+0x309/0x1690 [ 530.688140] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 530.693661] __handle_mm_fault+0x3ea6/0x5be0 [ 530.698055] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 530.702893] ? find_held_lock+0x36/0x1c0 [ 530.706942] ? zap_class+0x640/0x640 [ 530.710635] ? zap_class+0x640/0x640 [ 530.714328] ? find_held_lock+0x36/0x1c0 [ 530.718385] ? handle_mm_fault+0x42a/0xc70 [ 530.722598] ? lock_downgrade+0x900/0x900 [ 530.726784] ? check_preemption_disabled+0x48/0x280 [ 530.731795] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 530.736718] ? kasan_check_read+0x11/0x20 [ 530.740844] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 530.746102] ? rcu_softirq_qs+0x20/0x20 [ 530.750055] ? trace_hardirqs_off_caller+0x310/0x310 [ 530.755140] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 530.760659] ? check_preemption_disabled+0x48/0x280 [ 530.765675] handle_mm_fault+0x54f/0xc70 [ 530.769719] ? __handle_mm_fault+0x5be0/0x5be0 [ 530.774285] ? find_vma+0x34/0x190 [ 530.777808] __do_page_fault+0x5e8/0xe60 [ 530.781848] ? trace_hardirqs_off+0xb8/0x310 [ 530.786236] ? kernel_write+0x120/0x120 [ 530.790193] do_page_fault+0xf2/0x7e0 [ 530.793973] ? vmalloc_sync_all+0x30/0x30 [ 530.798135] ? error_entry+0x70/0xd0 [ 530.801826] ? trace_hardirqs_off_caller+0xbb/0x310 [ 530.806819] ? trace_hardirqs_on_caller+0xc0/0x310 [ 530.811729] ? syscall_return_slowpath+0x5e0/0x5e0 [ 530.816640] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 530.821462] ? trace_hardirqs_on_caller+0x310/0x310 [ 530.826458] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 530.831902] ? prepare_exit_to_usermode+0x291/0x3b0 [ 530.836930] ? page_fault+0x8/0x30 [ 530.840450] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 530.845278] ? page_fault+0x8/0x30 [ 530.848802] page_fault+0x1e/0x30 [ 530.852232] RIP: 0033:0x7fae3ad351fd [ 530.855936] Code: Bad RIP value. [ 530.859313] RSP: 002b:00007fae382d4e30 EFLAGS: 00010293 [ 530.864667] RAX: 0000000000000076 RBX: 0000000000971170 RCX: 00007fae3ad351fd [ 530.871917] RDX: 0000000000000fff RSI: 00007fae39b095a0 RDI: 0000000000000004 [ 530.879164] RBP: 0000000000000000 R08: 000000000095c260 R09: 0000000000000000 [ 530.886415] R10: 6b205d3832383134 R11: 0000000000000293 R12: 000000000065e420 [ 530.893663] R13: 00007fae382d59c0 R14: 00007fae3b37a040 R15: 0000000000000003 [ 530.901495] Mem-Info: [ 530.903960] active_anon:123320 inactive_anon:198 isolated_anon:0 [ 530.903960] active_file:16 inactive_file:23 isolated_file:0 [ 530.903960] unevictable:0 dirty:1 writeback:2 unstable:0 [ 530.903960] slab_reclaimable:13415 slab_unreclaimable:116467 [ 530.903960] mapped:49164 shmem:247 pagetables:1017 bounce:0 [ 530.903960] free:15850 free_pcp:24 free_cma:0 [ 530.911766] syz-executor2: vmalloc: allocation failure, allocated 2726035456 of 3587842048 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 530.938035] Node 0 active_anon:493244kB inactive_anon:792kB active_file:60kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 456704kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 530.956017] syz-executor2: vmalloc: allocation failure, allocated 2431873024 of 3587842048 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 530.978607] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 530.997712] syz-executor2 cpuset=syz2 mems_allowed=0 [ 531.019148] lowmem_reserve[]: 0 2818 6321 6321 [ 531.028191] syz-executor2 cpuset=syz2 mems_allowed=0 [ 531.028733] CPU: 0 PID: 21153 Comm: syz-executor2 Not tainted 4.20.0-rc6+ #151 [ 531.033551] Node 0 DMA32 free:29272kB min:30052kB low:37564kB high:45076kB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 531.040914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 531.040924] Call Trace: [ 531.080004] dump_stack+0x244/0x39d [ 531.083545] lowmem_reserve[]: 0 0 3503 3503 [ 531.083651] ? dump_stack_print_info.cold.1+0x20/0x20 [ 531.087946] Node 0 Normal free:20144kB min:37364kB low:46704kB high:56044kB active_anon:493240kB inactive_anon:792kB active_file:60kB inactive_file:76kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7072kB pagetables:4064kB bounce:0kB free_pcp:836kB local_pcp:96kB free_cma:0kB [ 531.093129] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 531.126663] warn_alloc.cold.116+0xb7/0x1bd [ 531.131012] ? zone_watermark_ok_safe+0x3f0/0x3f0 [ 531.135891] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 531.141439] __vmalloc_node_range+0x522/0x750 [ 531.144350] lowmem_reserve[]: 0 0 0 0 [ 531.146036] ? drm_property_create_blob.part.2+0xaa/0x470 [ 531.149713] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 531.155239] __vmalloc_node_flags_caller+0x75/0x90 [ 531.155257] ? drm_property_create_blob.part.2+0xaa/0x470 [ 531.155292] kvmalloc_node+0xd7/0xf0 [ 531.183128] drm_property_create_blob.part.2+0xaa/0x470 [ 531.183546] Node 0 DMA32: 6*4kB (UM) 4*8kB (UM) 6*16kB (UM) 6*32kB (UM) 4*64kB (UM) 4*128kB (UM) 4*256kB (UM) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 29272kB [ 531.188499] ? find_held_lock+0x36/0x1c0 [ 531.208066] ? drm_property_free_blob+0x3b0/0x3b0 [ 531.212976] ? drm_unbind_agp+0x20/0x20 [ 531.213560] Node 0 Normal: 1208*4kB (UME) 662*8kB (UME) 287*16kB (UME) 135*32kB (UM) 2*64kB (U) 6*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20192kB [ 531.216967] ? lock_downgrade+0x900/0x900 [ 531.235955] drm_mode_createblob_ioctl+0x1b2/0x570 [ 531.240892] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.243565] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 531.245734] ? perf_trace_sched_process_exec+0x860/0x860 [ 531.245758] drm_ioctl_kernel+0x278/0x330 [ 531.254628] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 531.260044] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.273549] 281 total pagecache pages [ 531.277590] ? drm_setversion+0x8b0/0x8b0 [ 531.281372] 0 pages in swap cache [ 531.285507] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 531.285523] ? _copy_from_user+0xdf/0x150 [ 531.285541] drm_ioctl+0x57e/0xb00 [ 531.285558] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.293555] Swap cache stats: add 0, delete 0, find 0/0 [ 531.294550] ? drm_ioctl_kernel+0x330/0x330 [ 531.298670] Free swap = 0kB [ 531.302207] ? perf_trace_sched_process_exec+0x860/0x860 [ 531.314355] Total swap = 0kB [ 531.316710] ? __might_fault+0x12b/0x1e0 [ 531.319703] 1965979 pages RAM [ 531.325159] ? lock_downgrade+0x900/0x900 [ 531.325198] ? drm_ioctl_kernel+0x330/0x330 [ 531.325233] do_vfs_ioctl+0x1de/0x1790 [ 531.343563] 0 pages HighMem/MovableOnly [ 531.343851] ? ioctl_preallocate+0x300/0x300 [ 531.347712] 342853 pages reserved [ 531.351680] ? selinux_file_mprotect+0x620/0x620 [ 531.356097] 0 pages cma reserved [ 531.359510] ? assoc_array_insert+0x1c2d/0x2e50 [ 531.372295] ? __sanitizer_cov_trace_cmp4+0xb/0x20 [ 531.373583] Out of memory: Kill process 16285 (syz-executor4) score 1005 or sacrifice child [ 531.377227] ? put_timespec64+0x10f/0x1b0 [ 531.388889] Killed process 16285 (syz-executor4) total-vm:70736kB, anon-rss:2216kB, file-rss:32768kB, shmem-rss:0kB [ 531.389826] ? nsecs_to_jiffies+0x30/0x30 [ 531.389845] ? do_syscall_64+0x9a/0x820 [ 531.389864] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 531.389880] ? security_file_ioctl+0x94/0xc0 [ 531.389927] ksys_ioctl+0xa9/0xd0 [ 531.389946] __x64_sys_ioctl+0x73/0xb0 [ 531.389964] do_syscall_64+0x1b9/0x820 [ 531.389979] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 531.390007] ? syscall_return_slowpath+0x5e0/0x5e0 [ 531.390023] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 531.390042] ? trace_hardirqs_on_caller+0x310/0x310 [ 531.390063] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 531.390080] ? prepare_exit_to_usermode+0x291/0x3b0 [ 531.390130] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 531.390165] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 531.390192] RIP: 0033:0x457679 [ 531.390218] Code: Bad RIP value. [ 531.390226] RSP: 002b:00007fec731d2c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 531.390239] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457679 [ 531.390246] RDX: 00000000200000c0 RSI: ffffffffffffffbd RDI: 0000000000000003 [ 531.390255] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 531.390263] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec731d36d4 [ 531.390279] R13: 00000000004be9ce R14: 00000000004cf5c0 R15: 00000000ffffffff [ 531.521862] CPU: 0 PID: 21206 Comm: syz-executor2 Not tainted 4.20.0-rc6+ #151 [ 531.528619] Mem-Info: [ 531.529227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 531.531690] active_anon:123311 inactive_anon:198 isolated_anon:0 [ 531.531690] active_file:15 inactive_file:19 isolated_file:0 [ 531.531690] unevictable:0 dirty:0 writeback:0 unstable:0 [ 531.531690] slab_reclaimable:13315 slab_unreclaimable:116054 [ 531.531690] mapped:49155 shmem:247 pagetables:1016 bounce:0 [ 531.531690] free:16331 free_pcp:209 free_cma:0 [ 531.541003] Call Trace: [ 531.541023] dump_stack+0x244/0x39d [ 531.541042] ? dump_stack_print_info.cold.1+0x20/0x20 [ 531.541068] warn_alloc.cold.116+0xb7/0x1bd [ 531.541114] ? zone_watermark_ok_safe+0x3f0/0x3f0 [ 531.581518] Node 0 active_anon:493244kB inactive_anon:792kB active_file:60kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 456704kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 531.585508] ? retint_kernel+0x2d/0x2d [ 531.585538] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 531.585565] __vmalloc_node_range+0x522/0x750 [ 531.589887] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 531.594762] ? drm_property_create_blob.part.2+0xaa/0x470 [ 531.594779] __vmalloc_node_flags_caller+0x75/0x90 [ 531.594796] ? drm_property_create_blob.part.2+0xaa/0x470 [ 531.594816] kvmalloc_node+0xd7/0xf0 [ 531.594836] drm_property_create_blob.part.2+0xaa/0x470 [ 531.594853] ? find_held_lock+0x36/0x1c0 [ 531.594872] ? drm_property_free_blob+0x3b0/0x3b0 [ 531.696370] ? drm_unbind_agp+0x20/0x20 [ 531.700393] ? lock_downgrade+0x900/0x900 [ 531.704602] drm_mode_createblob_ioctl+0x1b2/0x570 [ 531.709557] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.714401] ? perf_trace_sched_process_exec+0x860/0x860 [ 531.719862] drm_ioctl_kernel+0x278/0x330 [ 531.720808] lowmem_reserve[]: 0 2818 6321 6321 [ 531.724017] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.724033] ? drm_setversion+0x8b0/0x8b0 [ 531.724052] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 531.724067] ? _copy_from_user+0xdf/0x150 [ 531.724086] drm_ioctl+0x57e/0xb00 [ 531.724099] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 531.724124] ? drm_ioctl_kernel+0x330/0x330 [ 531.746718] Node 0 DMA32 free:29272kB min:30052kB low:37564kB high:45076kB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 531.747334] ? perf_trace_sched_process_exec+0x860/0x860 [ 531.750849] lowmem_reserve[]: 0 0 3503 3503 [ 531.755682] ? __might_fault+0x12b/0x1e0 [ 531.755700] ? lock_downgrade+0x900/0x900 [ 531.755723] ? drm_ioctl_kernel+0x330/0x330 [ 531.755740] do_vfs_ioctl+0x1de/0x1790 [ 531.813104] Node 0 Normal free:20144kB min:37364kB low:46704kB high:56044kB active_anon:493240kB inactive_anon:792kB active_file:60kB inactive_file:76kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7072kB pagetables:4064kB bounce:0kB free_pcp:948kB local_pcp:208kB free_cma:0kB [ 531.813388] ? ioctl_preallocate+0x300/0x300 [ 531.846672] ? selinux_file_mprotect+0x620/0x620 [ 531.851439] ? assoc_array_insert+0x1c2d/0x2e50 [ 531.856123] ? __sanitizer_cov_trace_cmp4+0xb/0x20 [ 531.861057] ? put_timespec64+0x10f/0x1b0 [ 531.865212] ? finish_task_switch+0x1f4/0x910 [ 531.869714] ? nsecs_to_jiffies+0x30/0x30 [ 531.873869] ? do_syscall_64+0x9a/0x820 [ 531.877895] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 531.883441] ? security_file_ioctl+0x94/0xc0 [ 531.887857] ksys_ioctl+0xa9/0xd0 [ 531.891351] __x64_sys_ioctl+0x73/0xb0 [ 531.895281] do_syscall_64+0x1b9/0x820 [ 531.899180] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 531.904556] ? syscall_return_slowpath+0x5e0/0x5e0 [ 531.909498] ? trace_hardirqs_on_caller+0x310/0x310 [ 531.914525] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 531.919553] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 531.926222] ? __switch_to_asm+0x40/0x70 [ 531.930298] ? __switch_to_asm+0x34/0x70 [ 531.934437] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 531.939309] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 531.944507] RIP: 0033:0x457679 [ 531.947714] Code: Bad RIP value. [ 531.951078] RSP: 002b:00007fec73190c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 531.958785] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457679 [ 531.966057] RDX: 00000000200000c0 RSI: ffffffffffffffbd RDI: 0000000000000003 [ 531.966608] lowmem_reserve[]: 0 0 0 0 [ 531.973339] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000 [ 531.973353] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec731916d4 [ 531.991690] R13: 00000000004be9ce R14: 00000000004cf5c0 R15: 00000000ffffffff [ 532.000564] oom_reaper: reaped process 16285 (syz-executor4), now anon-rss:0kB, file-rss:32768kB, shmem-rss:0kB [ 532.017526] rsyslogd invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 [ 532.037655] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 532.063247] rsyslogd cpuset=/ mems_allowed=0 [ 532.067800] CPU: 1 PID: 6019 Comm: rsyslogd Not tainted 4.20.0-rc6+ #151 [ 532.074674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 532.084032] Call Trace: [ 532.086624] dump_stack+0x244/0x39d [ 532.090256] ? dump_stack_print_info.cold.1+0x20/0x20 [ 532.095448] ? mark_held_locks+0x130/0x130 [ 532.099701] ? mark_held_locks+0x130/0x130 [ 532.103984] dump_header+0x27b/0xf72 [ 532.107735] ? pagefault_out_of_memory+0x197/0x197 [ 532.112681] ? __lock_acquire+0x62f/0x4c20 [ 532.116917] ? percpu_ref_get_many+0x240/0x240 [ 532.121505] ? print_usage_bug+0xc0/0xc0 [ 532.125576] ? zap_class+0x640/0x640 [ 532.129290] ? print_usage_bug+0xc0/0xc0 [ 532.133382] ? print_usage_bug+0xc0/0xc0 [ 532.137448] ? zap_class+0x640/0x640 [ 532.141172] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 532.146714] ? find_held_lock+0x36/0x1c0 [ 532.150793] ? mark_held_locks+0xc7/0x130 [ 532.154950] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 532.160080] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 532.165199] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 532.170262] ? trace_hardirqs_on+0xbd/0x310 [ 532.174583] ? kasan_check_read+0x11/0x20 [ 532.178835] ? ___ratelimit+0x3b4/0x672 [ 532.182818] ? trace_hardirqs_off_caller+0x310/0x310 [ 532.187955] ? trace_hardirqs_on+0x310/0x310 [ 532.192369] ? lock_downgrade+0x900/0x900 [ 532.196521] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 532.201628] ? ___ratelimit+0x3b9/0x672 [ 532.205613] ? idr_get_free+0xf70/0xf70 [ 532.209592] ? find_held_lock+0x36/0x1c0 [ 532.213668] oom_kill_process.cold.27+0x10/0x903 [ 532.218428] ? zap_class+0x640/0x640 [ 532.222176] ? check_preemption_disabled+0x48/0x280 [ 532.227200] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 532.232133] ? kasan_check_read+0x11/0x20 [ 532.236280] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 532.241561] ? oom_evaluate_task+0x540/0x540 [ 532.245973] ? find_held_lock+0x36/0x1c0 [ 532.250063] ? out_of_memory+0x974/0x1430 [ 532.254211] ? lock_downgrade+0x900/0x900 [ 532.258358] ? check_preemption_disabled+0x48/0x280 [ 532.263372] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 532.268300] ? kasan_check_read+0x11/0x20 [ 532.272448] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 532.277721] ? rcu_softirq_qs+0x20/0x20 [ 532.281704] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 532.287239] ? oom_evaluate_task+0x302/0x540 [ 532.291653] out_of_memory+0xa84/0x1430 [ 532.295638] ? oom_killer_disable+0x3a0/0x3a0 [ 532.300136] ? __alloc_pages_slowpath+0xf5c/0x2de0 [ 532.305074] ? __ww_mutex_check_waiters+0x160/0x160 [ 532.310101] __alloc_pages_slowpath+0x232c/0x2de0 [ 532.315021] ? warn_alloc+0x120/0x120 [ 532.318840] ? mark_held_locks+0x130/0x130 [ 532.323084] ? find_get_entry+0xaae/0x1120 [ 532.327332] ? filemap_map_pages+0x1a20/0x1a20 [ 532.331920] ? zap_class+0x640/0x640 [ 532.335641] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 532.341190] ? check_preemption_disabled+0x48/0x280 [ 532.346209] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 532.351752] ? should_fail+0x22d/0xd01 [ 532.355653] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 532.360756] ? zap_class+0x640/0x640 [ 532.364511] ? __lock_is_held+0xb5/0x140 [ 532.368590] ? mark_held_locks+0x130/0x130 [ 532.372845] ? lock_release+0xa00/0xa00 [ 532.376825] ? perf_trace_sched_process_exec+0x860/0x860 [ 532.382277] ? xa_load+0x2ba/0x460 [ 532.385820] ? lock_downgrade+0x900/0x900 [ 532.390023] ? __might_sleep+0x95/0x190 [ 532.394010] __alloc_pages_nodemask+0xad8/0xea0 [ 532.398686] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 532.403709] ? __page_cache_alloc+0x191/0x5c0 [ 532.408220] ? xa_load+0x2e1/0x460 [ 532.411762] ? xa_clear_mark+0x40/0x40 [ 532.415658] ? zap_class+0x640/0x640 [ 532.419381] ? zap_class+0x640/0x640 [ 532.423103] ? zap_class+0x640/0x640 [ 532.426822] ? __do_page_cache_readahead+0x663/0x810 [ 532.431950] ? find_held_lock+0x36/0x1c0 [ 532.436025] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 532.441569] alloc_pages_current+0x173/0x350 [ 532.446020] __page_cache_alloc+0x38c/0x5c0 [ 532.450360] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 532.455290] ? kasan_check_read+0x11/0x20 [ 532.459484] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 532.464772] ? generic_perform_write+0x6a0/0x6a0 [ 532.469540] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 532.475088] ? check_preemption_disabled+0x48/0x280 [ 532.480120] filemap_fault+0x1595/0x25f0 [ 532.484201] ? __lock_page_or_retry+0xa00/0xa00 [ 532.488882] ? mark_held_locks+0x130/0x130 [ 532.493145] ? filemap_map_pages+0xd6b/0x1a20 [ 532.497659] ? lock_downgrade+0x900/0x900 [ 532.501806] ? check_preemption_disabled+0x48/0x280 [ 532.506828] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 532.511757] ? kasan_check_read+0x11/0x20 [ 532.515913] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 532.521191] ? rcu_softirq_qs+0x20/0x20 [ 532.525189] ? filemap_map_pages+0xd92/0x1a20 [ 532.529694] ? find_get_entries_tag+0x1400/0x1400 [ 532.534538] ? __kernel_text_address+0xd/0x40 [ 532.539042] ? unwind_get_return_address+0x61/0xa0 [ 532.543988] ? lock_acquire+0x1ed/0x520 [ 532.547977] ? ext4_filemap_fault+0x7a/0xad [ 532.552313] ? lock_release+0xa00/0xa00 [ 532.556287] ? perf_trace_sched_process_exec+0x860/0x860 [ 532.561735] ? print_usage_bug+0xc0/0xc0 [ 532.565825] ? print_usage_bug+0xc0/0xc0 [ 532.569900] ? __x64_sys_read+0x73/0xb0 [ 532.573874] ? print_usage_bug+0xc0/0xc0 [ 532.577947] ? down_read+0x8d/0x120 [ 532.581572] ? ext4_filemap_fault+0x7a/0xad [ 532.585893] ? __down_interruptible+0x700/0x700 [ 532.590573] ext4_filemap_fault+0x82/0xad [ 532.594743] __do_fault+0x100/0x6b0 [ 532.598405] ? trace_hardirqs_on+0xbd/0x310 [ 532.602728] ? pmd_devmap_trans_unstable+0x220/0x220 [ 532.607850] ? mark_held_locks+0x130/0x130 [ 532.612135] ? mark_held_locks+0x130/0x130 [ 532.616372] ? do_syslog+0x147b/0x1690 [ 532.620259] ? do_syslog+0x309/0x1690 [ 532.624058] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 532.629612] __handle_mm_fault+0x3ea6/0x5be0 [ 532.634059] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 532.638902] ? find_held_lock+0x36/0x1c0 [ 532.643010] ? zap_class+0x640/0x640 [ 532.646743] ? zap_class+0x640/0x640 [ 532.650496] ? find_held_lock+0x36/0x1c0 [ 532.654579] ? handle_mm_fault+0x42a/0xc70 [ 532.658816] ? lock_downgrade+0x900/0x900 [ 532.662964] ? check_preemption_disabled+0x48/0x280 [ 532.668017] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 532.672944] ? kasan_check_read+0x11/0x20 [ 532.677106] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 532.682384] ? rcu_softirq_qs+0x20/0x20 [ 532.686359] ? trace_hardirqs_off_caller+0x310/0x310 [ 532.691476] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 532.697021] ? check_preemption_disabled+0x48/0x280 [ 532.702054] handle_mm_fault+0x54f/0xc70 [ 532.706115] ? __handle_mm_fault+0x5be0/0x5be0 [ 532.710721] ? find_vma+0x34/0x190 [ 532.714280] __do_page_fault+0x5e8/0xe60 [ 532.718358] ? trace_hardirqs_off+0xb8/0x310 [ 532.722770] ? kernel_write+0x120/0x120 [ 532.726754] do_page_fault+0xf2/0x7e0 [ 532.730573] ? vmalloc_sync_all+0x30/0x30 [ 532.734750] ? error_entry+0x70/0xd0 [ 532.738469] ? trace_hardirqs_off_caller+0xbb/0x310 [ 532.743499] ? trace_hardirqs_on_caller+0xc0/0x310 [ 532.748444] ? syscall_return_slowpath+0x5e0/0x5e0 [ 532.753406] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 532.758280] ? trace_hardirqs_on_caller+0x310/0x310 [ 532.763328] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 532.768803] ? prepare_exit_to_usermode+0x291/0x3b0 [ 532.773819] ? page_fault+0x8/0x30 [ 532.777355] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 532.782196] ? page_fault+0x8/0x30 [ 532.785738] page_fault+0x1e/0x30 [ 532.789201] RIP: 0033:0x7fae3ad351fd [ 532.792927] Code: Bad RIP value. [ 532.796303] RSP: 002b:00007fae382d4e30 EFLAGS: 00010293 [ 532.801690] RAX: 0000000000000076 RBX: 0000000000971170 RCX: 00007fae3ad351fd [ 532.808952] RDX: 0000000000000fff RSI: 00007fae39b095a0 RDI: 0000000000000004 [ 532.816217] RBP: 0000000000000000 R08: 000000000095c260 R09: 0000000000000000 [ 532.823478] R10: 6b205d3832383134 R11: 0000000000000293 R12: 000000000065e420 [ 532.830743] R13: 00007fae382d59c0 R14: 00007fae3b37a040 R15: 0000000000000003 [ 532.843781] Node 0 DMA32: 6*4kB (UM) 4*8kB (UM) 6*16kB (UM) 6*32kB (UM) 4*64kB (UM) 4*128kB (UM) 4*256kB (UM) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 29272kB [ 532.855804] Mem-Info: [ 532.861902] active_anon:122761 inactive_anon:198 isolated_anon:0 [ 532.861902] active_file:18 inactive_file:16 isolated_file:0 [ 532.861902] unevictable:0 dirty:0 writeback:0 unstable:0 [ 532.861902] slab_reclaimable:13292 slab_unreclaimable:115792 [ 532.861902] mapped:49155 shmem:247 pagetables:990 bounce:0 [ 532.861902] free:17103 free_pcp:304 free_cma:0 [ 532.883550] Node 0 Normal: 1208*4kB (UME) 782*8kB (UME) 287*16kB (UME) 136*32kB (UM) 2*64kB (U) 6*128kB (U) 1*256kB (U) 0*512kB 0*1024kB 1*2048kB (M) 0*4096kB = 23232kB [ 532.905835] Node 0 active_anon:491044kB inactive_anon:792kB active_file:72kB inactive_file:64kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 454656kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 532.943632] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 532.948518] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 532.952486] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 532.990339] lowmem_reserve[]: 0 2818 6321 6321 [ 532.995155] Node 0 DMA32 free:29272kB min:30052kB low:37564kB high:45076kB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 533.033818] lowmem_reserve[]: 0 0 3503 3503 [ 533.038158] Node 0 Normal free:52364kB min:37364kB low:46704kB high:56044kB active_anon:491040kB inactive_anon:792kB active_file:72kB inactive_file:64kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7040kB pagetables:3960kB bounce:0kB free_pcp:1464kB local_pcp:204kB free_cma:0kB [ 533.053538] 283 total pagecache pages [ 533.070361] lowmem_reserve[]: 0 0 0 0 [ 533.076194] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 533.090247] Node 0 DMA32: 6*4kB (UM) 4*8kB (UM) 6*16kB (UM) 6*32kB (UM) 4*64kB (UM) 4*128kB (UM) 4*256kB (UM) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 29272kB [ 533.093562] 0 pages in swap cache [ 533.106692] Node 0 Normal: 1504*4kB (UME) 1291*8kB (UME) 494*16kB (UME) 311*32kB (UM) 182*64kB (U) 194*128kB (U) 27*256kB (U) 16*512kB (U) 9*1024kB (U) 5*2048kB (UM) 2*4096kB (U) = 113432kB [ 533.123573] Swap cache stats: add 0, delete 0, find 0/0 [ 533.127901] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 533.131700] Free swap = 0kB [ 533.140613] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 533.154012] 431 total pagecache pages [ 533.157827] 0 pages in swap cache [ 533.161277] Swap cache stats: add 0, delete 0, find 0/0 [ 533.163575] Total swap = 0kB [ 533.166676] Free swap = 0kB [ 533.169910] 1965979 pages RAM [ 533.172927] Total swap = 0kB [ 533.172935] 1965979 pages RAM [ 533.172940] 0 pages HighMem/MovableOnly [ 533.172946] 342853 pages reserved [ 533.172952] 0 pages cma reserved [ 533.172966] Out of memory: Kill process 19462 (syz-executor1) score 1005 or sacrifice child [ 533.173061] Killed process 19462 (syz-executor1) total-vm:70736kB, anon-rss:2216kB, file-rss:32768kB, shmem-rss:0kB [ 533.212855] 0 pages HighMem/MovableOnly [ 533.217064] 342853 pages reserved [ 533.220542] 0 pages cma reserved [ 534.703862] syz-executor2 (21206) used greatest stack depth: 9624 bytes left [ 535.238882] syz-executor2 (21153) used greatest stack depth: 7496 bytes left 19:46:52 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) fcntl$addseals(r0, 0x409, 0x1) r1 = syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0xfff, 0x20000) ioctl$TCSETA(r1, 0x5406, &(0x7f0000000240)={0x3f, 0x81, 0x0, 0x81, 0x5, 0x5, 0x18, 0x0, 0xc9e6, 0x7f}) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e21, @multicast2}}}, &(0x7f0000000000)=0x84) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000180)=r2, 0x4) 19:46:52 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = getpid() getpgrp(r1) r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xfffffffffffffe9e, 0xfffffffffffffffc, 0x0, 0x548) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) ioctl$SG_GET_LOW_DMA(r3, 0x227a, &(0x7f0000000080)) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) rt_sigpending(&(0x7f0000000040), 0x8) 19:46:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18) 19:46:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:53 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f00000001c0)=@add_del={0x2, &(0x7f0000000000)='irlan0\x00'}) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xffffffffffffffb6, 0x0}, 0x4) ioctl(0xffffffffffffffff, 0xffffffffffffffbd, &(0x7f0000000200)) close(0xffffffffffffffff) fallocate(r0, 0x3, 0x2, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @broadcast}, &(0x7f00000000c0)=0xc) sendmsg$can_raw(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x1d, r1}, 0x10, &(0x7f0000000240)={&(0x7f0000000140)=@canfd={{0x0, 0xc, 0x0, 0x9}, 0x14, 0x2, 0x0, 0x0, "ff71575d16a4d9f10817fa37a30010b1170aab44377f09ef97855a8a71addd7123cc5960862f84e971a39b2d9bba8013bbb08b01a432430cdd0a12aacc3680ab"}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000200)='/dev/vcsa#\x00', 0x1, 0x600100) setsockopt$TIPC_MCAST_BROADCAST(r2, 0x10f, 0x85) 19:46:53 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000000)={0x5, 0x4, 0xbf7c, 0xffffffffffffbe87, 0x7, 0x5}) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r2, 0x111, 0x4, 0x1, 0x4) ioctl$VIDIOC_TRY_FMT(r2, 0xc0d05640, &(0x7f0000000340)={0xe, @win={{0x4, 0x2, 0x3ff, 0x4}, 0xd, 0x1, &(0x7f0000000100)={{0x8, 0x7, 0xfffffffffffffff8, 0x6}}, 0x4, &(0x7f00000002c0)="ba8d1c4bef61d9c33e4f9c7d19ce815e9d76be85dfe99d3cde671eb95626f7b4618b20745553e7a7498b0cb50f426bdca9b4f7f77246f85f9a3070bd64ca54a126f6e4a14b80c6cb92af22a2c51b014a5e58dd78dbb8d487a77bfe66ae25729309282eea321ed3336337eba86d90e855f045", 0x401}}) accept4$inet(r1, &(0x7f0000000140)={0x2, 0x0, @dev}, &(0x7f0000000240)=0x10, 0x80000) r3 = accept4$inet(r2, 0x0, &(0x7f0000000280), 0x80000) ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f0000000440)={0x9, 0x0, 0x7f}) close(r3) 19:46:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(r0) munlock(&(0x7f0000ff6000/0x4000)=nil, 0x4000) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:46:53 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) 19:46:53 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40333}, 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f00000000c0)="254d189abc8e10c6e069dab25a78433f590e1920ef1932eca1101e97bcf6fc19230277d56dab29c9e48a796cadedd807b59f24e1c0b24ea44a9958e36b41790d35dd7593afd3f8bad41c099e6485d6beb8af682875d5990865f53346e1e670dc889828d45a029535a4affd4f9158677fadeb4e9c1cab0feb") ioctl$void(r0, 0x5451) close(r0) 19:46:53 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x8, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/mls\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f0000000240)={{0x9, 0x2, 0x6, 0xfff, 'syz0\x00', 0x5}, 0x1, [0x10000, 0xddd, 0x8, 0x7, 0x4, 0x5, 0x6, 0xe1, 0x100000001, 0xff, 0x0, 0x1ff, 0x2, 0x7, 0x7, 0xfffffffffffffffd, 0x3, 0x8, 0x9, 0x8, 0x1, 0x8, 0xfffffffffffffffa, 0xffc, 0x6, 0x800, 0x37, 0x7d, 0xffffffffffffff81, 0x3ff, 0x2, 0x1, 0x4, 0x9, 0x226, 0x80000001, 0x7, 0x3, 0x2, 0x1000, 0x10000, 0x3, 0xb93, 0x3ff, 0x7, 0x4, 0x7, 0x400, 0xa9, 0xffffffff7fffffff, 0x7f, 0x3, 0x3, 0x0, 0x6, 0x9, 0x80000001, 0x9, 0x4e8, 0x51, 0x6, 0x3, 0x5, 0x401, 0x3f, 0x55, 0x5, 0x998, 0x3ff, 0x1, 0x4, 0x400, 0xfffffffffffffffa, 0x0, 0x7, 0x8eb5, 0x8001, 0x8, 0x5, 0x7, 0xf345, 0x22f9e3ad, 0x5, 0x974d, 0x0, 0x4c6, 0x10000, 0xb966b8d, 0xfffffffffffffffd, 0x8000, 0x3ff, 0x5, 0x8, 0x0, 0x3, 0xdd8, 0x9, 0x4, 0x9cff, 0x1, 0x686, 0x0, 0x80000000, 0x7, 0x3, 0x6, 0xe3, 0x1, 0xffff, 0x0, 0x97, 0x400, 0x80000000, 0x0, 0x7fffffff, 0x1ff, 0x2, 0x9, 0x9, 0xe9, 0x2, 0x8, 0x7f, 0x4, 0x81, 0x8, 0x0, 0xc5f6], {0x0, 0x1c9c380}}) close(r0) prctl$PR_SVE_GET_VL(0x33, 0x2b08) socket$kcm(0x29, 0x7, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x5) 19:46:53 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4040005}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x1, 0x2) ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f0000000100)={0x18, 0x0, {0x4, @local, 'erspan0\x00'}}) close(r0) 19:46:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3) 19:46:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 535.981307] *** Guest State *** [ 535.990136] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 536.020658] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 19:46:53 executing program 2: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x9, 0x80) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000000c0)=0x100000001, 0x4) r1 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r1, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r1) 19:46:53 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) syz_execute_func(&(0x7f0000000000)="2e652665650f0566460f18d366440f3a0fbde00000009942dadb446fc44379045f0000f36d99c481b9d9ad90d00000c4e25dac35c60e0000") sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 536.047353] CR3 = 0x0000000000004000 [ 536.054791] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 536.106545] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 536.142781] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 536.170240] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 536.184280] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 536.199197] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 19:46:53 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x400000000000009, 0x100) r1 = openat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x40001, 0x100) getpeername$tipc(r1, &(0x7f0000000380), &(0x7f00000003c0)=0x10) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000240)={0xc444, 0x1ff, 0xfff, 0x3, 0x80, 0x9}) io_setup(0xac, &(0x7f0000000040)=0x0) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400)='/dev/rfkill\x00', 0x80000, 0x0) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r3, 0x84, 0x74, &(0x7f0000000280)=""/67, &(0x7f0000000300)=0x43) io_cancel(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x7, 0x1ff, r0, &(0x7f00000000c0)="d0b29adb2299c795dff8b815f6967c24a512159af8bcd70a34f89c87569a866d7d58fa52ea2eb7165d63b377d9655d8c836285a61cc50ce4b2a9db431205871e160dc53ad0035209be8da8364bcb6488001069b507da9182ded915774bf01fa61fc395949d5bfa20bdbb3e1ffb5ecee981fb36fe8163cf82080df521154da58dae0e95957bdcfd745a1ba85bfc66a88f4d95daeefc6420d8b6b2bd568d842afb986e83d7fef79515cf4bcfb86444349a3268f47bf856841e3cbe", 0xba, 0x5, 0x0, 0x2, r0}, &(0x7f00000001c0)) close(r3) ioctl$PPPIOCGMRU(r3, 0x80047453, &(0x7f0000000440)) 19:46:53 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 536.216727] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.235410] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 536.281832] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.290539] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.309018] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.360591] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 536.385054] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 536.400158] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 536.414065] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 536.428132] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 536.434781] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 536.442497] Interruptibility = 00000000 ActivityState = 00000000 [ 536.449236] *** Host State *** [ 536.457347] RIP = 0xffffffff812047de RSP = 0xffff8881a7fc7390 [ 536.463481] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 536.472151] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 536.480533] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 536.486807] CR0=0000000080050033 CR3=00000001d9681000 CR4=00000000001426f0 [ 536.500522] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 536.523811] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 536.535645] *** Control State *** [ 536.539255] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 536.549676] EntryControls=0000d1ff ExitControls=002fefff [ 536.555648] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 536.562714] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 536.569594] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 536.576540] reason=80000021 qualification=0000000000000002 [ 536.583005] IDTVectoring: info=00000000 errcode=00000000 [ 536.588940] TSC Offset = 0xfffffedf22e5a3cd [ 536.593439] EPT pointer = 0x00000001a0c0b01e 19:46:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:46:54 