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"]}, @generic='k', @typed={0x8, 0x70, @pid=r6}]}, 0x2634}, {&(0x7f0000005800)={0xa0, 0x32, 0x900, 0x70bd2c, 0x25dfdbff, "", [@generic="dbd56e5964ff07cf62de90814a2c0c99fd498f", @generic="aeb9886fe4e32f1b8623bc30a19f91f22d18149f5ff8e4775c771fc493eac9e9f632c24954054414c248b13a1c44f358e292ba07bef1b1802ea549547b32bfc4eb55b0093cb58d16c3fad10e9a4baf46d956f7807d26deb773aefec67844fa4a2d3d877ce67dab2faed5b954ef6fc4234aaf079e72eda1dcb6b7301f"]}, 0xa0}, {&(0x7f00000058c0)={0x1534, 0x24, 0x200, 0x70bd2a, 0x25dfdbfb, "", [@nested={0x12a4, 0x26, [@generic="176f3f8d6ff960636852b77b0926d5c5e80cb2de58d67ad2e1273ca7dbb1639206cc26b20cba738169c03a5759b9461993a452745d5fac7b932e7321e194b224a43890301cb91525aa84b9b76793afd1a5ed9bdf4115fc434f7ffe5c98c3d58cdafa2287b10c3d370f4ffc4f02315b96dfa1712e6902cc81298929c03f3e28ef51649f502de820e62d008b6006f7b849059ceedabedc6fa51d7324037e1f5dab9d2b019fce6348b69c4e5467fb85cf875c93f5835144b4c624444b5d514919bc25990317aa95fb11f4b0b8f23b19013e6af051769a7e5e92582fb602814136f6ae09d1a5fbcbd35899d056e85abde24117cd13de5786d6c7", @generic="0367ddc22cc75fa29f33ee9fad458c6614021acff7ab5ee8ccf0b6ac5de49c135fb581d5d996f998f4434518a75967f8c43f1ea02f6b7c7155c94396db9d4ca311fe9a37b8220ebf63598966d4dbe69180c069041354964527a552e9816033ef4c57d4329e", @generic="543c2081feaf613e84ad64cb085960e738d783f5414f4c5ca43bccc63acdaef26e35f945a51dd4cf4364a047c9e45acd1382d077d048ad88cc18924dcc25da0b473fbee33e08fb03a54daa2bf6a9e6ba2d034a12023e0b323797170cf2438d3494144372cddac3a44441c8a690dbea2dede1948c2dd33e05be364fdb49f0a50c9669f261f04d60eea8b40170db3f02850364bfb72909a20d0c7671", @generic="25675f8e9d602dbe14ba8be11e51702b8dd7e7", @generic="dc34c172e4bf31c9a5b1004d589113005c65820f010191378d0ab6e6", @generic="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", @generic="0d2b28d5edfde83e3dd9bbdb51d0bffe4b6ca0a4c7049795efa32a450d13b688373a59dd551e482d64b7078c0675ff890fc658af7b524b8dc17827208f5a3b0c1229e7ab7ef4b66bad76b1fa51ac9318070b2a31f4495f56d113a55590e208e99b12141f7272c751200456e3efcd95c9bf18c8ee4f9411a47b"]}, @generic="0bbd3a8154280694ac0b6efe7574ed583e6560255a67c322c01dc8882bea9cb012244230e30b76583a4389585ec96d2c9de5c1b86e61c40e81c1c0eacd7b2ada90716408174d4cd523b2b94275304fc811627d5a481a3f943891995f527d2eec1646969059fe011692ef69f7ea8996fd33e1a5d8d474a9cab98c6d153a4a847f279ca9650cf2519513971dcf5ea8aa3f28274027a3b1511d4efe1fa45eb0f3a1bae96f2fef", @nested={0x70, 0x33, [@typed={0x4, 0x10}, @generic="23733b22242298190626c23a08c6c8665a4dd183fc4bf4f502773358d62b", @generic="9534b4b23ac46e94b2af0597568432c6fb9e229a0eb06057ab69899d69ba0abbbb3d3b6abc533bc144f430e081346550f2ea", @typed={0x8, 0x61, @uid=r2}, @typed={0x8, 0x3, @u32}, @typed={0x8, 0xf, @pid=r7}]}, @nested={0xdc, 0x36, [@generic="270de3fd8fefdd846909aca56b9920534875e4d73f7e60b182b432ee8b849d15989b23070af06d2fd95de792ace6106bc6554c7abe5ec12fcb77e30e6b65752bc1069ad10eeaa276254079266d242d75ffa2ba96f9dbcf41142590accd4937afcb34b115d65b950fdcbaa16a006bc5130ccc36970f89d0a6ed9ce5aa3623a1222108eb6b16a04a5b1d2e011efdeb655b49ac8632e26b023a76d8cf7baa587559201dd86531411568ad870de70473b085300f397ab49c2d45285c0b09b1d82345ebba350187d1cbcd721148c2b23af3cc1a9371bf467b6d43"]}, @generic="81443e988039d9fd82a79bb99a34fc4ea42da645d65e06168551957a4da6ddf1882e6f142b1662ffa1736b2216246e53c75a3aafcbf1f0fb3392a194588351afb762a61b757c4f0990e2ae7cd5266f0d7153ebaaf77c5bbde325d2789919760ef9b6ee17f4763dae87bd48b620f838a480", @generic="e38c85151c92cfd46ff14f1b0a98d12d45c34c78dd48b21e457164eea20f"]}, 