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2c101, 0x0) ioctl$ASHMEM_SET_NAME(r1, 0x41007701, &(0x7f00000000c0)='\x00') perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = shmget(0x0, 0x3000, 0x54001020, &(0x7f0000ffa000/0x3000)=nil) shmctl$IPC_RMID(r2, 0x0) close(r0) 19:46:54 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 536.750088] *** Guest State *** [ 536.753425] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 536.763938] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 536.772885] CR3 = 0x0000000000004000 [ 536.778573] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 536.788029] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 536.794834] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 536.800970] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 536.807186] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 536.814153] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 536.823181] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.838329] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 536.849020] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.857182] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.865246] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 536.873228] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 536.882179] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 536.890322] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 536.898745] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 536.906843] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 536.913265] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 536.921816] Interruptibility = 00000000 ActivityState = 00000000 [ 536.928243] *** Host State *** [ 536.931480] RIP = 0xffffffff812047de RSP = 0xffff888193e3f390 [ 536.937630] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 536.944120] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 536.951932] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 536.958007] CR0=0000000080050033 CR3=00000001b91aa000 CR4=00000000001426e0 [ 536.965188] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 536.971948] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 536.979635] *** Control State *** [ 536.983219] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 536.990057] EntryControls=0000d1ff ExitControls=002fefff [ 536.995658] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 537.002675] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 537.009503] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 537.016335] reason=80000021 qualification=0000000000000002 [ 537.022735] IDTVectoring: info=00000000 errcode=00000000 [ 537.028357] TSC Offset = 0xfffffedeb711423e [ 537.032789] EPT pointer = 0x000000017d31301e [ 539.645407] oom_reaper: reaped process 21292 (syz-executor3), now anon-rss:0kB, file-rss:32704kB, shmem-rss:0kB [ 539.683863] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 [ 539.695581] syz-fuzzer cpuset=/ mems_allowed=0 [ 539.700205] CPU: 1 PID: 6181 Comm: syz-fuzzer Not tainted 4.20.0-rc6+ #151 [ 539.707232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 539.716586] Call Trace: [ 539.719184] dump_stack+0x244/0x39d [ 539.722827] ? dump_stack_print_info.cold.1+0x20/0x20 [ 539.728038] ? mark_held_locks+0x130/0x130 [ 539.732282] ? mark_held_locks+0x130/0x130 [ 539.736532] dump_header+0x27b/0xf72 [ 539.740264] ? pagefault_out_of_memory+0x197/0x197 [ 539.745206] ? __lock_acquire+0x62f/0x4c20 [ 539.749441] ? print_usage_bug+0xc0/0xc0 [ 539.753486] ? mark_held_locks+0x130/0x130 [ 539.757712] ? zap_class+0x640/0x640 [ 539.761426] ? print_usage_bug+0xc0/0xc0 [ 539.765473] ? print_usage_bug+0xc0/0xc0 [ 539.769518] ? print_usage_bug+0xc0/0xc0 [ 539.773567] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 539.779106] ? find_held_lock+0x36/0x1c0 [ 539.783153] ? mark_held_locks+0xc7/0x130 [ 539.787291] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 539.792392] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 539.797483] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 539.802064] ? trace_hardirqs_on+0xbd/0x310 [ 539.806371] ? kasan_check_read+0x11/0x20 [ 539.810500] ? ___ratelimit+0x3b4/0x672 [ 539.814459] ? trace_hardirqs_off_caller+0x310/0x310 [ 539.819544] ? trace_hardirqs_on+0x310/0x310 [ 539.823970] ? lock_downgrade+0x900/0x900 [ 539.828106] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 539.833208] ? ___ratelimit+0x3b9/0x672 [ 539.837169] ? idr_get_free+0xf70/0xf70 [ 539.841146] ? kasan_check_read+0x11/0x20 [ 539.845310] ? do_raw_spin_unlock+0xa7/0x330 [ 539.849706] oom_kill_process.cold.27+0x10/0x903 [ 539.854443] ? zap_class+0x640/0x640 [ 539.858137] ? _raw_spin_unlock+0x2c/0x50 [ 539.862267] ? oom_badness+0xe6/0xaa0 [ 539.866055] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 539.870970] ? kasan_check_read+0x11/0x20 [ 539.875117] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 539.880377] ? oom_evaluate_task+0x540/0x540 [ 539.884776] ? find_held_lock+0x36/0x1c0 [ 539.888823] ? out_of_memory+0x974/0x1430 [ 539.892968] ? lock_downgrade+0x900/0x900 [ 539.897107] ? check_preemption_disabled+0x48/0x280 [ 539.902122] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 539.907038] ? kasan_check_read+0x11/0x20 [ 539.911170] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 539.916429] ? rcu_softirq_qs+0x20/0x20 [ 539.920390] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 539.925914] ? oom_evaluate_task+0x302/0x540 [ 539.930323] out_of_memory+0xa84/0x1430 [ 539.934288] ? oom_killer_disable+0x3a0/0x3a0 [ 539.938777] ? __alloc_pages_slowpath+0xf5c/0x2de0 [ 539.943693] ? __ww_mutex_check_waiters+0x160/0x160 [ 539.948699] __alloc_pages_slowpath+0x232c/0x2de0 [ 539.953555] ? warn_alloc+0x120/0x120 [ 539.957345] ? mark_held_locks+0x130/0x130 [ 539.961566] ? find_get_entry+0xaae/0x1120 [ 539.965795] ? filemap_map_pages+0x1a20/0x1a20 [ 539.970366] ? zap_class+0x640/0x640 [ 539.974071] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 539.979592] ? check_preemption_disabled+0x48/0x280 [ 539.984591] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 539.990112] ? should_fail+0x22d/0xd01 [ 539.994009] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 539.999099] ? zap_class+0x640/0x640 [ 540.002846] ? __lock_is_held+0xb5/0x140 [ 540.006893] ? mark_held_locks+0x130/0x130 [ 540.011115] ? lock_release+0xa00/0xa00 [ 540.015088] ? perf_trace_sched_process_exec+0x860/0x860 [ 540.020522] ? xa_load+0x2ba/0x460 [ 540.024061] ? lock_downgrade+0x900/0x900 [ 540.028192] ? __might_sleep+0x95/0x190 [ 540.032151] __alloc_pages_nodemask+0xad8/0xea0 [ 540.036808] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 540.041811] ? __page_cache_alloc+0x191/0x5c0 [ 540.046300] ? xa_load+0x2e1/0x460 [ 540.050067] ? xa_clear_mark+0x40/0x40 [ 540.053937] ? up_read_non_owner+0x100/0x100 [ 540.058330] ? zap_class+0x640/0x640 [ 540.062031] ? zap_class+0x640/0x640 [ 540.065727] ? zap_class+0x640/0x640 [ 540.069442] ? __do_page_cache_readahead+0x663/0x810 [ 540.074532] ? find_held_lock+0x36/0x1c0 [ 540.078577] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 540.084102] alloc_pages_current+0x173/0x350 [ 540.088497] __page_cache_alloc+0x38c/0x5c0 [ 540.092798] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 540.097711] ? kasan_check_read+0x11/0x20 [ 540.101850] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 540.107111] ? generic_perform_write+0x6a0/0x6a0 [ 540.111852] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 540.117374] ? check_preemption_disabled+0x48/0x280 [ 540.122375] filemap_fault+0x1595/0x25f0 [ 540.126424] ? __lock_page_or_retry+0xa00/0xa00 [ 540.131094] ? mark_held_locks+0x130/0x130 [ 540.135317] ? filemap_map_pages+0xd6b/0x1a20 [ 540.139793] ? lock_downgrade+0x900/0x900 [ 540.143922] ? check_preemption_disabled+0x48/0x280 [ 540.148965] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 540.153915] ? kasan_check_read+0x11/0x20 [ 540.158064] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 540.163362] ? rcu_softirq_qs+0x20/0x20 [ 540.167327] ? filemap_map_pages+0xd92/0x1a20 [ 540.171810] ? find_get_entries_tag+0x1400/0x1400 [ 540.176642] ? lock_acquire+0x1ed/0x520 [ 540.180601] ? ext4_filemap_fault+0x7a/0xad [ 540.184912] ? lock_release+0xa00/0xa00 [ 540.188868] ? perf_trace_sched_process_exec+0x860/0x860 [ 540.194340] ? print_usage_bug+0xc0/0xc0 [ 540.198397] ? print_usage_bug+0xc0/0xc0 [ 540.202447] ? down_read+0x8d/0x120 [ 540.206058] ? ext4_filemap_fault+0x7a/0xad [ 540.210393] ? __down_interruptible+0x700/0x700 [ 540.215066] ext4_filemap_fault+0x82/0xad [ 540.219201] __do_fault+0x100/0x6b0 [ 540.222826] ? pmd_devmap_trans_unstable+0x220/0x220 [ 540.227914] ? mark_held_locks+0x130/0x130 [ 540.232131] ? mark_held_locks+0x130/0x130 [ 540.236391] ? do_raw_spin_trylock+0x270/0x270 [ 540.240963] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 540.246484] __handle_mm_fault+0x3ea6/0x5be0 [ 540.250882] ? perf_trace_lock+0x7a0/0x7a0 [ 540.255102] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 540.259930] ? __switch_to_asm+0x34/0x70 [ 540.263975] ? __switch_to_asm+0x34/0x70 [ 540.268031] ? zap_class+0x640/0x640 [ 540.271730] ? zap_class+0x640/0x640 [ 540.275501] ? __x64_sys_futex+0x53e/0x6a0 [ 540.279727] ? find_held_lock+0x36/0x1c0 [ 540.283782] ? handle_mm_fault+0x42a/0xc70 [ 540.288010] ? lock_downgrade+0x900/0x900 [ 540.292142] ? check_preemption_disabled+0x48/0x280 [ 540.297144] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 540.302059] ? kasan_check_read+0x11/0x20 [ 540.306191] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 540.311447] ? rcu_softirq_qs+0x20/0x20 [ 540.315422] ? trace_hardirqs_off_caller+0x310/0x310 [ 540.320512] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 540.326035] ? check_preemption_disabled+0x48/0x280 [ 540.331041] handle_mm_fault+0x54f/0xc70 [ 540.335090] ? __handle_mm_fault+0x5be0/0x5be0 [ 540.339657] ? find_vma+0x34/0x190 [ 540.343183] __do_page_fault+0x5e8/0xe60 [ 540.347231] ? trace_hardirqs_off+0xb8/0x310 [ 540.351628] do_page_fault+0xf2/0x7e0 [ 540.355414] ? vmalloc_sync_all+0x30/0x30 [ 540.359572] ? error_entry+0x70/0xd0 [ 540.363270] ? trace_hardirqs_off_caller+0xbb/0x310 [ 540.368270] ? trace_hardirqs_on_caller+0xc0/0x310 [ 540.373186] ? syscall_return_slowpath+0x5e0/0x5e0 [ 540.378098] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 540.382923] ? trace_hardirqs_on_caller+0x310/0x310 [ 540.387941] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 540.393382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 540.398920] ? prepare_exit_to_usermode+0x291/0x3b0 [ 540.403922] ? page_fault+0x8/0x30 [ 540.407445] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 540.412270] ? page_fault+0x8/0x30 [ 540.415796] page_fault+0x1e/0x30 [ 540.419231] RIP: 0033:0x4290d7 [ 540.422416] Code: Bad RIP value. [ 540.425763] RSP: 002b:000000c42001fea8 EFLAGS: 00010206 [ 540.431110] RAX: ffffffffffffff92 RBX: 0000000028f16903 RCX: 000000000045ddf3 [ 540.438361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001584020 [ 540.445620] RBP: 000000c42001fee8 R08: 0000000000000000 R09: 0000000000000000 [ 540.452869] R10: 000000c42001fed8 R11: 0000000000000206 R12: 0000000000000001 [ 540.460120] R13: 000000c431892960 R14: 0000000000000001 R15: 0000000000000000 [ 540.471814] Mem-Info: [ 540.474328] active_anon:122519 inactive_anon:198 isolated_anon:0 [ 540.474328] active_file:31 inactive_file:13 isolated_file:0 [ 540.474328] unevictable:0 dirty:0 writeback:0 unstable:0 [ 540.474328] slab_reclaimable:13196 slab_unreclaimable:114941 [ 540.474328] mapped:49161 shmem:247 pagetables:1026 bounce:0 [ 540.474328] free:15719 free_pcp:124 free_cma:0 [ 540.474994] syz-executor3: vmalloc: allocation failure, allocated 2449010688 of 3000664064 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 540.507528] syz-executor3: vmalloc: allocation failure, allocated 2722451456 of 3000664064 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 540.535031] Node 0 active_anon:490076kB inactive_anon:792kB active_file:124kB inactive_file:52kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196644kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 454656kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 540.540923] syz-executor3 cpuset=syz3 mems_allowed=0 [ 540.562662] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 540.562702] lowmem_reserve[]: 0 2818 6321 6321 [ 540.562723] Node 0 DMA32 free:28768kB min:30052kB low:37564kB high:45076kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 540.562756] lowmem_reserve[]: 0 0 3503 3503 [ 540.577944] syz-executor3 cpuset=syz3 mems_allowed=0 [ 540.594923] Node 0 Normal free:18200kB min:37364kB low:46704kB high:56044kB active_anon:490068kB inactive_anon:792kB active_file:192kB inactive_file:300kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7040kB pagetables:4104kB bounce:0kB free_pcp:248kB local_pcp:0kB free_cma:0kB [ 540.608362] CPU: 0 PID: 21292 Comm: syz-executor3 Not tainted 4.20.0-rc6+ #151 [ 540.626162] lowmem_reserve[]: 0 0 0 0 [ 540.630408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 540.635527] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 540.664368] Call Trace: [ 540.664395] dump_stack+0x244/0x39d [ 540.664417] ? dump_stack_print_info.cold.1+0x20/0x20 [ 540.664445] warn_alloc.cold.116+0xb7/0x1bd [ 540.671787] Node 0 DMA32: 4*4kB (UM) 4*8kB (UM) 5*16kB (UM) 5*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 28768kB [ 540.675586] ? zone_watermark_ok_safe+0x3f0/0x3f0 [ 540.675622] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 540.675651] __vmalloc_node_range+0x522/0x750 [ 540.685099] Node 0 Normal: 1175*4kB (ME) 503*8kB (ME) 232*16kB (UME) 75*32kB (ME) 7*64kB (ME) 8*128kB (UME) 5*256kB (UME) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 18100kB [ 540.698612] ? drm_property_create_blob.part.2+0xaa/0x470 [ 540.698628] __vmalloc_node_flags_caller+0x75/0x90 [ 540.698645] ? drm_property_create_blob.part.2+0xaa/0x470 [ 540.701229] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 540.704852] kvmalloc_node+0xd7/0xf0 [ 540.704888] drm_property_create_blob.part.2+0xaa/0x470 [ 540.704907] ? find_held_lock+0x36/0x1c0 [ 540.710099] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 540.714426] ? drm_property_free_blob+0x3b0/0x3b0 [ 540.714448] ? drm_unbind_agp+0x20/0x20 [ 540.714470] ? lock_downgrade+0x900/0x900 [ 540.730551] 281 total pagecache pages [ 540.734464] drm_mode_createblob_ioctl+0x1b2/0x570 [ 540.734485] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 540.734504] ? perf_trace_sched_process_exec+0x860/0x860 [ 540.740065] 0 pages in swap cache [ 540.744558] drm_ioctl_kernel+0x278/0x330 [ 540.744575] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 540.744594] ? drm_setversion+0x8b0/0x8b0 [ 540.759955] Swap cache stats: add 0, delete 0, find 0/0 [ 540.765456] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 540.765473] ? _copy_from_user+0xdf/0x150 [ 540.765493] drm_ioctl+0x57e/0xb00 [ 540.770405] Free swap = 0kB [ 540.775937] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 540.775962] ? drm_ioctl_kernel+0x330/0x330 [ 540.775989] ? perf_trace_sched_process_exec+0x860/0x860 [ 540.784835] Total swap = 0kB [ 540.788511] ? __might_fault+0x12b/0x1e0 [ 540.788530] ? lock_downgrade+0x900/0x900 [ 540.793904] 1965979 pages RAM [ 540.797935] ? drm_ioctl_kernel+0x330/0x330 [ 540.806516] 0 pages HighMem/MovableOnly [ 540.811329] do_vfs_ioctl+0x1de/0x1790 [ 540.815306] 342853 pages reserved [ 540.819429] ? ioctl_preallocate+0x300/0x300 [ 540.823206] 0 pages cma reserved [ 540.828129] ? selinux_file_mprotect+0x620/0x620 [ 540.828177] ? assoc_array_insert+0x1c2d/0x2e50 [ 540.828198] ? __sanitizer_cov_trace_cmp4+0xb/0x20 [ 540.833075] Out of memory: Kill process 19597 (syz-executor3) score 1005 or sacrifice child [ 540.838511] ? put_timespec64+0x10f/0x1b0 [ 540.838528] ? finish_task_switch+0x1f4/0x910 [ 540.838546] ? nsecs_to_jiffies+0x30/0x30 [ 540.838566] ? do_syscall_64+0x9a/0x820 [ 540.842113] Killed process 19597 (syz-executor3) total-vm:70340kB, anon-rss:2192kB, file-rss:32768kB, shmem-rss:0kB [ 540.846170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 540.846186] ? security_file_ioctl+0x94/0xc0 [ 540.846210] ksys_ioctl+0xa9/0xd0 [ 540.870779] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 [ 540.873720] __x64_sys_ioctl+0x73/0xb0 [ 540.873740] do_syscall_64+0x1b9/0x820 [ 540.873756] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 540.873777] ? syscall_return_slowpath+0x5e0/0x5e0 [ 540.876812] syz-fuzzer cpuset=/ mems_allowed=0 [ 540.881652] ? trace_hardirqs_on_caller+0x310/0x310 [ 541.031651] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 541.036675] ? post_copy_siginfo_from_user.isra.25.part.26+0x250/0x250 [ 541.043549] ? __switch_to_asm+0x40/0x70 [ 541.047615] ? __switch_to_asm+0x34/0x70 [ 541.051688] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 541.056589] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 541.061785] RIP: 