0x1534}, {&(0x7f0000006e00)={0x464, 0x34, 0x10, 0x70bd26, 0x25dfdbfe, "", [@generic="cad3a5f883b584a5a1ae29bba650714d9a4299caff3b61e22117f7a3ea80180a713b266450e57319a029c8d074a3a095f23d3504a86b262fc1becb26b044ee28fd7c627b789de9f1e54d6ae6d5d20dd24056acc80d44d39efb5ff57e90328d82b10d5558d26f85cdca310256676ab46b11b51b1ca71aac13a27b13233c1f7582c2cb883edc262cd2dfab8f31168eeb8c35e42c1414d5", @nested={0x3bc, 0x88, [@typed={0x4, 0x53}, @generic="223f85dc0d63f307a166b03512c2752446f265d4a43e5258b368ce90d0c54967000545f07083a50b70533e799ef486a3b82475baa723b75ba963a0f9a4527926ac613c1aed12d2d9149f9545739d549ec103c3735e88a12748a84b321392067e0107bd7c319be18f9af9dac51fc81b4de81c501407313b7599414f8772cee541da994b4cbb871282f95fc12ebb0b2a339587b06ccb894dbed44f58c3146cf5", @generic="65f714699302c6d3bb18f3044a554b301cb959733817cb47baac6d76094df4e952ab5a163e976d3b1c0ddbb2357506ed9bc4a48b6ab849ed42091eab2dec47820a2fb7c3535a09aa993e1aa25dc924e2a97ffdf42aa7825783871bf780f0db50efe7c302a989976aa1c3771c1dc6e5f89e8bf292b48981ee0c8d279bf1e4397108c8d345b1bd7aca8d3de4971f8417cbf635eca41546a0c9d68f2855562cbe2da1c4c4380666d77f8a100616a565d1a4dd98d8d038a551aeb90b536d5342b5b6790021e546eade68a184d79487329ce49443", @typed={0xf0, 0x7b, @binary="7b2ddf9d8ce479ed94deb3b47514dd31e659635615a52f823de0ecccd673bcc130b499be4f9410c73f8f7fdc5e2cf8d1ea3e6930cab96216b84a795dc61cc0f1a6bc7db7fcf33d37522d2adbc36419f4ce0cf4c4e7817a8e7ce155bd36a382aa19a7828d02da8f1223701c04c7ead2dd3036ab08ac1a3fccf8f39b7f8b8488329c31b5e9d5aabd38eb56f57ee61076102269d2a1f4195b7cf91d386bf5797384309a63af410eaf5ba42e02af093bbf2d04aef4cb945c848ee4a69d6ce973c8361302582b1a18b82a1c99734ccadb9926e2cbf321c7b216d6d29fa8020026b6c7a45781ebfbcbd8d90b02e4cc"}, @generic="99341b8b1e3e733dfa52adf8714a21fb8838e2d505c636599f04a184891f67cc1911f0e887c0443f235135d85806ef3b899222735069e77f4422d22660692a127ec4f327f746f1bc58708bc2936e64aafad8a7ba9accac48fc1093109825e16aa90df7d184e83768d778a2b49da9a9a6f38d1a59b04cf90374ee3e1011c961d71831c9134e174f9864627c343171bdd99aaf", @generic="723f1c059fb30c8f83d5dad462b9eb0f5d0dc1887fa60262f5f05e6afa75152db733b0c9b8162b141d2aef7a72cb5e083babc7f948e737215a362707b00fddab8fe8b68e387de4b70f463ded19bc81562045c03a819f218e434acb7576d2b3b623713cae4173631f1f1ded9bc043e2747daf5559c8178f0b68bfadcb0b3de35e64f031b7c4dfeadd086aa512542e18c1a9dc7df969da30acdf75948b46b2b5acbfc7aa17a2db45df6eac540c2e70ba4b21a28dd1f2dcdd79cdbd6dc8353ef3"]}]}, 0x464}], 0x6}, 0x11)
pipe(&(0x7f0000000340)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f0000000380)={0x0, 0x1d000})
ioctl$RTC_UIE_ON(r3, 0x7003)
syz_open_dev$mice(&(0x7f0000000180)='/dev/input/mice\x00', 0x0, 0x40002)
write$UHID_CREATE(r9, &(0x7f0000000480)={0x0, 'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000003c0)=""/164, 0xa4, 0x6, 0x2, 0x80000000, 0x55, 0x7}, 0x120)
sendto$inet6(r0, &(0x7f0000000080)="040105000500000000000000ffb25bc202938207d9033774398d5375c5f73f2e55067d2780e19e33e3c2e77205000000402810fadc5712f21ec3b4cb6014f9254b388533ea9508c008186575efe5eb8f5972eaecff8b17ac32030e80fa87d0d03d1885a290bb42159525b588e5401c51c3dd51898c0fde8466003e265a4563285f2d2faf5b3b5e906835ae2dd474a3970f4dceec0c760487ee9973fddf5c0dd011647994e63e8cb473d8d5b9f56246989bd0fbe956263a2dfe5b89b3da716f64bef71537465ad8a5ac049a2518322e122901f1633559bb086bfc252b667ef9f2820412509e1830893c4afa00000000000015b5", 0xf3, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x800000000000d, @mcast2, 0xffffffffffffffff}, 0x1c)

10:09:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x1500000000000000)

10:09:48 executing program 3:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vhost-net\x00', 0x2, 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x40, 0x0)
r2 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0xfffffffffffffc00, 0x40)
r3 = socket(0x2, 0x0, 0x7ff)
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000100)='trusted.overlay.upper\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xfb, 0x3)
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000340)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f00000003c0)=""/85, 0x55}, {&(0x7f00000002c0)=""/52, 0x34}, {&(0x7f0000000440)}, {&(0x7f0000000480)=""/53, 0x35}], 0x4, 0x0, 0x0, 0x5}, 0x0)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
flock(r4, 0x8)
read(r0, &(0x7f0000000000)=""/120, 0x78)

[  602.197720] EntryControls=0000d1ff ExitControls=002fefff
[  602.216235] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  602.223356] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  602.230177] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  602.263687]         reason=80000021 qualification=0000000000000000
[  602.292521] IDTVectoring: info=00000000 errcode=00000000
[  602.316622] TSC Offset = 0xfffffebbb3b235e8
[  602.330169] EPT pointer = 0x00000001c962401e
10:09:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x5)

10:09:48 executing program 3:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
writev(r0, &(0x7f0000000540)=[{&(0x7f0000000080)="c7d5448e71698b80", 0x8}], 0x1)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x1012, r0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x240000, 0x0)
perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x5}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

10:09:48 executing program 2:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x1e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x8990, &(0x7f0000000080)='ip6tnl0\x00')

10:09:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x14)

10:09:48 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x6, 0x0, [{0xb5f, 0x0, 0xe2a}, {0xbff, 0x0, 0xffffffffffffd5e1}, {0x9ff, 0x0, 0x7}, {0x8e3, 0x0, 0xa09}, {0xbbf, 0x0, 0x992}, {0xc0010bff, 0x0, 0x6}]})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0xd)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, &(0x7f00000002c0)={0x8, {{0xa, 0x4e22, 0x7, @local, 0x2d49}}, {{0xa, 0x4e22, 0x1, @mcast1, 0x8}}}, 0x108)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:48 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x200000, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x3)
r1 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r1, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
fsetxattr$security_ima(r2, &(0x7f0000000380)='security.ima\x00', &(0x7f00000003c0)=@sha1={0x1, "cc79df589893a21d3623f324822c0bf987cac799"}, 0x15, 0x2)
listen(r1, 0x2)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000100)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x11}}}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000240))
semget$private(0x0, 0x5, 0x346)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0xa, 0x0, @dev, [0x0, 0x300000000000000, 0x20000000, 0xa0008000, 0x4000000]}}, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x98)
ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0xc)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000001c0)={0x1, &(0x7f0000000140)=[{<r4=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000200)={r4, 0x4})
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f00000000c0)=0x100)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00'})
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180), &(0x7f0000000440)=0x18)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team0\x00'})

10:09:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x500)

10:09:48 executing program 3:
r0 = socket(0x10, 0x80002, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0xa, 0x4)
bind$netlink(r0, &(0x7f0000177ff4), 0xc)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000040)=0xf70, 0x4)