0033:0x457679 [ 541.064988] Code: Bad RIP value. [ 541.068363] RSP: 002b:00007ffa53e8cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 541.076073] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457679 [ 541.083347] RDX: 00000000200000c0 RSI: ffffffffffffffbd RDI: 0000000000000003 [ 541.090618] RBP: 000000000072c040 R08: 0000000000000000 R09: 0000000000000000 [ 541.097890] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa53e8d6d4 [ 541.105160] R13: 00000000004be9ce R14: 00000000004cf5c0 R15: 00000000ffffffff [ 541.112455] CPU: 1 PID: 6181 Comm: syz-fuzzer Not tainted 4.20.0-rc6+ #151 [ 541.119499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 541.126357] warn_alloc_show_mem: 1 callbacks suppressed [ 541.126362] Mem-Info: [ 541.128859] Call Trace: [ 541.134972] active_anon:121973 inactive_anon:198 isolated_anon:0 [ 541.134972] active_file:42 inactive_file:17 isolated_file:0 [ 541.134972] unevictable:0 dirty:0 writeback:0 unstable:0 [ 541.134972] slab_reclaimable:13196 slab_unreclaimable:114941 [ 541.134972] mapped:49155 shmem:247 pagetables:1025 bounce:0 [ 541.134972] free:16206 free_pcp:5 free_cma:0 [ 541.137323] dump_stack+0x244/0x39d [ 541.139933] Node 0 active_anon:487892kB inactive_anon:792kB active_file:168kB inactive_file:68kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 452608kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 541.173491] ? dump_stack_print_info.cold.1+0x20/0x20 [ 541.173510] ? mark_held_locks+0x130/0x130 [ 541.173526] ? mark_held_locks+0x130/0x130 [ 541.173545] dump_header+0x27b/0xf72 [ 541.177187] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 541.205179] ? pagefault_out_of_memory+0x197/0x197 [ 541.205203] ? __lock_acquire+0x62f/0x4c20 [ 541.205223] ? percpu_ref_get_many+0x240/0x240 [ 541.210397] lowmem_reserve[]: 0 2818 6321 6321 [ 541.214623] ? print_usage_bug+0xc0/0xc0 [ 541.214644] ? zap_class+0x640/0x640 [ 541.214663] ? print_usage_bug+0xc0/0xc0 [ 541.218875] Node 0 DMA32 free:28768kB min:30052kB low:37564kB high:45076kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 541.222583] ? print_usage_bug+0xc0/0xc0 [ 541.248700] lowmem_reserve[]: 0 0 3503 3503 [ 541.253596] ? zap_class+0x640/0x640 [ 541.253617] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 541.253636] ? find_held_lock+0x36/0x1c0 [ 541.257847] Node 0 Normal free:20148kB min:37364kB low:46704kB high:56044kB active_anon:487884kB inactive_anon:792kB active_file:68kB inactive_file:68kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7040kB pagetables:4100kB bounce:0kB free_pcp:20kB local_pcp:20kB free_cma:0kB [ 541.262426] ? mark_held_locks+0xc7/0x130 [ 541.267010] lowmem_reserve[]: 0 0 0 0 [ 541.271066] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 541.274780] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 541.278834] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 541.306010] Node 0 DMA32: 4*4kB (UM) 3*8kB (M) 5*16kB (UM) 5*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (UM) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 29016kB [ 541.310041] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 541.314368] Node 0 Normal: 1229*4kB (UME) 504*8kB (UME) 232*16kB (UME) 76*32kB (UME) 10*64kB (UME) 8*128kB (UME) 5*256kB (UME) 1*512kB (U) 0*1024kB 1*2048kB (M) 0*4096kB = 20596kB [ 541.318068] ? trace_hardirqs_on+0xbd/0x310 [ 541.323615] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 541.327640] ? kasan_check_read+0x11/0x20 [ 541.327661] ? ___ratelimit+0x3b4/0x672 [ 541.356391] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 541.360499] ? trace_hardirqs_off_caller+0x310/0x310 [ 541.364302] 281 total pagecache pages [ 541.369372] ? trace_hardirqs_on+0x310/0x310 [ 541.382905] 0 pages in swap cache [ 541.387964] ? lock_downgrade+0x900/0x900 [ 541.387986] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 541.388013] ? ___ratelimit+0x3b9/0x672 [ 541.403192] Swap cache stats: add 0, delete 0, find 0/0 [ 541.407749] ? idr_get_free+0xf70/0xf70 [ 541.407786] ? kasan_check_read+0x11/0x20 [ 541.407802] ? do_raw_spin_unlock+0xa7/0x330 [ 541.423945] Free swap = 0kB [ 541.428242] oom_kill_process.cold.27+0x10/0x903 [ 541.437070] Total swap = 0kB [ 541.441206] ? zap_class+0x640/0x640 [ 541.445214] 1965979 pages RAM [ 541.453749] ? _raw_spin_unlock+0x2c/0x50 [ 541.453762] ? oom_badness+0xe6/0xaa0 [ 541.453787] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 541.458861] 0 pages HighMem/MovableOnly [ 541.462648] ? kasan_check_read+0x11/0x20 [ 541.462666] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 541.467075] 342853 pages reserved [ 541.470498] ? oom_evaluate_task+0x540/0x540 [ 541.474644] 0 pages cma reserved [ 541.479721] ? find_held_lock+0x36/0x1c0 [ 541.560599] ? out_of_memory+0x974/0x1430 [ 541.564787] ? lock_downgrade+0x900/0x900 [ 541.568941] ? check_preemption_disabled+0x48/0x280 [ 541.573966] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 541.578910] ? kasan_check_read+0x11/0x20 [ 541.583065] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 541.588351] ? rcu_softirq_qs+0x20/0x20 [ 541.592337] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 541.597879] ? oom_evaluate_task+0x302/0x540 [ 541.602294] out_of_memory+0xa84/0x1430 [ 541.606292] ? oom_killer_disable+0x3a0/0x3a0 [ 541.610792] ? __alloc_pages_slowpath+0xf5c/0x2de0 [ 541.615744] ? __ww_mutex_check_waiters+0x160/0x160 [ 541.620783] __alloc_pages_slowpath+0x232c/0x2de0 [ 541.625663] ? warn_alloc+0x120/0x120 [ 541.629471] ? mark_held_locks+0x130/0x130 [ 541.633712] ? find_get_entry+0xaae/0x1120 [ 541.637973] ? filemap_map_pages+0x1a20/0x1a20 [ 541.642583] ? zap_class+0x640/0x640 [ 541.646314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 541.651857] ? check_preemption_disabled+0x48/0x280 [ 541.656907] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 541.662449] ? should_fail+0x22d/0xd01 [ 541.666348] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 541.671459] ? zap_class+0x640/0x640 [ 541.675224] ? __lock_is_held+0xb5/0x140 [ 541.679301] ? mark_held_locks+0x130/0x130 [ 541.683547] ? lock_release+0xa00/0xa00 [ 541.687525] ? perf_trace_sched_process_exec+0x860/0x860 [ 541.692981] ? xa_load+0x2ba/0x460 [ 541.696533] ? lock_downgrade+0x900/0x900 [ 541.700695] ? __might_sleep+0x95/0x190 [ 541.704678] __alloc_pages_nodemask+0xad8/0xea0 [ 541.709362] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 541.714382] ? __page_cache_alloc+0x191/0x5c0 [ 541.718882] ? xa_load+0x2e1/0x460 [ 541.722428] ? xa_clear_mark+0x40/0x40 [ 541.726316] ? up_read_non_owner+0x100/0x100 [ 541.730729] ? zap_class+0x640/0x640 [ 541.734458] ? zap_class+0x640/0x640 [ 541.738359] ? zap_class+0x640/0x640 [ 541.742082] ? __do_page_cache_readahead+0x663/0x810 [ 541.747209] ? find_held_lock+0x36/0x1c0 [ 541.751352] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 541.756926] alloc_pages_current+0x173/0x350 [ 541.761345] __page_cache_alloc+0x38c/0x5c0 [ 541.765668] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 541.770605] ? kasan_check_read+0x11/0x20 [ 541.774753] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 541.780062] ? generic_perform_write+0x6a0/0x6a0 [ 541.784826] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 541.790373] ? check_preemption_disabled+0x48/0x280 [ 541.795402] filemap_fault+0x1595/0x25f0 [ 541.799484] ? __lock_page_or_retry+0xa00/0xa00 [ 541.804159] ? mark_held_locks+0x130/0x130 [ 541.808447] ? filemap_map_pages+0xd6b/0x1a20 [ 541.812958] ? lock_downgrade+0x900/0x900 [ 541.817112] ? check_preemption_disabled+0x48/0x280 [ 541.822134] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 541.827079] ? kasan_check_read+0x11/0x20 [ 541.831248] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 541.836526] ? rcu_softirq_qs+0x20/0x20 [ 541.840517] ? filemap_map_pages+0xd92/0x1a20 [ 541.845040] ? find_get_entries_tag+0x1400/0x1400 [ 541.849912] ? lock_acquire+0x1ed/0x520 [ 541.853891] ? ext4_filemap_fault+0x7a/0xad [ 541.858225] ? lock_release+0xa00/0xa00 [ 541.862199] ? perf_trace_sched_process_exec+0x860/0x860 [ 541.867651] ? print_usage_bug+0xc0/0xc0 [ 541.871720] ? print_usage_bug+0xc0/0xc0 [ 541.875802] ? down_read+0x8d/0x120 [ 541.879461] ? ext4_filemap_fault+0x7a/0xad [ 541.883793] ? __down_interruptible+0x700/0x700 [ 541.888473] ext4_filemap_fault+0x82/0xad [ 541.892626] __do_fault+0x100/0x6b0 [ 541.896280] ? pmd_devmap_trans_unstable+0x220/0x220 [ 541.901406] ? mark_held_locks+0x130/0x130 [ 541.905646] ? mark_held_locks+0x130/0x130 [ 541.909884] ? do_raw_spin_trylock+0x270/0x270 [ 541.914549] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 541.920099] __handle_mm_fault+0x3ea6/0x5be0 [ 541.924512] ? perf_trace_lock+0x7a0/0x7a0 [ 541.928758] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 541.933616] ? __switch_to_asm+0x34/0x70 [ 541.937676] ? __switch_to_asm+0x34/0x70 [ 541.941752] ? zap_class+0x640/0x640 [ 541.945488] ? zap_class+0x640/0x640 [ 541.949206] ? __x64_sys_futex+0x53e/0x6a0 [ 541.953448] ? find_held_lock+0x36/0x1c0 [ 541.957523] ? handle_mm_fault+0x42a/0xc70 [ 541.961798] ? lock_downgrade+0x900/0x900 [ 541.965950] ? check_preemption_disabled+0x48/0x280 [ 541.970975] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 541.975914] ? kasan_check_read+0x11/0x20 [ 541.980066] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 541.985349] ? rcu_softirq_qs+0x20/0x20 [ 541.989333] ? trace_hardirqs_off_caller+0x310/0x310 [ 541.994441] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 541.999982] ? check_preemption_disabled+0x48/0x280 [ 542.005028] handle_mm_fault+0x54f/0xc70 [ 542.009111] ? __handle_mm_fault+0x5be0/0x5be0 [ 542.013701] ? find_vma+0x34/0x190 [ 542.017254] __do_page_fault+0x5e8/0xe60 [ 542.021322] ? trace_hardirqs_off+0xb8/0x310 [ 542.025744] do_page_fault+0xf2/0x7e0 [ 542.029553] ? vmalloc_sync_all+0x30/0x30 [ 542.033705] ? error_entry+0x70/0xd0 [ 542.037421] ? trace_hardirqs_off_caller+0xbb/0x310 [ 542.042651] ? trace_hardirqs_on_caller+0xc0/0x310 [ 542.047581] ? syscall_return_slowpath+0x5e0/0x5e0 [ 542.052510] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.057356] ? trace_hardirqs_on_caller+0x310/0x310 [ 542.062371] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 542.067827] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 542.073368] ? prepare_exit_to_usermode+0x291/0x3b0 [ 542.078383] ? page_fault+0x8/0x30 [ 542.081926] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.086777] ? page_fault+0x8/0x30 [ 542.090320] page_fault+0x1e/0x30 [ 542.093780] RIP: 0033:0x4290d7 [ 542.096986] Code: Bad RIP value. [ 542.100355] RSP: 002b:000000c42001fea8 EFLAGS: 00010206 [ 542.105715] RAX: ffffffffffffff92 RBX: 0000000028f16903 RCX: 000000000045ddf3 [ 542.112984] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001584020 [ 542.120256] RBP: 000000c42001fee8 R08: 0000000000000000 R09: 0000000000000000 [ 542.127525] R10: 000000c42001fed8 R11: 0000000000000206 R12: 0000000000000001 [ 542.134794] R13: 000000c431892960 R14: 0000000000000001 R15: 0000000000000000 [ 542.144401] Mem-Info: [ 542.146863] active_anon:121969 inactive_anon:198 isolated_anon:0 [ 542.146863] active_file:21 inactive_file:18 isolated_file:0 [ 542.146863] unevictable:0 dirty:0 writeback:0 unstable:0 [ 542.146863] slab_reclaimable:13196 slab_unreclaimable:114941 [ 542.146863] mapped:49155 shmem:247 pagetables:1000 bounce:0 [ 542.146863] free:16256 free_pcp:9 free_cma:0 [ 542.173430] CPU: 0 PID: 21238 Comm: syz-executor3 Not tainted 4.20.0-rc6+ #151 [ 542.180428] Node 0 active_anon:487876kB inactive_anon:792kB active_file:68kB inactive_file:68kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:196620kB dirty:0kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 450560kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 542.187624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 542.187630] Call Trace: [ 542.187653] dump_stack+0x244/0x39d [ 542.187675] ? dump_stack_print_info.cold.1+0x20/0x20 [ 542.187694] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 542.187719] warn_alloc.cold.116+0xb7/0x1bd [ 542.215168] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 542.224487] ? zone_watermark_ok_safe+0x3f0/0x3f0 [ 542.224586] ? hash_net4_del+0xee0/0xff0 [ 542.224618] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 542.227171] lowmem_reserve[]: 0 2818 6321 6321 [ 542.230822] __vmalloc_node_range+0x522/0x750 [ 542.236019] Node 0 DMA32 free:29016kB min:30052kB low:37564kB high:45076kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 542.240746] ? drm_property_create_blob.part.2+0xaa/0x470 [ 542.245086] lowmem_reserve[]: 0 0 3503 3503 [ 542.271165] __vmalloc_node_flags_caller+0x75/0x90 [ 542.271184] ? drm_property_create_blob.part.2+0xaa/0x470 [ 542.271202] kvmalloc_node+0xd7/0xf0 [ 542.271227] drm_property_create_blob.part.2+0xaa/0x470 [ 542.276959] Node 0 Normal free:20596kB min:37364kB low:46704kB high:56044kB active_anon:487868kB inactive_anon:792kB active_file:68kB inactive_file:68kB unevictable:0kB writepending:0kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:7040kB pagetables:4000kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 542.280115] ? find_held_lock+0x36/0x1c0 [ 542.285658] lowmem_reserve[]: 0 0 0 0 [ 542.290206] ? drm_property_free_blob+0x3b0/0x3b0 [ 542.294707] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 542.321836] ? drm_unbind_agp+0x20/0x20 [ 542.321856] ? lock_downgrade+0x900/0x900 [ 542.321881] drm_mode_createblob_ioctl+0x1b2/0x570 [ 542.327433] Node 0 DMA32: 4*4kB (UM) 3*8kB (M) 5*16kB (UM) 5*32kB (M) 3*64kB (M) 3*128kB (M) 4*256kB (UM) 3*512kB (M) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 29016kB [ 542.331720] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 542.336659] Node 0 Normal: 1231*4kB (UME) 504*8kB (UME) 235*16kB (UME) 77*32kB (UME) 10*64kB (UME) 10*128kB (UME) 5*256kB (UME) 1*512kB (U) 0*1024kB 1*2048kB (M) 0*4096kB = 20940kB [ 542.342155] ? perf_trace_sched_process_exec+0x860/0x860 [ 542.342182] drm_ioctl_kernel+0x278/0x330 [ 542.345906] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 542.351227] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 542.379789] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 542.383819] ? drm_setversion+0x8b0/0x8b0 [ 542.383843] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 542.383862] ? _copy_from_user+0xdf/0x150 [ 542.387644] 281 total pagecache pages [ 542.392485] drm_ioctl+0x57e/0xb00 [ 542.406959] 0 pages in swap cache [ 542.409963] ? drm_mode_getblob_ioctl+0x2b0/0x2b0 [ 542.414129] Swap cache stats: add 0, delete 0, find 0/0 [ 542.419030] ? drm_ioctl_kernel+0x330/0x330 [ 542.434212] Free swap = 0kB [ 542.439046] ? perf_trace_sched_process_exec+0x860/0x860 [ 542.455272] Total swap = 0kB [ 542.460671] ? __might_fault+0x12b/0x1e0 [ 542.460691] ? lock_downgrade+0x900/0x900 [ 542.464877] 1965979 pages RAM [ 542.473752] ? drm_ioctl_kernel+0x330/0x330 [ 542.473770] do_vfs_ioctl+0x1de/0x1790 [ 542.473794] ? ioctl_preallocate+0x300/0x300 [ 542.478620] 0 pages HighMem/MovableOnly [ 542.487195] ? selinux_file_mprotect+0x620/0x620 [ 542.487215] ? assoc_array_insert+0x1c2d/0x2e50 [ 542.487237] ? __sanitizer_cov_trace_cmp4+0xb/0x20 [ 542.491365] 342853 pages reserved [ 542.496894] ? put_timespec64+0x10f/0x1b0 [ 542.496927] ? nsecs_to_jiffies+0x30/0x30 [ 542.496958] ? do_syscall_64+0x9a/0x820 [ 542.496980] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 542.497023] ? security_file_ioctl+0x94/0xc0 [ 542.501164] 0 pages cma reserved [ 542.504960] ksys_ioctl+0xa9/0xd0 [ 542.504980] __x64_sys_ioctl+0x73/0xb0 [ 542.505008] do_syscall_64+0x1b9/0x820 [ 542.508545] Out of memory: Kill process 7890 (syz-executor3) score 1005 or sacrifice child [ 542.511992] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 542.516934] Killed process 7890 (syz-executor3) total-vm:70340kB, anon-rss:2184kB, file-rss:32640kB, shmem-rss:0kB [ 542.522182] ? syscall_return_slowpath+0x5e0/0x5e0 [ 542.543309] syz-fuzzer invoked oom-killer: gfp_mask=0x6200ca(GFP_HIGHUSER_MOVABLE), nodemask=(null), order=0, oom_score_adj=0 [ 542.546111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.546132] ? trace_hardirqs_on_caller+0x310/0x310 [ 542.546148] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 542.546165] ? prepare_exit_to_usermode+0x291/0x3b0 [ 542.546187] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 542.546210] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 542.546227] RIP: 0033:0x457679 [ 542.549323] syz-fuzzer cpuset=/ mems_allowed=0 [ 542.553662] Code: Bad RIP value. [ 542.553672] RSP: 002b:00007ffa53ecec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 542.553687] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457679 [ 542.553696] RDX: 00000000200000c0 RSI: ffffffffffffffbd RDI: 0000000000000003 [ 542.553711] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 542.731504] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffa53ecf6d4 [ 542.738862] R13: 00000000004be9ce R14: 00000000004cf5c0 R15: 00000000ffffffff [ 542.746189] CPU: 1 PID: 6181 Comm: syz-fuzzer Not tainted 4.20.0-rc6+ #151 [ 542.753228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 542.762582] Call Trace: [ 542.763994] syz-executor3 (19597) used greatest stack depth: 6912 bytes left [ 542.765187] dump_stack+0x244/0x39d [ 542.775984] ? dump_stack_print_info.cold.1+0x20/0x20 [ 542.781204] ? mark_held_locks+0x130/0x130 [ 542.785463] ? mark_held_locks+0x130/0x130 [ 542.789710] dump_header+0x27b/0xf72 [ 542.793443] ? pagefault_out_of_memory+0x197/0x197 [ 542.798405] ? __lock_acquire+0x62f/0x4c20 [ 542.802652] ? percpu_ref_get_many+0x240/0x240 [ 542.807246] ? print_usage_bug+0xc0/0xc0 [ 542.811324] ? zap_class+0x640/0x640 [ 542.815049] ? print_usage_bug+0xc0/0xc0 [ 542.819120] ? print_usage_bug+0xc0/0xc0 [ 542.823198] ? zap_class+0x640/0x640 [ 542.826931] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 542.832483] ? find_held_lock+0x36/0x1c0 [ 542.836572] ? mark_held_locks+0xc7/0x130 [ 542.840726] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 542.845849] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 542.850965] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 542.855563] ? trace_hardirqs_on+0xbd/0x310 [ 542.859913] ? kasan_check_read+0x11/0x20 [ 542.864071] ? ___ratelimit+0x3b4/0x672 [ 542.868063] ? trace_hardirqs_off_caller+0x310/0x310 [ 542.873170] ? trace_hardirqs_on+0x310/0x310 [ 542.877593] ? lock_downgrade+0x900/0x900 [ 542.881750] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 542.886864] ? ___ratelimit+0x3b9/0x672 [ 542.890853] ? idr_get_free+0xf70/0xf70 [ 542.894839] ? kasan_check_read+0x11/0x20 [ 542.899037] ? do_raw_spin_unlock+0xa7/0x330 [ 542.903454] oom_kill_process.cold.27+0x10/0x903 [ 542.908215] ? zap_class+0x640/0x640 [ 542.911928] ? _raw_spin_unlock+0x2c/0x50 [ 542.916077] ? oom_badness+0xe6/0xaa0 [ 542.919878] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 542.924847] ? kasan_check_read+0x11/0x20 [ 542.929021] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 542.934304] ? oom_evaluate_task+0x540/0x540 [ 542.938720] ? find_held_lock+0x36/0x1c0 [ 542.942800] ? out_of_memory+0x974/0x1430 [ 542.946956] ? lock_downgrade+0x900/0x900 [ 542.951110] ? check_preemption_disabled+0x48/0x280 [ 542.956130] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 542.961064] ? kasan_check_read+0x11/0x20 [ 542.965214] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 542.970486] ? rcu_softirq_qs+0x20/0x20 [ 542.974476] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 542.980058] ? oom_evaluate_task+0x302/0x540 [ 542.984480] out_of_memory+0xa84/0x1430 [ 542.988464] ? oom_killer_disable+0x3a0/0x3a0 [ 542.992962] ? __alloc_pages_slowpath+0xf5c/0x2de0 [ 542.997899] ? __ww_mutex_check_waiters+0x160/0x160 [ 543.002931] __alloc_pages_slowpath+0x232c/0x2de0 [ 543.007810] ? warn_alloc+0x120/0x120 [ 543.011619] ? mark_held_locks+0x130/0x130 [ 543.015864] ? find_get_entry+0xaae/0x1120 [ 543.020114] ? filemap_map_pages+0x1a20/0x1a20 [ 543.024705] ? zap_class+0x640/0x640 [ 543.028430] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 543.033976] ? check_preemption_disabled+0x48/0x280 [ 543.039013] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 543.044559] ? should_fail+0x22d/0xd01 [ 543.048452] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 543.053561] ? zap_class+0x640/0x640 [ 543.057305] ? __lock_is_held+0xb5/0x140 [ 543.061376] ? mark_held_locks+0x130/0x130 [ 543.065619] ? lock_release+0xa00/0xa00 [ 543.069599] ? perf_trace_sched_process_exec+0x860/0x860 [ 543.075058] ? xa_load+0x2ba/0x460 [ 543.078610] ? lock_downgrade+0x900/0x900 [ 543.082768] ? __might_sleep+0x95/0x190 [ 543.086760] __alloc_pages_nodemask+0xad8/0xea0 [ 543.091459] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 543.096480] ? __page_cache_alloc+0x191/0x5c0 [ 543.101051] ? xa_load+0x2e1/0x460 [ 543.104594] ? xa_clear_mark+0x40/0x40 [ 543.108481] ? up_read_non_owner+0x100/0x100 [ 543.112889] ? zap_class+0x640/0x640 [ 543.116645] ? zap_class+0x640/0x640 [ 543.120375] ? zap_class+0x640/0x640 [ 543.124088] ? __do_page_cache_readahead+0x663/0x810 [ 543.129201] ? find_held_lock+0x36/0x1c0 [ 543.133282] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 543.138834] alloc_pages_current+0x173/0x350 [ 543.143253] __page_cache_alloc+0x38c/0x5c0 [ 543.147598] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 543.152528] ? kasan_check_read+0x11/0x20 [ 543.156678] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 543.161964] ? generic_perform_write+0x6a0/0x6a0 [ 543.166739] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 543.172843] ? check_preemption_disabled+0x48/0x280 [ 543.177902] filemap_fault+0x1595/0x25f0 [ 543.181987] ? __lock_page_or_retry+0xa00/0xa00 [ 543.186667] ? mark_held_locks+0x130/0x130 [ 543.190916] ? filemap_map_pages+0xd6b/0x1a20 [ 543.195420] ? lock_downgrade+0x900/0x900 [ 543.199573] ? check_preemption_disabled+0x48/0x280 [ 543.204595] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 543.209524] ? kasan_check_read+0x11/0x20 [ 543.213680] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 543.218961] ? rcu_softirq_qs+0x20/0x20 [ 543.222949] ? filemap_map_pages+0xd92/0x1a20 [ 543.227498] ? find_get_entries_tag+0x1400/0x1400 [ 543.232364] ? lock_acquire+0x1ed/0x520 [ 543.236358] ? ext4_filemap_fault+0x7a/0xad [ 543.240690] ? lock_release+0xa00/0xa00 [ 543.244709] ? perf_trace_sched_process_exec+0x860/0x860 [ 543.250162] ? print_usage_bug+0xc0/0xc0 [ 543.254227] ? print_usage_bug+0xc0/0xc0 [ 543.258301] ? down_read+0x8d/0x120 [ 543.261940] ? ext4_filemap_fault+0x7a/0xad [ 543.266282] ? __down_interruptible+0x700/0x700 [ 543.270968] ext4_filemap_fault+0x82/0xad [ 543.275126] __do_fault+0x100/0x6b0 [ 543.278766] ? pmd_devmap_trans_unstable+0x220/0x220 [ 543.283913] ? mark_held_locks+0x130/0x130 [ 543.288169] ? mark_held_locks+0x130/0x130 [ 543.292411] ? do_raw_spin_trylock+0x270/0x270 [ 543.297045] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 543.302593] __handle_mm_fault+0x3ea6/0x5be0 [ 543.307014] ? perf_trace_lock+0x7a0/0x7a0 [ 543.311303] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 543.316157] ? __switch_to_asm+0x34/0x70 [ 543.320230] ? __switch_to_asm+0x34/0x70 [ 543.324343] ? zap_class+0x640/0x640 [ 543.328072] ? zap_class+0x640/0x640 [ 543.331791] ? __x64_sys_futex+0x53e/0x6a0 [ 543.336044] ? find_held_lock+0x36/0x1c0 [ 543.340123] ? handle_mm_fault+0x42a/0xc70 [ 543.344380] ? lock_downgrade+0x900/0x900 [ 543.348537] ? check_preemption_disabled+0x48/0x280 [ 543.353601] ? rcu_read_unlock_special+0x1c0/0x1c0 [ 543.358535] ? kasan_check_read+0x11/0x20 [ 543.362686] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 543.367962] ? rcu_softirq_qs+0x20/0x20 [ 543.371942] ? trace_hardirqs_off_caller+0x310/0x310 [ 543.377050] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 543.382597] ? check_preemption_disabled+0x48/0x280 [ 543.387656] handle_mm_fault+0x54f/0xc70 [ 543.391732] ? __handle_mm_fault+0x5be0/0x5be0 [ 543.393549] Mem-Info: [ 543.396320] ? find_vma+0x34/0x190 [ 543.398766] active_anon:121319 inactive_anon:198 isolated_anon:0 [ 543.398766] active_file:292 inactive_file:392 isolated_file:0 [ 543.398766] unevictable:0 dirty:25 writeback:0 unstable:0 [ 543.398766] slab_reclaimable:13196 slab_unreclaimable:114870 [ 543.398766] mapped:49480 shmem:247 pagetables:963 bounce:0 [ 543.398766] free:259714 free_pcp:1012 free_cma:0 [ 543.402314] __do_page_fault+0x5e8/0xe60 [ 543.439755] ? trace_hardirqs_off+0xb8/0x310 [ 543.444197] do_page_fault+0xf2/0x7e0 [ 543.448008] ? vmalloc_sync_all+0x30/0x30 [ 543.452163] ? error_entry+0x70/0xd0 [ 543.455900] ? trace_hardirqs_off_caller+0xbb/0x310 [ 543.460917] ? trace_hardirqs_on_caller+0xc0/0x310 [ 543.465853] ? syscall_return_slowpath+0x5e0/0x5e0 [ 543.470792] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 543.475638] ? trace_hardirqs_on_caller+0x310/0x310 [ 543.480685] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 543.483578] Node 0 active_anon:485276kB inactive_anon:792kB active_file:1168kB inactive_file:1568kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:197920kB dirty:200kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 450560kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 543.486174] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 543.519642] ? prepare_exit_to_usermode+0x291/0x3b0 [ 543.524675] ? page_fault+0x8/0x30 [ 543.528220] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 543.533066] ? page_fault+0x8/0x30 [ 543.536607] page_fault+0x1e/0x30 [ 543.540058] RIP: 0033:0x4290d7 [ 543.543265] Code: Bad RIP value. [ 543.543543] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 543.546628] RSP: 002b:000000c42001fea8 EFLAGS: 00010206 [ 543.578091] RAX: ffffffffffffff92 RBX: 0000000028f16903 RCX: 000000000045ddf3 [ 543.585356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001584020 [ 543.592622] RBP: 000000c42001fee8 R08: 0000000000000000 R09: 0000000000000000 [ 543.599893] R10: 000000c42001fed8 R11: 0000000000000206 R12: 0000000000000001 [ 543.603556] lowmem_reserve[]: 0 2818 6321 6321 [ 543.607166] R13: 000000c431892960 R14: 0000000000000001 R15: 0000000000000000 [ 543.611738] Node 0 DMA32 free:202316kB min:30052kB low:37564kB high:45076kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:1316kB local_pcp:1316kB free_cma:0kB [ 543.656906] lowmem_reserve[]: 0 0 3503 3503 [ 543.661258] Node 0 Normal free:974336kB min:37364kB low:46704kB high:56044kB active_anon:484428kB inactive_anon:792kB active_file:1252kB inactive_file:1528kB unevictable:0kB writepending:232kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:6880kB pagetables:3664kB bounce:0kB free_pcp:2952kB local_pcp:1432kB free_cma:0kB [ 543.691632] lowmem_reserve[]: 0 0 0 0 [ 543.695912] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 543.711069] Node 0 DMA32: 1229*4kB (UM) 1232*8kB (UM) 1237*16kB (UM) 1233*32kB (UM) 1233*64kB (UM) 1229*128kB (UM) 9*256kB (UM) 9*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 342756kB [ 543.728752] Node 0 Normal: 4146*4kB (UME) 4307*8kB (UME) 3570*16kB (UME) 3457*32kB (UME) 4191*64kB (UME) 3394*128kB (UME) 123*256kB (UME) 26*512kB (U) 2*1024kB (U) 3*2048kB (UM) 0*4096kB = 974432kB [ 543.747034] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 543.756242] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 543.765230] 952 total pagecache pages [ 543.769047] 0 pages in swap cache [ 543.772499] Swap cache stats: add 0, delete 0, find 0/0 [ 543.778740] Free swap = 0kB [ 543.781805] Total swap = 0kB [ 543.785211] 1965979 pages RAM [ 543.788321] 0 pages HighMem/MovableOnly [ 543.792290] 342853 pages reserved [ 543.796120] 0 pages cma reserved [ 544.073553] Mem-Info: [ 544.076044] active_anon:121109 inactive_anon:198 isolated_anon:0 [ 544.076044] active_file:313 inactive_file:382 isolated_file:0 [ 544.076044] unevictable:0 dirty:58 writeback:0 unstable:0 [ 544.076044] slab_reclaimable:13194 slab_unreclaimable:114636 [ 544.076044] mapped:49475 shmem:247 pagetables:916 bounce:0 [ 544.076044] free:470384 free_pcp:1382 free_cma:0 [ 544.133572] Node 0 active_anon:484436kB inactive_anon:792kB active_file:1252kB inactive_file:1528kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:197900kB dirty:232kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 448512kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 544.173544] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 544.213555] lowmem_reserve[]: 0 2818 6321 6321 [ 544.218172] Node 0 DMA32 free:1059192kB min:30052kB low:37564kB high:45076kB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2888780kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:2776kB local_pcp:1316kB free_cma:0kB [ 544.246398] lowmem_reserve[]: 0 0 3503 3503 [ 544.250749] Node 0 Normal free:974336kB min:37364kB low:46704kB high:56044kB active_anon:484428kB inactive_anon:792kB active_file:1252kB inactive_file:1528kB unevictable:0kB writepending:232kB present:4718592kB managed:3587816kB mlocked:0kB kernel_stack:6848kB pagetables:3664kB bounce:0kB free_pcp:2948kB local_pcp:1428kB free_cma:0kB [ 544.280775] lowmem_reserve[]: 0 0 0 0 [ 544.284890] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 544.298968] Node 0 DMA32: 4337*4kB (UM) 4342*8kB (UM) 4344*16kB (UM) 4346*32kB (UM) 4343*64kB (UM) 4340*128kB (UM) 18*256kB (UM) 15*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 4*4096kB (M) = 1132020kB [ 544.316913] Node 0 Normal: 4083*4kB (UME) 4307*8kB (UME) 3570*16kB (UME) 3457*32kB (UME) 4191*64kB (UME) 3394*128kB (UME) 123*256kB (UME) 26*512kB (U) 2*1024kB (U) 3*2048kB (UM) 0*4096kB = 974180kB [ 544.335266] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 544.344528] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 544.353110] 952 total pagecache pages [ 544.357302] 0 pages in swap cache [ 544.360752] Swap cache stats: add 0, delete 0, find 0/0 [ 544.366413] Free swap = 0kB [ 544.369430] Total swap = 0kB [ 544.372537] 1965979 pages RAM [ 544.376103] 0 pages HighMem/MovableOnly [ 544.381432] 342853 pages reserved [ 544.385470] 0 pages cma reserved [ 544.388944] Out of memory: Kill process 15549 (syz-executor0) score 1005 or sacrifice child [ 544.397845] Killed process 15549 (syz-executor0) total-vm:70472kB, anon-rss:2200kB, file-rss:32580kB, shmem-rss:0kB 19:47:03 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) 19:47:03 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:03 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000000)) 19:47:03 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80800) inotify_add_watch(r1, &(0x7f00000000c0)='./file0\x00', 0x80000000) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-control\x00', 0x20000, 0x0) ioctl$sock_SIOCINQ(r3, 0x541b, &(0x7f0000000200)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) r4 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl(r4, 0xfa6, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r5 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x100, 0x20000) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz0\x00', 0x1ff) r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000080)='fou\x00') r7 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000580)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400040}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r7, 0x0, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}]}, 0x1c}}, 0x1) sendmsg$FOU_CMD_DEL(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB="ac00000a2943c76253e877ed98f052fd1fd782586dfb1eb645fa1223208eeb25822a38f1f10c68beb228e1db3b674f2703624b3d86f987663166d8eacc24483f13e557478bc9d1ab10b1477817187581a19da94a76230ffc3340b9d0abfff3342303fabd9c6a972432ec678197fa51f119ec4622aa1f", @ANYRES16=r6, @ANYBLOB="290326bd7000fcdbdf2502000000080002000a000000080002000a000000080002000a000000"], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x1) ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r3, 0xc0845657, &(0x7f0000000440)={0x0, @bt={0x1, 0xfffffffffffffff8, 0x1, 0x3, 0x2, 0x7f, 0x7, 0x3, 0xfffffffeffffffff, 0x80000000, 0x2, 0x27da, 0x9, 0x6, 0x10, 0x20}}) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:47:03 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x6, 0x400) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0xffffffff7fffffff}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000140)={r2, 0x6}, 0x8) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:03 executing program 3: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x200000, 0x0) ioctl$DRM_IOCTL_CONTROL(r0, 0x40086414, &(0x7f00000000c0)={0x0, 0x6}) add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000280)={0x0, 0x80000, r1}) ioctl$DRM_IOCTL_GEM_CLOSE(r1, 0x40086409, &(0x7f00000002c0)={r2}) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r1, 0xffffffffffffffbd, &(0x7f0000000300)) setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000100)={0xfffffffffffffffd, 0x3ff, 0xc000000000000, 0xaa57}, 0x10) stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000003c0)={0x0, 0x0, 0x0}, &(0x7f0000000400)=0xc) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) getresgid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=0x0) lstat(&(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgroups(0x5, &(0x7f00000005c0)=[r4, 0xee00, r5, r6, r7]) close(r1) setuid(r3) 19:47:03 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000280)='/dev/dri/card#\x00', 0x8001, 0xffffffffffffffff) sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000140)={&(0x7f0000000240), 0x128, 0x0}, 0x8004) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x80, 0x0) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r1, 0x111, 0x2, 0x1, 0x4) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000040)={0x6}, 0x1) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00', 0x0, 0x10}, 0x10) close(r0) 19:47:03 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) r2 = inotify_add_watch(r1, &(0x7f00000001c0)='./file0\x00', 