10:09:48 executing program 2:
socketpair$inet6(0xa, 0xf, 0x3, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0xe)
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040))
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000000c0)={'gretap0\x00', {0x2, 0x4e21}})

10:09:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x9)

10:09:48 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000040)={0x2, 0xa3, 0x820a, 0x6d, 0x10000, 0x1, 0x9, 0x2, <r4=>0x0}, &(0x7f0000000080)=0x20)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000000c0)={r4, 0xff}, 0x8)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
r1 = syz_open_pts(r0, 0x40000)
read(r1, &(0x7f0000000280)=""/1, 0xfffffece)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000180))
syz_open_procfs(0x0, &(0x7f0000000040)='fd/4\x00')
close(r0)

10:09:48 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x200000, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x3)
r1 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r1, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
fsetxattr$security_ima(r2, &(0x7f0000000380)='security.ima\x00', &(0x7f00000003c0)=@sha1={0x1, "cc79df589893a21d3623f324822c0bf987cac799"}, 0x15, 0x2)
listen(r1, 0x2)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000100)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x11}}}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000240))
semget$private(0x0, 0x5, 0x346)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0xa, 0x0, @dev, [0x0, 0x300000000000000, 0x20000000, 0xa0008000, 0x4000000]}}, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x98)
ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0xc)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000001c0)={0x1, &(0x7f0000000140)=[{<r4=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000200)={r4, 0x4})
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f00000000c0)=0x100)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00'})
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180), &(0x7f0000000440)=0x18)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team0\x00'})

10:09:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x3)

10:09:49 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='map_files\x00')
getdents64(r0, &(0x7f0000000000)=""/67, 0x43)

[  603.109029] *** Guest State ***
[  603.112538] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  603.140173] *** Guest State ***
[  603.143572] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  603.148857] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  603.177811] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  603.192217] CR3 = 0x0000000000000000
[  603.200849] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  603.220296] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  603.229952] CR3 = 0x0000000000000000
[  603.237303] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:09:49 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)
r1 = dup2(r0, r0)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, @dev}]})
accept$packet(r1, &(0x7f0000000040), &(0x7f0000000080)=0x14)

[  603.278597] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  603.282535] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  603.312894] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  603.320038] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:49 executing program 3:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x80, 0x0)
r1 = memfd_create(&(0x7f0000000180)="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", 0x3)
write$binfmt_misc(r1, &(0x7f0000000c40)=ANY=[@ANYRES32], 0xff67)
sendfile(r0, r1, &(0x7f0000000040), 0xfffb)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000080)=@sack_info={<r2=>0x0, 0x4, 0x81}, &(0x7f00000000c0)=0xc)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r2, 0x100000001}, 0x8)
fcntl$addseals(r1, 0x409, 0x8)
fsetxattr$system_posix_acl(r1, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

10:09:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xffff8000)

[  603.344646] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.369324] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.379660] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.433399] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:49 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000001000), 0x1)
socketpair(0x11, 0x3, 0x9, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)

[  603.485587] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.498537] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.513445] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.519955] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:49 executing program 0:
r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x200000, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x3)
r1 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084)
bind$inet6(r1, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
fsetxattr$security_ima(r2, &(0x7f0000000380)='security.ima\x00', &(0x7f00000003c0)=@sha1={0x1, "cc79df589893a21d3623f324822c0bf987cac799"}, 0x15, 0x2)
listen(r1, 0x2)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r3, &(0x7f0000000100)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x11}}}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$RTC_VL_READ(r0, 0x80047013, &(0x7f0000000240))
semget$private(0x0, 0x5, 0x346)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0xa, 0x0, @dev, [0x0, 0x300000000000000, 0x20000000, 0xa0008000, 0x4000000]}}, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x98)
ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0xc)
ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f00000001c0)={0x1, &(0x7f0000000140)=[{<r4=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000200)={r4, 0x4})
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f00000000c0)=0x100)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00'})
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180), &(0x7f0000000440)=0x18)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team0\x00'})

[  603.540538] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.551298] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.559053] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.566713] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  603.581926] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.598917] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  603.614977] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  603.623316] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  603.623423] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  603.630004] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  603.645862] Interruptibility = 00000000  ActivityState = 00000000
[  603.653186] *** Host State ***
[  603.656935] RIP = 0xffffffff8120262c  RSP = 0xffff8801c6047390
[  603.661795] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  603.663890] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  603.678123] FSBase=00007f88e609d700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  603.686288] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  603.686320] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  603.692525] CR0=0000000080050033 CR3=00000001b8ca7000 CR4=00000000001426e0
[  603.707575] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  603.714607] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  603.728756] *** Control State ***
[  603.736228] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
10:09:49 executing program 2:
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
rt_sigprocmask(0x0, &(0x7f0000834000)={0x9}, &(0x7f00000c1000), 0x8)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup2(r1, r0)
writev(r3, &(0x7f000000b000)=[{&(0x7f0000066000)=',', 0x1}], 0x1)
tee(r2, r4, 0x5, 0x0)

[  603.743416] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  603.763629] EntryControls=0000d1ff ExitControls=002fefff
[  603.779121] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  603.784015] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  603.807455] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  603.818243] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  603.856059] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  603.859663] Interruptibility = 00000000  ActivityState = 00000000
[  603.874313] *** Host State ***
[  603.877628] RIP = 0xffffffff8120262c  RSP = 0xffff880180277390
[  603.889076]         reason=80000021 qualification=0000000000000000
[  603.900624] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  603.923576] IDTVectoring: info=00000000 errcode=00000000
[  603.924287] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  603.932060] TSC Offset = 0xfffffebaf783f73f
[  603.937331] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  603.941474] EPT pointer = 0x00000001c263101e
10:09:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x2000000000000000)

[  603.947524] CR0=0000000080050033 CR3=00000001cd366000 CR4=00000000001426f0
[  603.960512] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  603.967276] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  603.973663] *** Control State ***
[  603.977190] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  603.984222] EntryControls=0000d1ff ExitControls=002fefff
[  603.990043] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  603.997529] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
10:09:49 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x8c000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x84)
ioctl$RTC_PIE_ON(r3, 0x7005)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ftruncate(r3, 0x100000001)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:49 executing program 3:
mkdir(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000080)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}, 0x2c, {[{@default_permissions='default_permissions'}, {@allow_other='allow_other'}]}})
clone(0x4000002102001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
utime(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x4c0003, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000180))

10:09:49 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000)

10:09:49 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000000000), 0xc)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x80001, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000002c0)={<r2=>0x0, 0x45, "062574f963af5bb617f97b98d3d6a8ac415f57a2e3c05d31bd1a872e47ba8259ba237ecf29b372b182419a624d8b85dc588e9fdfd6bf7455a2a88576328e845d19ed116daf"}, &(0x7f0000000340)=0x4d)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000380)={r2, 0x100000001}, &(0x7f00000003c0)=0x8)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, &(0x7f0000000100)=0x4, 0x4)
sendmsg$nl_generic(r0, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000200)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0)
ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="0a5cc8070031")
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x7, 0x80)
connect$bt_l2cap(r3, &(0x7f00000001c0)={0x1f, 0xbdb7, {0x0, 0x6, 0x8, 0xce, 0x4, 0x7fffffff}, 0x40, 0x3ff}, 0xe)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00')

10:09:49 executing program 2:
syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000940))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x1, 0x0)
getpid()
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/kvm\x00', 0x80000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x21000000, &(0x7f0000fff000/0x1000)=nil})
request_key(&(0x7f00000026c0)='dns_resolver\x00', &(0x7f0000002700)={'syz'}, &(0x7f0000002740)="cd", 0x0)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000c00000/0x400000)=nil})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000340)=ANY=[@ANYBLOB="cd5d", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000001c0)=0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuset.effective_cpus\x00', 0x0, 0x0)
sendmsg$IPVS_CMD_SET_DEST(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x28, 0x0, 0x0, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x14, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[], [], 0x4000000})

[  604.004741] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  604.012955]         reason=80000021 qualification=0000000000000000
[  604.023953] IDTVectoring: info=00000000 errcode=00000000
[  604.029909] TSC Offset = 0xfffffebaf38c8ef5
[  604.034303] EPT pointer = 0x00000001b881901e
[  604.199100] *** Guest State ***
[  604.214694] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
10:09:50 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x10002, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000080)={<r4=>0x0, 0x9, 0x101}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={r4, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x19}}}, 0x2, 0xfff, 0x6, 0x4c, 0x4}, 0x98)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:50 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f00000000c0), 0x4)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x80, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
clone(0xb102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
write$binfmt_aout(r1, 0x0, 0x0)
sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000000)=0x6)
close(r0)

[  604.239832] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  604.262241] CR3 = 0x0000000000000000
[  604.300604] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  604.365652] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  604.404014] *** Guest State ***
10:09:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x38000000)

[  604.422783] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  604.443855] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  604.465284] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:50 executing program 3:
socket$inet6(0xa, 0x5, 0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x40000000000009)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @ipv4={[], [], @multicast1}}, 0x1c)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000300))
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000200))
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000280)=0xff, 0x4)
sendmmsg(r0, &(0x7f00000002c0), 0x4000000000000ce, 0x4)