0x1000000) inotify_rm_watch(r1, r2) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x1b4, r3, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x3c, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x93e}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xd8f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffff}]}, @TIPC_NLA_NET={0x20, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x100000001}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}]}, @TIPC_NLA_BEARER={0x18, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffffff81}]}]}, @TIPC_NLA_NET={0x60, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xffffffff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x200}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x320}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5b3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x401}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x63a35187}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x45eb}]}, @TIPC_NLA_LINK={0x8c, 0x4, [@TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd6e5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffff9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}, @TIPC_NLA_BEARER={0x40, 0x1, [@TIPC_NLA_BEARER_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x20004091}, 0x0) 19:47:03 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:03 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) close(r0) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=0x0, &(0x7f0000000140)=0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000240)={r2, 0xb2, "999ecc022952e68b9c2ce4b7fe2d77eba5e21381dfc46f7506b322dfbf3e82f52f27b0ec4fdbbfc3de6e6a41c2b30ca7f976f5f98672a71ac38378899c965157b72588fd0e7538b2bafac52536d31e567534be7aed60cb916ca6723ce99e6569a79b81e211ba2673513368eb05cd8ced575dc2b7f821cd85a9c1f9f23c6b91eda633ee21752298f267d87830dc672ed14e7e7e527a8ed64b64457017bebed808f2266d0683f28d8b9a5967fa911cbd43af0f"}, &(0x7f0000000180)=0xba) [ 545.956854] *** Guest State *** 19:47:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900000000000000) 19:47:03 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000000)={0x0, 0x0, r0}) ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f00000000c0)={r1}) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 545.998952] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 546.038651] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 546.058331] CR3 = 0x0000000000004000 [ 546.075015] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 546.083677] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 546.128389] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 546.171100] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 546.191082] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 546.198118] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 546.207687] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.215893] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 546.224603] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.233591] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.241723] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.255105] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 546.266814] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 546.275039] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 546.283197] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 546.291532] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 546.298277] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 546.305930] Interruptibility = 00000000 ActivityState = 00000000 [ 546.312289] *** Host State *** [ 546.315740] RIP = 0xffffffff812047de RSP = 0xffff88817c687390 [ 546.321892] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 546.328575] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 546.336603] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 546.342554] CR0=0000000080050033 CR3=00000001d9324000 CR4=00000000001426f0 [ 546.349636] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 546.356338] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 546.362401] *** Control State *** [ 546.365893] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 546.372577] EntryControls=0000d1ff ExitControls=002fefff [ 546.378071] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 546.385560] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 546.392216] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 546.398873] reason=80000021 qualification=0000000000000002 [ 546.405240] IDTVectoring: info=00000000 errcode=00000000 [ 546.410697] TSC Offset = 0xfffffed9d71bbbec [ 546.415140] EPT pointer = 0x00000001cd86401e [ 546.474058] *** Guest State *** [ 546.477367] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 546.486471] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 546.495382] CR3 = 0x0000000000004000 [ 546.499119] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 546.506349] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 546.512837] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 546.518905] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 546.524917] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 546.531570] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 546.539621] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.547631] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 546.555642] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.563680] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.571646] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 546.580110] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 546.588282] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 546.596330] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 546.604445] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 546.612411] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 546.618855] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 546.626338] Interruptibility = 00000000 ActivityState = 00000000 [ 546.632553] *** Host State *** [ 546.635787] RIP = 0xffffffff812047de RSP = 0xffff8881c3c27390 [ 546.641774] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 546.648226] FSBase=00007f911e212700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 546.656064] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 546.661935] CR0=0000000080050033 CR3=00000001d9324000 CR4=00000000001426f0 [ 546.668990] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 546.675704] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 546.681741] *** Control State *** [ 546.685239] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 546.691911] EntryControls=0000d1ff ExitControls=002fefff [ 546.697398] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 546.704354] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 546.711011] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 546.717627] reason=80000021 qualification=0000000000000002 19:47:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = add_key(&(0x7f0000000000)='blacklist\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$read(0xb, r3, &(0x7f0000000380)=""/4096, 0x1000) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:47:04 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_stats\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f00000000c0)=0x81, 0x4) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) r2 = getpgid(0x0) ptrace$peekuser(0x3, r2, 0x5) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:04 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:04 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x4000000000000000) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x100) close(r0) 19:47:04 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-control\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x68, &(0x7f0000000140)=[@in={0x2, 0x4e24, @local}, @in={0x2, 0x4e24}, @in6={0xa, 0x4e24, 0x3, @dev={0xfe, 0x80, [], 0xa}, 0x6}, @in6={0xa, 0x4e24, 0x101, @mcast1, 0x7}, @in={0x2, 0x4e20, @broadcast}]}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000280)={r2, 0x8, 0x5, 0x1, 0xfffffffffffffe00, 0x36}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000500)=0x1b3bc44b, 0x4) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000300)='trusted.overlay.upper\x00', &(0x7f0000000340)={0x0, 0xfb, 0x9d, 0x4, 0x8, "58c77716b3cfcd4223e096ed2e0eeba6", "1cd0622e39e016c5ac6176588df685716ab104fcd685fabb166c180706e7aff268b7e9fda1fd1663ef86dc153ad9dfee3693209516836dddee599559407b9158c5158ee6c9edfc15547eabeef80d66a51d873338b596c602214fb628044706054fbadadf73ad962a660044986d181aa4ca1f68854aade7976464c3406cdd3d1d36d44c709d86ebd4"}, 0x9d, 0x1) close(r0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000480)={r3, 0x64, &(0x7f0000000400)=[@in6={0xa, 0x4e20, 0x1, @mcast2}, @in6={0xa, 0x4e21, 0xc0f, @dev={0xfe, 0x80, [], 0xe}, 0x1}, @in={0x2, 0x4e22, @empty}, @in6={0xa, 0x4e23, 0x4e, @local, 0x8}]}, &(0x7f00000004c0)=0x10) r4 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x2d, 0x2000) write$P9_RAUTH(r4, &(0x7f00000000c0)={0x14, 0x67, 0x1, {0x0, 0x1}}, 0x14) 19:47:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100000) [ 546.724020] IDTVectoring: info=00000000 errcode=00000000 [ 546.729463] TSC Offset = 0xfffffed9d71bbbec [ 546.733828] EPT pointer = 0x00000001cd86401e 19:47:04 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x80800, 0x0) ioctl$UI_SET_FFBIT(r1, 0x4004556b, 0x15) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:04 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:04 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f00000000c0)={0x0, 0x14, "d792f6a7c05555c2602a74a706e0fe9ced1ba0d1"}, &(0x7f0000000100)=0x1c) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0x14, r3, 0x8882dc186875bd53, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) r4 = fcntl$getown(r1, 0x9) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000380), &(0x7f0000000440)=0x4) fcntl$setown(r1, 0x8, r4) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000240)={r2, @in={{0x2, 0x4e20, @multicast2}}, [0x9, 0x4, 0x7, 0x0, 0x8, 0x8000, 0x7fff, 0x4, 0x4, 0x80, 0x7, 0x0, 0x5, 0x19b0ad61, 0x100000000]}, &(0x7f0000000140)=0x100) close(r0) [ 546.885825] *** Guest State *** [ 546.898239] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:47:04 executing program 2: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x4000, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x200000, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={r1}) r2 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r2) [ 546.948153] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 19:47:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) [ 547.009055] CR3 = 0x0000000000004000 [ 547.012959] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 547.035305] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 547.049660] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 19:47:04 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000200)={&(0x7f0000000000), 0xc, 0x0}, 0x0) close(r0) connect$pptp(r1, &(0x7f0000000080)={0x18, 0x2, {0x0, @local}}, 0x1e) [ 547.065545] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 547.094095] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 547.154095] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 547.173923] audit: type=1400 audit(1544557624.728:61): avc: denied { connect } for pid=21414 comm="syz-executor1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 547.198021] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 547.212705] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 547.238432] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 547.270107] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 547.284316] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 547.292459] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 547.302468] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 547.311490] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 547.319995] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 547.328445] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 547.335086] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 547.342536] Interruptibility = 00000000 ActivityState = 00000000 [ 547.348832] *** Host State *** [ 547.352033] RIP = 0xffffffff812047de RSP = 0xffff88817be47390 [ 547.358415] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 547.364884] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 547.372686] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 547.378616] CR0=0000000080050033 CR3=00000001bac77000 CR4=00000000001426e0 [ 547.385663] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 547.392313] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 547.398417] *** Control State *** [ 547.401873] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 547.408569] EntryControls=0000d1ff ExitControls=002fefff [ 547.414060] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 19:47:05 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) 19:47:05 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:05 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000080), 0xc, 0x0}, 0xfffffffffffffffe) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x20001, 0x0) ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f0000000100)) 19:47:05 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000100)={'tunl0\x00', &(0x7f00000000c0)=@ethtool_cmd={0x3f, 0x4b1, 0xc06, 0x1, 0x7, 0x40, 0x9, 0x4, 0x101, 0x6, 0x2489, 0x3, 0xcc, 0x8, 0x643f, 0x1, [0x40, 0x401]}}) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 19:47:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) getsockopt$inet_opts(r3, 0x0, 0x0, &(0x7f0000000000)=""/142, &(0x7f00000000c0)=0x8e) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:47:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) [ 547.420999] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 547.428338] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 547.434968] reason=80000021 qualification=0000000000000002 [ 547.441290] IDTVectoring: info=00000000 errcode=00000000 [ 547.446774] TSC Offset = 0xfffffed94840efa5 [ 547.451117] EPT pointer = 0x00000001cdb3c01e 19:47:05 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x80000, 0x0) sendto$llc(r1, &(0x7f0000000240)="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", 0xfb, 0x4000000, 0x0, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000200)={&(0x7f0000000180), 0x36, 0x0}, 0x44000000) openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0xa00, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$sock_bt_bnep_BNEPCONNADD(r2, 0x400442c8, &(0x7f0000000100)={0xffffffffffffffff, 0x866, 0x9, "3819ec0933292f609c729b71912ad0221a8df4076a5d8812aa697e0cac59731ad237a7981cb24a6041bdd88ebcab985440dcf9cd405953b6e539734f1a00bf1201ca7b9f523498f781753e3cc1565047bca4f8bad546cf25c07a44f042"}) 19:47:05 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0xfff, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) mq_timedsend(r1, &(0x7f00000000c0)="6b9f6778a3897de24049be1a648f3524e4efe00e8103ec99b942bf9cb8dad4c70799d982b0206a83036f15e58746f53f731e37234152be684af4f62c22e5562744895e9b", 0x44, 0x100000000, &(0x7f0000000180)={r2, r3+10000000}) close(r0) [ 547.594623] *** Guest State *** [ 547.610129] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 19:47:05 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) r1 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x7, 0x8000) setsockopt$packet_int(r1, 0x107, 0x10, &(0x7f00000000c0)=0x2, 0x4) 19:47:05 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 547.653789] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 547.714774] CR3 = 0x0000000000004000 19:47:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x800000000000000) 19:47:05 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = open(&(0x7f0000000000)='./file0\x00', 0x111000, 0x3) connect$bt_l2cap(r1, &(0x7f00000000c0)={0x1f, 0x8001, {0x1, 0x5, 0x7, 0x5, 0x546, 0x5}, 0x7, 0x2}, 0xe) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000100)={0x0, 0x7fff}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000180)={r2, 0xa2, 0x6, [0x1ff, 0xeaf, 0xffffffff7fffffff, 0x7, 0x5, 0x401]}, 0x14) close(r0) 19:47:05 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x5, 0x40000) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) [ 547.736601] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 547.775578] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 19:47:05 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000000c0)=[@mss={0x2, 0x4}, @mss={0x2, 0x3b}, @sack_perm, @mss={0x2, 0xffffffff00000001}, @sack_perm, @mss={0x2, 0x8}, @timestamp, @sack_perm, @sack_perm], 0x9) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000000)) r2 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0)=0xe, 0x80000) getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, &(0x7f0000000300), &(0x7f0000000380)=0x68) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r3, 0x6, 0x3, &(0x7f0000000240)=0x8, 0x4) [ 547.813974] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 547.832115] RFLAGS=0x00000006 DR7 = 0x0000000000000400 19:47:05 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) [ 547.906433] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 547.918940] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 19:47:05 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x40, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffff9c, 0x8933, &(0x7f00000000c0)={'team0\x00', 0x0}) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000100)={r2, @remote, @multicast1}, 0xc) close(r0) [ 547.949291] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 547.978413] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 548.029386] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 548.052988] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 548.088106] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 548.137675] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 548.160687] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 548.168884] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 548.177438] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 548.186134] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 548.192554] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 548.203685] Interruptibility = 00000000 ActivityState = 00000000 [ 548.209942] *** Host State *** [ 548.213163] RIP = 0xffffffff812047de RSP = 0xffff8881a12a7390 [ 548.219832] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 548.226554] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 548.234421] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 548.240312] CR0=0000000080050033 CR3=000000015527f000 CR4=00000000001426e0 [ 548.247394] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 548.254094] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 548.260131] *** Control State *** [ 548.263625] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 548.270289] EntryControls=0000d1ff ExitControls=002fefff [ 548.275789] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 548.282717] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 548.289412] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 548.296024] reason=80000021 qualification=0000000000000002 [ 548.302330] IDTVectoring: info=00000000 errcode=00000000 [ 548.307825] TSC Offset = 0xfffffed8e862f28b [ 548.312164] EPT pointer = 0x00000001ce22701e [ 548.343860] *** Guest State *** [ 548.347152] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 548.356205] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 548.365159] CR3 = 0x0000000000004000 [ 548.368883] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 548.368895] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 548.368903] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 548.368916] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 548.381995] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 548.400791] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 548.408878] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 548.416909] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 548.424919] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 548.432896] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 548.440930] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 548.448927] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 548.457001] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 548.465058] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 548.473037] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 548.481056] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 548.487495] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 548.494976] Interruptibility = 00000000 ActivityState = 00000000 [ 548.501215] *** Host State *** [ 548.504490] RIP = 0xffffffff812047de RSP = 0xffff88817e0d7390 [ 548.510512] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 548.516964] FSBase=00007f911e1f1700 GSBase=ffff8881dae00000 TRBase=fffffe0000003000 [ 548.524806] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 548.530676] CR0=0000000080050033 CR3=000000015527f000 CR4=00000000001426f0 [ 548.537754] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360 [ 548.544479] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 548.550534] *** Control State *** [ 548.554034] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 548.560714] EntryControls=0000d1ff ExitControls=002fefff [ 548.566206] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 548.573136] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 548.580364] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 548.587072] reason=80000021 qualification=0000000000000002 19:47:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$GIO_FONT(r1, 0x4b60, &(0x7f0000000000)=""/248) 19:47:06 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x10000, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000580)={0x0, 0x1c, &(0x7f0000000540)=[@in6={0xa, 0x4e20, 0x7, @mcast2, 0x74}]}, &(0x7f00000005c0)=0x10) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f0000000600)={0x59183bcd, 0xc2bc, 0xb, 0x5, 0x100000001, 0x3, 0x2, 0x1, r2}, &(0x7f0000000640)=0x20) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0xec, r3, 0x310, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x74}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffffffffffb}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x3}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x10001}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e20}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x2b}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0x5c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3b}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x73}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x29, 0x14}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x3}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) fcntl$setstatus(r0, 0x4, 0x4000) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000001c0)='/selinux/checkreqprot\x00', 0x8000, 0x0) r4 = memfd_create(&(0x7f0000000340)='trusted\x00', 0x4) socket$can_raw(0x1d, 0x3, 0x1) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) sendmsg$IPVS_CMD_DEL_DAEMON(r4, &(0x7f0000000500)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)={0xc8, r3, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [], @loopback}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x401}]}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2f}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_DAEMON={0x58, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bond_slave_0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20008014}, 0x40) close(r0) 19:47:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f00000000) 19:47:06 executing program 3: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = dup3(r0, r0, 0x80000) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000140)={&(0x7f0000000100)='./file0\x00', r1}, 0x10) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000080), 0xc, 0x0}, 0x20000000) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000000)="d8b8f4e12d3411f113481afef4cf0e66438d4f11223e7dcdd42bbc6a2766fb740721c1ef") 19:47:06 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:06 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x401, 0x0) r1 = syz_open_dev$vbi(&(0x7f00000017c0)='/dev/vbi#\x00', 0x1, 0x2) sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x40001) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x2a2480, 0x0) setsockopt$IP_VS_SO_SET_DELDEST(r2, 0x0, 0x488, &(0x7f0000000100)={{0x6, @dev={0xac, 0x14, 0x14, 0x1c}, 0x4e20, 0x3, 'dh\x00', 0x8, 0x6, 0x40}, {@multicast2, 0x4e24, 0x2002, 0x6, 0x4, 0x7}}, 0x44) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000240)={0xffffffffffffffff}, 0x113, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r2, &(0x7f00000002c0)={0x15, 0x110, 0xfa00, {r3, 0x6, 0x0, 0x0, 0x0, @ib={0x1b, 0x9, 0x8, {"c0515de2bf697a9d22a9e8d593e66e2b"}, 0x80, 0x4, 0x4}, @in={0x2, 0x4e24, @local}}}, 0x118) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000000)={0x6400003e, 0x23bb, 0xb}) r4 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) close(r4) [ 548.593413] IDTVectoring: info=00000000 errcode=00000000 [ 548.598927] TSC Offset = 0xfffffed8e862f28b [ 548.603253] EPT pointer = 0x00000001ce22701e 19:47:06 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:06 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) ioctl$sock_inet_SIOCRTMSG(r1, 0x890d, &(0x7f00000000c0)={0x0, {0x2, 0x4e20, @rand_addr=0xffffffff}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xe}}, {0x2, 0x4e20, @multicast2}, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x40, 0xfffffffffffffff8, 0x1ff}) close(r0) 19:47:06 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000300)='/dev/dri/card#\x00', 0x20000004403, 0x4000) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockname(r1, &(0x7f0000000080)=@pptp={0x18, 0x2, {0x0, @multicast1}}, &(0x7f0000000100)=0x80) r2 = syz_open_dev$adsp(&(0x7f0000000140)='/dev/adsp#\x00', 0x2, 0x28800) write$P9_RATTACH(r2, &(0x7f00000002c0)={0x14, 0x69, 0x1, {0x46, 0x2}}, 0x14) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x71e, 0x7, 0x100, 0x5}, 0x14) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000), 0xc, 0x0}, 0x4005) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_GET_STATS(r0, 0x80f86406, &(0x7f0000000240)=""/128) close(r0) [ 548.773274] *** Guest State *** [ 548.788529] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 548.805307] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 548.830716] CR3 = 0x0000000000004000 [ 548.845996] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 19:47:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000000000000) [ 548.878224] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 548.907793] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 19:47:06 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x284200, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) r2 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) write$evdev(r2, &(0x7f0000000240)=[{{0x0, 0x7530}, 0x1, 0x5, 0x6}, {{r3, r4/1000+10000}, 0x1f, 0xfff, 0x40}, {{}, 0x3, 0x3, 0xa05}, {{r5, r6/1000+30000}, 0x15, 0x6, 0x1}], 0x60) bind$nfc_llcp(r2, &(0x7f00000000c0)={0x27, 0x0, 0x0, 0x5, 0x95, 0x7fff, "d913471239bf70d32b4f5b9042b362fee8df83567e147af6a22aacc05c74c6643c6b08dc3e15856748b1fb7030aecd3eb0306da7f4db9af9aa6afd7ac2e760", 0xd}, 0x60) close(r0) [ 548.924481] RFLAGS=0x00000006 DR7 = 0x0000000000000400 19:47:06 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000200)={&(0x7f0000000000), 0xc, 0x0}, 0x8004) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x300000c, 0x7, 0x4100) close(r1) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000080)={0x3ff, 0xa, 0x0, 0x10000, 0x0}, &(0x7f0000000100)=0x10) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000140)=@assoc_value={r2, 0x22}, 0x8) [ 548.960754] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 548.995994] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 549.041573] mmap: syz-executor2 (21542) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 549.067856] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.084098] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 549.104746] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.128954] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.150986] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.187081] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 549.209955] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 549.223885] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 549.232032] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 549.251382] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 549.261830] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 549.270652] Interruptibility = 00000000 ActivityState = 00000000 [ 549.277399] *** Host State *** [ 549.280737] RIP = 0xffffffff812047de RSP = 0xffff88818084f390 [ 549.287630] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 549.294484] FSBase=00007f911e233700 GSBase=ffff8881daf00000 TRBase=fffffe0000033000 [ 549.302437] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 549.308795] CR0=0000000080050033 CR3=00000001ce85b000 CR4=00000000001426e0 [ 549.316250] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 549.323064] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 549.329556] *** Control State *** [ 549.333162] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 549.340406] EntryControls=0000d1ff ExitControls=002fefff [ 549.346247] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 549.353398] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 549.360482] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 549.367550] reason=80000021 qualification=0000000000000002 [ 549.374271] IDTVectoring: info=00000000 errcode=00000000 [ 549.379860] TSC Offset = 0xfffffed8463f5886 [ 549.384613] EPT pointer = 0x00000001b137b01e 19:47:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)={0x81, 0x7fff, 0x1, 0x0, 0x40, 0x7ff, 0x27f1deaa, 0x6, 0x7fffffff, 0x100000000, 0xff, 0x4, 0x0, 0x8, 0x3, 0x4c, 0x200, 0x1, 0x5}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r3 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r3, 0x8935, &(0x7f0000000000)={'bridge_slave_0\x00', 0x2aad}) dup(0xffffffffffffffff) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:47:07 executing program 5: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000500)={0x0, 0x80000}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) getsockopt$inet6_dccp_buf(0xffffffffffffffff, 0x21, 0x80, &(0x7f00000002c0)=""/38, &(0x7f0000000300)=0x26) gettid() epoll_pwait(r0, &(0x7f0000000480)=[{}, {}, {}], 0x3, 0x0, 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getuid() keyctl$invalidate(0x15, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f00000005c0)={"626f6e645f736c6176655f30000e00", {0x2, 0x0, @loopback}}) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"626f6e645f736c6176655f3000fd00", {0x2, 0x0, @local}}) 19:47:07 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x1, 0x0) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080), 0xc, 0x0}, 0x0) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) close(r0) r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f00000000c0)={0x7, 0x6}) [ 549.588699] *** Guest State *** [ 549.592146] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 549.604863] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 549.624921] CR3 = 0x0000000000004000 [ 549.628666] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 549.643761] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 549.650374] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 549.663614] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 549.669776] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 549.676984] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 549.693694] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.706244] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 549.714424] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.722533] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.730749] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 549.738950] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 549.747129] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 549.755294] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 549.763424] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 549.771642] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 549.778260] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 549.785909] Interruptibility = 00000000 ActivityState = 00000000 [ 549.792278] *** Host State *** [ 549.796521] RIP = 0xffffffff812047de RSP = 0xffff8881b9d0f390 [ 549.802633] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 549.809220] FSBase=00007f911e233700 GSBase=ffff8881dae00000 TRBase=fffffe0000033000 [ 549.817218] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 549.823254] CR0=0000000080050033 CR3=00000001a9fb8000 CR4=00000000001426f0 [ 549.830466] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360 [ 549.837323] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 549.843568] *** Control State *** [ 549.847183] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 549.854213] EntryControls=0000d1ff ExitControls=002fefff [ 549.859842] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 549.866963] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 549.873847] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 549.880573] reason=80000021 qualification=0000000000000002 [ 549.887107] IDTVectoring: info=00000000 errcode=00000000 [ 549.892769] TSC Offset = 0xfffffed7d9a80202 [ 549.897340] EPT pointer = 0x000000018287501e [ 552.184239] Kernel panic - not syncing: corrupted stack end detected inside scheduler [ 552.192590] CPU: 0 PID: 7 Comm: kworker/u4:0 Not tainted 4.20.0-rc6+ #151 [ 552.199517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 552.208912] Workqueue: writeback wb_workfn (flush-8:0) [ 552.214178] Call Trace: [ 552.216759] dump_stack+0x244/0x39d [ 552.220377] ? dump_stack_print_info.cold.1+0x20/0x20 [ 552.225581] panic+0x2ad/0x55c [ 552.228759] ? add_taint.cold.5+0x16/0x16 [ 552.232897] ? lock_downgrade+0x900/0x900 [ 552.237032] ? lock_downgrade+0x900/0x900 [ 552.241161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.246701] ? check_preemption_disabled+0x48/0x280 [ 552.251700] ? check_preemption_disabled+0x3a/0x280 [ 552.256699] __schedule+0x21c6/0x21d0 [ 552.260494] ? do_raw_spin_trylock+0x270/0x270 [ 552.265060] ? lock_pin_lock+0x350/0x350 [ 552.269118] ? kthread_data+0x58/0xc0 [ 552.272914] ? __sched_text_start+0x8/0x8 [ 552.277067] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 552.282153] ? try_to_wake_up+0x11c/0x1440 [ 552.286374] ? lock_acquire+0x1ed/0x520 [ 552.290341] ? mem_cgroup_oom_control_write+0x100/0x100 [ 552.295690] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.301211] ? check_preemption_disabled+0x48/0x280 [ 552.306213] ? ___preempt_schedule_notrace+0x16/0x31 [ 552.311304] preempt_schedule_notrace+0x70/0x140 [ 552.316045] ___preempt_schedule_notrace+0x16/0x31 [ 552.320959] rcu_is_watching+0x23/0x30 [ 552.324847] rcu_read_lock+0x43/0x70 [ 552.328556] mem_cgroup_iter+0x208/0x1160 [ 552.332685] ? wake_up_process+0x10/0x20 [ 552.336760] ? mem_cgroup_nr_lru_pages+0x80/0x80 [ 552.341498] ? find_held_lock+0x36/0x1c0 [ 552.345545] ? __queue_work+0x671/0x1440 [ 552.349607] ? lock_downgrade+0x900/0x900 [ 552.353737] ? check_flush_dependency+0x410/0x410 [ 552.358564] ? kasan_check_read+0x11/0x20 [ 552.362721] ? do_raw_spin_unlock+0xa7/0x330 [ 552.367129] ? do_raw_spin_trylock+0x270/0x270 [ 552.371694] ? ___preempt_schedule+0x16/0x18 [ 552.376117] ? _raw_spin_unlock+0x3f/0x50 [ 552.380248] shrink_node+0x340/0x16b0 [ 552.384034] ? mem_cgroup_split_huge_fixup+0x1b0/0x1b0 [ 552.389309] ? shrink_node_memcg+0x18f0/0x18f0 [ 552.393904] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 552.398474] ? trace_hardirqs_on+0xbd/0x310 [ 552.402776] ? vmpressure+0x271/0x340 [ 552.406564] ? do_raw_spin_trylock+0x270/0x270 [ 552.411138] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 552.416658] ? __cpuset_node_allowed+0x19b/0x660 [ 552.421398] ? cpuset_nodemask_valid_mems_allowed+0x90/0x90 [ 552.427113] ? vmpressure+0x1a2/0x340 [ 552.430911] do_try_to_free_pages+0x3e7/0x1290 [ 552.435473] ? zap_class+0x640/0x640 [ 552.439172] ? shrink_node+0x16b0/0x16b0 [ 552.443214] ? __lock_is_held+0xb5/0x140 [ 552.447260] try_to_free_pages+0x4d0/0xb90 [ 552.451482] ? do_try_to_free_pages+0x1290/0x1290 [ 552.456314] ? kasan_check_read+0x11/0x20 [ 552.460441] ? psi_memstall_enter+0x24f/0x2c0 [ 552.464916] ? trace_hardirqs_off_caller+0x310/0x310 [ 552.470013] ? lock_pin_lock+0x350/0x350 [ 552.474059] ? _raw_spin_unlock_irq+0x60/0x80 [ 552.478538] ? psi_memstall_enter+0x24f/0x2c0 [ 552.483040] ? psi_memstall_tick+0x230/0x230 [ 552.487438] __alloc_pages_slowpath+0xa48/0x2de0 [ 552.492233] ? compat_start_thread+0x80/0x80 [ 552.496631] ? kasan_check_write+0x14/0x20 [ 552.500853] ? preempt_notifier_register+0x200/0x200 [ 552.505938] ? __switch_to_asm+0x34/0x70 [ 552.509978] ? __switch_to_asm+0x40/0x70 [ 552.514028] ? warn_alloc+0x120/0x120 [ 552.517804] ? __switch_to_asm+0x40/0x70 [ 552.521842] ? __switch_to_asm+0x40/0x70 [ 552.525915] ? __switch_to_asm+0x34/0x70 [ 552.529970] ? __switch_to_asm+0x40/0x70 [ 552.534023] ? __lock_acquire+0x62f/0x4c20 [ 552.538239] ? zap_class+0x640/0x640 [ 552.541935] ? zap_class+0x640/0x640 [ 552.545632] ? zap_class+0x640/0x640 [ 552.549327] ? zap_class+0x640/0x640 [ 552.553043] ? check_preemption_disabled+0x48/0x280 [ 552.558056] ? zap_class+0x640/0x640 [ 552.561748] ? check_preemption_disabled+0x48/0x280 [ 552.566750] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 552.572266] ? should_fail+0x22d/0xd01 [ 552.576140] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 552.581223] ? find_held_lock+0x36/0x1c0 [ 552.585267] ? zap_class+0x640/0x640 [ 552.588966] ? find_get_entry+0xa87/0x1120 [ 552.593197] ? lock_downgrade+0x900/0x900 [ 552.597327] ? check_preemption_disabled+0x48/0x280 [ 552.602326] ? __lock_is_held+0xb5/0x140 [ 552.606392] ? perf_trace_sched_process_exec+0x860/0x860 [ 552.611870] ? ext4_validate_block_bitmap+0x65b/0x10c0 [ 552.617139] ? __might_sleep+0x95/0x190 [ 552.621103] __alloc_pages_nodemask+0xad8/0xea0 [ 552.625753] ? __alloc_pages_slowpath+0x2de0/0x2de0 [ 552.630751] ? kasan_check_write+0x14/0x20 [ 552.634992] ? __brelse+0x104/0x180 [ 552.638612] ? block_commit_write+0x30/0x30 [ 552.642921] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 552.647923] ? ext4_mb_init_cache+0xf82/0x22d0 [ 552.652514] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 552.658036] alloc_pages_current+0x173/0x350 [ 552.662445] __page_cache_alloc+0x38c/0x5c0 [ 552.666751] ? generic_perform_write+0x6a0/0x6a0 [ 552.671485] ? ext4_mb_generate_from_pa+0x470/0x470 [ 552.676484] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 552.682002] ? mark_page_accessed+0xcaf/0x2040 [ 552.686591] pagecache_get_page+0x396/0xf00 [ 552.690898] ? add_to_page_cache_lru+0xdb0/0xdb0 [ 552.695639] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.701161] ? zap_class+0x640/0x640 [ 552.704872] ? print_usage_bug+0xc0/0xc0 [ 552.708914] ? __lock_acquire+0x62f/0x4c20 [ 552.713134] ? __lock_is_held+0xb5/0x140 [ 552.717176] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 552.722707] ? unlock_page+0x2c2/0x4c0 [ 552.726591] ? wake_up_page_bit+0x6f0/0x6f0 [ 552.730895] ? perf_trace_sched_process_exec+0x860/0x860 [ 552.736333] ? __might_sleep+0x95/0x190 [ 552.740297] ext4_mb_load_buddy_gfp+0xa80/0x1e70 [ 552.745037] ? print_usage_bug+0xc0/0xc0 [ 552.749084] ? ext4_mb_good_group+0x730/0x730 [ 552.753565] ? zap_class+0x640/0x640 [ 552.757277] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.762819] ? check_preemption_disabled+0x48/0x280 [ 552.767822] ? zap_class+0x640/0x640 [ 552.771520] ? print_usage_bug+0xc0/0xc0 [ 552.775567] ? __read_once_size_nocheck.constprop.8+0x10/0x10 [ 552.781432] ? ret_from_fork+0x3a/0x50 [ 552.785313] ? mark_held_locks+0xc7/0x130 [ 552.789442] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 552.794543] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 552.799627] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 552.805144] ? zap_class+0x640/0x640 [ 552.808835] ? trace_hardirqs_on+0xbd/0x310 [ 552.813146] ? kasan_check_read+0x11/0x20 [ 552.817275] ? ext4_mb_use_best_found+0x9b0/0x9b0 [ 552.822102] ? unwind_next_frame+0x3e/0x50 [ 552.826320] ? __lock_is_held+0xb5/0x140 [ 552.830380] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 552.835571] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 552.840566] ? ext4_mb_good_group+0x551/0x730 [ 552.845044] ? ext4_writepages+0x253a/0x41a0 [ 552.849437] ext4_mb_regular_allocator+0x634/0x1590 [ 552.854447] ? ext4_mb_complex_scan_group+0xb10/0xb10 [ 552.859634] ? ext4_mb_generate_buddy+0x960/0x960 [ 552.864468] ? rcu_read_lock_sched_held+0x14f/0x180 [ 552.869465] ? kmem_cache_alloc+0x33a/0x730 [ 552.873789] ext4_mb_new_blocks+0x1de3/0x4840 [ 552.878266] ? kasan_slab_free+0xe/0x10 [ 552.882225] ? kmem_cache_free+0x83/0x290 [ 552.886375] ? print_usage_bug+0xc0/0xc0 [ 552.890418] ? ext4_writepages+0x253a/0x41a0 [ 552.894807] ? do_writepages+0x9a/0x1a0 [ 552.898765] ? __writeback_single_inode+0x20a/0x1660 [ 552.903849] ? writeback_sb_inodes+0x71f/0x1210 [ 552.908500] ? __writeback_inodes_wb+0x1b9/0x340 [ 552.913253] ? wb_writeback+0xa73/0xfc0 [ 552.917208] ? wb_workfn+0xee9/0x1790 [ 552.921027] ? process_one_work+0xc90/0x1c40 [ 552.925419] ? worker_thread+0x17f/0x1390 [ 552.929560] ? ext4_discard_preallocations+0x1900/0x1900 [ 552.934995] ? zap_class+0x640/0x640 [ 552.938695] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.944241] ? check_preemption_disabled+0x48/0x280 [ 552.949235] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 552.954751] ? check_preemption_disabled+0x48/0x280 [ 552.959763] ? __lock_is_held+0xb5/0x140 [ 552.963827] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 552.969342] ? ext4_mb_new_blocks+0x95d/0x4840 [ 552.973914] ? ext4_discard_preallocations+0x1900/0x1900 [ 552.979350] ? unwind_next_frame.part.7+0x1ae/0x9e0 [ 552.984345] ? unwind_dump+0x190/0x190 [ 552.988212] ? unwind_dump+0x190/0x190 [ 552.992090] ? unwind_next_frame+0x3e/0x50 [ 552.996312] ? __save_stack_trace+0x7d/0xf0 [ 553.000620] ? ret_from_fork+0x3a/0x50 [ 553.004494] ? save_stack+0xa9/0xd0 [ 553.008124] ? save_stack+0x43/0xd0 [ 553.011731] ? kasan_kmalloc+0xc7/0xe0 [ 553.015601] ? __kmalloc+0x15b/0x760 [ 553.019300] ? ext4_find_extent+0x757/0x9b0 [ 553.023616] ? ext4_ext_map_blocks+0x291/0x48f0 [ 553.028267] ? ext4_map_blocks+0x8f7/0x1b50 [ 553.032567] ? ext4_writepages+0x253a/0x41a0 [ 553.037016] ? do_writepages+0x9a/0x1a0 [ 553.040990] ? __writeback_single_inode+0x20a/0x1660 [ 553.046084] ? writeback_sb_inodes+0x71f/0x1210 [ 553.050733] ? __writeback_inodes_wb+0x1b9/0x340 [ 553.055468] ? wb_writeback+0xa73/0xfc0 [ 553.059419] ? wb_workfn+0xee9/0x1790 [ 553.063197] ? process_one_work+0xc90/0x1c40 [ 553.067581] ? worker_thread+0x17f/0x1390 [ 553.071723] ? kthread+0x35a/0x440 [ 553.075267] ? ret_from_fork+0x3a/0x50 [ 553.079195] ext4_new_meta_blocks+0x30a/0x520 [ 553.083694] ? ext4_should_retry_alloc+0x220/0x220 [ 553.088609] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.094129] ext4_ext_insert_extent+0xb0f/0x45a0 [ 553.098879] ? __lock_is_held+0xb5/0x140 [ 553.102943] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.108816] ? ext4_ext_shift_extents+0x1190/0x1190 [ 553.113819] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.119336] ? ext4_ext_search_right+0x2e1/0xb10 [ 553.124091] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.129609] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 553.134612] ext4_ext_map_blocks+0x2b1c/0x48f0 [ 553.139186] ? ext4_ext_release+0x10/0x10 [ 553.143318] ? zap_class+0x640/0x640 [ 553.147022] ? zap_class+0x640/0x640 [ 553.150721] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.156262] ? check_preemption_disabled+0x48/0x280 [ 553.161286] ? lock_acquire+0x1ed/0x520 [ 553.165262] ? ext4_map_blocks+0x88f/0x1b50 [ 553.169572] ? lock_release+0xa00/0xa00 [ 553.173538] ? perf_trace_sched_process_exec+0x860/0x860 [ 553.178974] ? ext4_es_cache_extent+0x6a0/0x6a0 [ 553.183655] ? down_write+0x8a/0x130 [ 553.187349] ? ext4_map_blocks+0x88f/0x1b50 [ 553.191655] ? down_read+0x120/0x120 [ 553.195357] ext4_map_blocks+0x8f7/0x1b50 [ 553.199486] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.205004] ? check_preemption_disabled+0x48/0x280 [ 553.210018] ? ext4_issue_zeroout+0x190/0x190 [ 553.214500] ? __lock_is_held+0xb5/0x140 [ 553.218551] ext4_writepages+0x253a/0x41a0 [ 553.222777] ? ext4_mark_inode_dirty+0xb20/0xb20 [ 553.227518] ? print_usage_bug+0xc0/0xc0 [ 553.231643] ? __cpu_to_node+0x7d/0xa0 [ 553.235546] ? __update_load_avg_blocked_se+0x690/0x690 [ 553.240896] ? __lock_acquire+0x62f/0x4c20 [ 553.245137] ? print_usage_bug+0xc0/0xc0 [ 553.249182] ? __lock_acquire+0x62f/0x4c20 [ 553.253398] ? mark_held_locks+0x130/0x130 [ 553.257633] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 553.263151] ? __ext4_get_inode_loc+0x470/0x1330 [ 553.267895] ? mark_held_locks+0x130/0x130 [ 553.272114] ? zap_class+0x640/0x640 [ 553.275810] ? kasan_check_write+0x14/0x20 [ 553.280028] ? __brelse+0x104/0x180 [ 553.283636] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.289196] ? check_preemption_disabled+0x48/0x280 [ 553.294195] ? ext4_mark_inode_dirty+0xb20/0xb20 [ 553.298932] do_writepages+0x9a/0x1a0 [ 553.302710] ? ext4_mark_inode_dirty+0xb20/0xb20 [ 553.307447] ? do_writepages+0x9a/0x1a0 [ 553.311406] __writeback_single_inode+0x20a/0x1660 [ 553.316318] ? __mark_inode_dirty+0x1510/0x1510 [ 553.320965] ? find_held_lock+0x36/0x1c0 [ 553.325020] ? find_held_lock+0x36/0x1c0 [ 553.329100] ? wbc_attach_and_unlock_inode+0x5c0/0xa30 [ 553.334357] ? lock_downgrade+0x900/0x900 [ 553.338484] ? find_held_lock+0x13f/0x1c0 [ 553.342624] ? kasan_check_read+0x11/0x20 [ 553.346757] ? do_raw_spin_unlock+0xa7/0x330 [ 553.351161] ? do_raw_spin_trylock+0x270/0x270 [ 553.355741] ? __lock_is_held+0xb5/0x140 [ 553.359791] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 553.365314] ? wbc_attach_and_unlock_inode+0x675/0xa30 [ 553.370571] ? __writeback_single_inode+0x1660/0x1660 [ 553.375746] writeback_sb_inodes+0x71f/0x1210 [ 553.380229] ? wbc_detach_inode+0x940/0x940 [ 553.384537] ? lock_release+0xa00/0xa00 [ 553.388500] ? down_read_trylock+0xda/0x140 [ 553.392806] ? trylock_super+0x22/0x110 [ 553.396762] ? downgrade_write+0x270/0x270 [ 553.400977] ? zap_class+0x640/0x640 [ 553.404699] ? up_read_non_owner+0x100/0x100 [ 553.409092] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 553.414612] __writeback_inodes_wb+0x1b9/0x340 [ 553.419178] ? writeback_sb_inodes+0x1210/0x1210 [ 553.423918] ? __lock_is_held+0xb5/0x140 [ 553.427964] wb_writeback+0xa73/0xfc0 [ 553.431748] ? writeback_inodes_wb.constprop.50+0x330/0x330 [ 553.437444] ? widen_string+0xe0/0x2e0 [ 553.441317] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 553.446492] ? print_usage_bug+0xc0/0xc0 [ 553.450536] ? string+0x225/0x2d0 [ 553.453970] ? widen_string+0x2e0/0x2e0 [ 553.457926] ? mark_held_locks+0xc7/0x130 [ 553.462058] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 553.467056] ? find_next_bit+0x104/0x130 [ 553.471102] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 553.476124] ? find_next_bit+0x104/0x130 [ 553.480176] ? cpumask_next+0x41/0x50 [ 553.483960] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 553.488955] ? get_nr_dirty_inodes+0xd6/0x130 [ 553.493439] ? __local_bh_enable_ip+0x160/0x260 [ 553.498094] ? get_nr_dirty_pages+0x17c/0x1f0 [ 553.502586] ? _raw_spin_unlock_bh+0x30/0x40 [ 553.506989] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 553.512014] ? wb_split_bdi_pages.isra.29+0x134/0x1b0 [ 553.517186] ? wb_wait_for_completion+0x2d0/0x2d0 [ 553.522017] ? wb_workfn+0x521/0x1790 [ 553.525807] ? __local_bh_enable_ip+0x160/0x260 [ 553.530458] wb_workfn+0xee9/0x1790 [ 553.534068] ? __lock_acquire+0x62f/0x4c20 [ 553.538293] ? inode_wait_for_writeback+0x40/0x40 [ 553.543118] ? mark_held_locks+0x130/0x130 [ 553.547336] ? mark_held_locks+0x130/0x130 [ 553.551550] ? set_next_entity+0x493/0xc70 [ 553.555769] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.561292] ? update_load_avg+0x2470/0x2470 [ 553.565691] ? pick_next_task_fair+0xa05/0x1b30 [ 553.570354] ? debug_object_deactivate+0x2eb/0x450 [ 553.575265] ? lock_downgrade+0x900/0x900 [ 553.579401] ? find_held_lock+0x36/0x1c0 [ 553.583444] ? zap_class+0x640/0x640 [ 553.587145] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 553.592665] ? check_preemption_disabled+0x48/0x280 [ 553.597667] ? __lock_is_held+0xb5/0x140 [ 553.601714] process_one_work+0xc90/0x1c40 [ 553.605928] ? mark_held_locks+0x130/0x130 [ 553.610149] ? pwq_dec_nr_in_flight+0x4a0/0x4a0 [ 553.614797] ? __switch_to_asm+0x40/0x70 [ 553.618849] ? __switch_to_asm+0x34/0x70 [ 553.622905] ? __switch_to_asm+0x40/0x70 [ 553.626970] ? __switch_to_asm+0x34/0x70 [ 553.631013] ? __switch_to_asm+0x40/0x70 [ 553.635052] ? __switch_to_asm+0x34/0x70 [ 553.639106] ? __switch_to_asm+0x40/0x70 [ 553.643145] ? __switch_to_asm+0x34/0x70 [ 553.647187] ? __switch_to_asm+0x40/0x70 [ 553.651229] ? __schedule+0x8d7/0x21d0 [ 553.655109] ? zap_class+0x640/0x640 [ 553.658804] ? lock_downgrade+0x900/0x900 [ 553.662939] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 553.667522] ? lock_acquire+0x1ed/0x520 [ 553.671492] ? worker_thread+0x3e0/0x1390 [ 553.675642] ? kasan_check_read+0x11/0x20 [ 553.679786] ? do_raw_spin_lock+0x14f/0x350 [ 553.684106] ? kasan_check_read+0x11/0x20 [ 553.688252] ? rwlock_bug.part.2+0x90/0x90 [ 553.692465] ? trace_hardirqs_on+0x310/0x310 [ 553.696875] worker_thread+0x17f/0x1390 [ 553.700924] ? __switch_to_asm+0x34/0x70 [ 553.704974] ? process_one_work+0x1c40/0x1c40 [ 553.709456] ? __sched_text_start+0x8/0x8 [ 553.713594] ? __kthread_parkme+0xce/0x1a0 [ 553.717810] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 553.722891] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 553.727976] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 553.732539] ? trace_hardirqs_on+0xbd/0x310 [ 553.736840] ? kasan_check_read+0x11/0x20 [ 553.740970] ? __kthread_parkme+0xce/0x1a0 [ 553.745185] ? trace_hardirqs_off_caller+0x310/0x310 [ 553.750305] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 553.755391] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 553.760910] ? __kthread_parkme+0xfb/0x1a0 [ 553.765132] ? process_one_work+0x1c40/0x1c40 [ 553.769609] kthread+0x35a/0x440 [ 553.772955] ? kthread_stop+0x900/0x900 [ 553.776927] ret_from_fork+0x3a/0x50 [ 553.781919] Kernel Offset: disabled [ 553.785768] Rebooting in 86400 seconds..