[  604.465526] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  604.529549] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.552164] CR3 = 0x0000000000000000
[  604.560839] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.570664] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  604.587200] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  604.617937] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  604.630886] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.653230] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.682686] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.692482] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.718365] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.733571] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.753851] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.768964] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  604.781882] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.784364] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.813419] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:50 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x800, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000200)={<r1=>0x0, @in6={{0xa, 0x4e21, 0x2, @mcast2, 0x9}}, 0x10001, 0x6, 0xfffffffffffffff7, 0x2, 0x9}, &(0x7f00000000c0)=0x98)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000002c0)={<r2=>r1}, &(0x7f0000000300)=0x8)
r3 = syz_open_dev$radio(&(0x7f0000000340)='/dev/radio#\x00', 0x3, 0x2)
fsetxattr$trusted_overlay_upper(r3, &(0x7f0000000000)='trusted.overlay.upper\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="00fb369dcd0b3864ca6b0c0b9b565a41af93c47f2baa1ec04e5d27be6abb566506e76ed295284937c1e3cf0d618c98a8bd35da90ad7664450962f34ecc674f41a754b8"], 0x36, 0x1)
ioctl$VIDIOC_S_MODULATOR(r3, 0x40445637, &(0x7f0000000100)={0x8c0, "6533f29f31a876ab4990f54410e468ff5337ec4dce8213c3f5552d7b9f44a7c2"})
fcntl$setpipe(r3, 0x407, 0x2)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f00000003c0)=@sack_info={r2, 0xc38, 0x5}, &(0x7f0000000400)=0xc)

10:09:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x12)

[  604.832750] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  604.849060] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  604.859468] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  604.872545] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  604.917210] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  604.920152] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  604.945069] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  604.974675] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  604.987980] Interruptibility = 00000000  ActivityState = 00000000
[  605.004709] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  605.018221] *** Host State ***
[  605.025346] RIP = 0xffffffff8120262c  RSP = 0xffff88018030f390
[  605.034639] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  605.042998] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  605.078723] FSBase=00007f88e609d700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  605.080467] Interruptibility = 00000000  ActivityState = 00000000
[  605.129635] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  605.142900] *** Host State ***
[  605.146376] RIP = 0xffffffff8120262c  RSP = 0xffff8801c12cf390
[  605.152574] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  605.155438] CR0=0000000080050033 CR3=00000001d1d73000 CR4=00000000001426f0
[  605.159231] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  605.174166] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  605.180337] CR0=0000000080050033 CR3=00000001ba918000 CR4=00000000001426f0
[  605.180481] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  605.195901] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  605.203678] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  605.218514] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  605.227266] *** Control State ***
[  605.231295] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  605.238058] EntryControls=0000d1ff ExitControls=002fefff
[  605.247277] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  605.254592] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  605.258485] *** Control State ***
[  605.261639] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  605.264793] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  605.271690]         reason=80000021 qualification=0000000000000000
[  605.279403] EntryControls=0000d1ff ExitControls=002fefff
[  605.284833] IDTVectoring: info=00000000 errcode=00000000
[  605.289982] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  605.295662] TSC Offset = 0xfffffeba65f5188a
[  605.307026] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  605.307314] EPT pointer = 0x00000001b373a01e
[  605.314075] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  605.325920]         reason=80000021 qualification=0000000000000000
[  605.332441] IDTVectoring: info=00000000 errcode=00000000
[  605.338005] TSC Offset = 0xfffffeba40be9d3d
[  605.342537] EPT pointer = 0x00000001d370701e
10:09:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000)

10:09:51 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x2)
r1 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x72d2d8f, 0x4400)
timerfd_gettime(r1, &(0x7f00000000c0))
mknod(&(0x7f0000000440)='./file0\x00', 0xc088, 0x0)
write$evdev(r0, &(0x7f0000057fa0)=[{}, {}], 0xfffffd24)
clone(0x100000000100103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)

10:09:51 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x240000, 0x0)
ioctl$BLKGETSIZE64(r0, 0x80081272, &(0x7f00000001c0))
perf_event_open(&(0x7f0000000100)={0x2, 0x2ba, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$smack_thread_current(0xffffffffffffff9c, &(0x7f0000000400)='/proc/thread-self/attr/current\x00', 0x2, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x10800, 0x0)
ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000000c0)={0x3, 0x1, 0x800})
ioctl$KDADDIO(r0, 0x4b34, 0x200006)
exit(0x0)
write$binfmt_aout(r1, 0x0, 0x0)

10:09:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000)

10:09:51 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sync()
ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f0000000400)=0x2)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0xffffffffffffff7f)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = accept4(r0, 0x0, &(0x7f0000000080), 0x0)
r3 = syz_open_dev$ndb(&(0x7f0000000100)='/dev/nbd#\x00', 0x0, 0x4000)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f00000003c0), 0x4)
write$FUSE_POLL(0xffffffffffffffff, &(0x7f00000001c0)={0x18, 0x0, 0x4}, 0x18)
r4 = dup2(r0, r3)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000000140))
ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f00000000c0)={'ip_vti0\x00', {0x2, 0x4e22}})
shutdown(r2, 0x1)

10:09:51 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = add_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
r2 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffa)
keyctl$unlink(0x9, r1, r2)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
io_setup(0xa, &(0x7f00000002c0)=<r4=>0x0)
io_getevents(r4, 0x6, 0x4, &(0x7f0000000300)=[{}, {}, {}, {}], 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r6 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r6, 0xc0bc5351, &(0x7f0000000180)={0x2, 0x1, 'client1\x00', 0xffffffff80000001, "54044b3838be23e1", "26bae4ba81078dd9c2063fd08ab474d3060085a17f750ced2ea042be8d6909f8", 0x1f, 0x81})
ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r5, 0xae80, 0x0)

[  605.556936] *** Guest State ***
[  605.561188] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  605.594842] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  605.608993] *** Guest State ***
[  605.616840] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  605.629330] CR3 = 0x0000000000000000
[  605.634924] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  605.666790] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  605.677190] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  605.697398] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  605.708794] CR3 = 0x0000000000000000
10:09:51 executing program 3:
r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x0)
r1 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x2100)
ioctl$int_in(r0, 0x80000080045005, &(0x7f0000000080))
ioctl$int_in(r1, 0x5421, &(0x7f00000000c0)=0x3)

[  605.718653] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  605.721498] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.748852] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  605.758948] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x1d000000)

[  605.786670] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.789898] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  605.806967] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.824318] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.832136] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.861418] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.868719] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.872706] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  605.888857] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.896987] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  605.901971] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.905686] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  605.921994] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  605.929463] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  605.931750] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.947338] Interruptibility = 00000000  ActivityState = 00000000
[  605.958838] *** Host State ***
[  605.958867] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  605.962220] RIP = 0xffffffff8120262c  RSP = 0xffff8801d2fd7390
[  605.970305] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:51 executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)={0x9, 0x7, 0x3, 0x400000bff}, 0x2c)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r0, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000001c0)={r0, &(0x7f0000000040)}, 0x10)
r1 = dup3(r0, r0, 0x80000)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x3, 0x401})

[  605.977990] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  606.000272] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  606.009830] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  606.024638] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  606.032656] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  606.046030] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  606.065666] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  606.068737] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:09:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f)

10:09:52 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$bt_hci(r1, 0x0, 0x3, &(0x7f0000000300)=""/4096, &(0x7f0000000140)=0x1000)

[  606.084709] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  606.084883] CR0=0000000080050033 CR3=00000001d252c000 CR4=00000000001426f0
[  606.117807] Interruptibility = 00000000  ActivityState = 00000000
[  606.124392] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  606.133464] *** Host State ***
[  606.146880] RIP = 0xffffffff8120262c  RSP = 0xffff8801d8ccf390
[  606.162917] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  606.168719] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  606.188895] FSBase=00007fecb7d33700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  606.194985] *** Control State ***
[  606.200253] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  606.200268] CR0=0000000080050033 CR3=000000017e2a7000 CR4=00000000001426f0
[  606.200283] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  606.211903] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  606.224016] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
10:09:52 executing program 3:
r0 = perf_event_open(&(0x7f0000000200)={0xfffffffffffffffd, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r1=>0x0)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x300, 0x0)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000080), &(0x7f0000000140)=0x4)
r3 = creat(&(0x7f0000000180)='./file0\x00', 0x10)
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
perf_event_open(&(0x7f00000000c0)={0x8, 0x70, 0x101, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xca4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, r0, 0x0)

[  606.247666] *** Control State ***
[  606.258216] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  606.274641] EntryControls=0000d1ff ExitControls=002fefff
[  606.276029] EntryControls=0000d1ff ExitControls=002fefff
10:09:52 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000240)=ANY=[@ANYBLOB="0024ade3c904cf9bd1aa35bb6818218e5a08000000000000000000000000000000"], 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xe8)
ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000280)={@ipv4, 0x68, r2})
setsockopt$inet6_int(r0, 0x29, 0xfb, &(0x7f00000001c0)=0x8, 0x4)
connect$inet6(r0, &(0x7f0000000600)={0xa, 0x4e22, 0x7, @empty, 0x1}, 0x44)
sysinfo(&(0x7f0000000300)=""/19)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000800)='/dev/snd/pcmC#D#c\x00', 0x8, 0x20000)
ioctl$TIOCSLCKTRMIOS(r3, 0x5457, &(0x7f0000000840))
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x3ac, 0x3ef, 0x5, 0x30c, 0x0, 0x1d3, 0xe003, 0x33c, 0x0, 0x0, 0xc, 0x0, 0x8]}, 0x75, r4})
setsockopt$llc_int(r3, 0x10c, 0x2, &(0x7f0000000880)=0xffff, 0x4)
socket$l2tp(0x18, 0x1, 0x1)
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000780)='/dev/sequencer2\x00', 0x800, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r5, 0x541b, &(0x7f00000007c0))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='cgroup.stat\x00', 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r3, 0x800442d4, &(0x7f00000008c0)=0xfffffffffffffffe)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000740)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000700)={&(0x7f0000000d00)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="08032abd700000dcdf250e000000"], 0x14}, 0x1, 0x0, 0x0, 0x407fd}, 0x804)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={@local, @empty, @loopback, 0x3, 0x0, 0x1f, 0x0, 0x100000000, 0x0, r4})
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000180))
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x509000, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r7, 0x5382, &(0x7f0000000480))
r8 = getpid()
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, r8, 0x0, 0xffffffffffffffff, 0x0)
accept$alg(r7, 0x0, 0x0)
accept$unix(r5, &(0x7f0000000a00), &(0x7f00000002c0)=0xfffffffffffffc69)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ffa000/0x3000)=nil)
sendto$inet6(r9, &(0x7f0000e33fe0)='X', 0x1, 0x0, 0x0, 0x0)

[  606.305220] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  606.326570] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  606.352678] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  606.378701] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  606.381961] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  606.406716]         reason=80000021 qualification=0000000000000000
[  606.413273] IDTVectoring: info=00000000 errcode=00000000
[  606.418844] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  606.418866]         reason=80000021 qualification=0000000000000000
[  606.418873] IDTVectoring: info=00000000 errcode=00000000
[  606.418880] TSC Offset = 0xfffffeb9a0ff2481
[  606.418889] EPT pointer = 0x00000001b6e4701e
[  606.426493] TSC Offset = 0xfffffeb9a11726bc
[  606.505362] EPT pointer = 0x00000001cc25d01e
10:09:55 executing program 3:
r0 = socket$inet6(0xa, 0xfffffffffffe, 0xfffffffffffffffc)
ioctl(r0, 0x8912, &(0x7f0000000040)="0a5cc80700315f85715070")
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=@ipv6_deladdr={0x34, 0x15, 0x111, 0x0, 0x0, {}, [@IFA_FLAGS={0x8}, @IFA_ADDRESS={0x14, 0x1, @ipv4={[], [], @remote}}]}, 0x34}}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x3, [0x0, 0x0, 0x0]}, &(0x7f0000000080)=0x10)
sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f00000001c0)}], 0x1, 0x0)

10:09:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x29000000)

10:09:55 executing program 0:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
keyctl$session_to_parent(0x12)
getsockopt$inet6_int(r0, 0x29, 0xce, &(0x7f00000000c0), &(0x7f0000000000)=0x4)

10:09:55 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x400200, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f00000000c0))
r2 = socket(0x9, 0x802, 0xfffffffffffffffc)
getsockopt$sock_cred(r2, 0x1, 0x2e, &(0x7f0000caaffb), &(0x7f0000000440)=0xfe8f)
clock_gettime(0x0, &(0x7f0000000000)={<r3=>0x0, <r4=>0x0})
setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000040)={r3, r4/1000+30000}, 0x10)

10:09:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f00000000)

10:09:55 executing program 5:
r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xbc8, 0x22000)
ioctl$KVM_GET_REGS(r0, 0x8090ae81, &(0x7f0000000140))
mount$9p_rdma(&(0x7f00000000c0)='127.0.0.1\x00', &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)='9p\x00', 0x40800, &(0x7f0000000300)={'trans=rdma,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@rq={'rq', 0x3d, 0x7}}, {@rq={'rq', 0x3d, 0x3}}, {@sq={'sq', 0x3d, 0x81}}, {@common=@nodevmap='nodevmap'}, {@sq={'sq', 0x3d, 0x10000}}, {@rq={'rq', 0x3d, 0x4}}, {@sq={'sq', 0x3d, 0x8}}, {@sq={'sq', 0x3d, 0x4}}], [{@defcontext={'defcontext', 0x3d, 'user_u'}}, {@subj_type={'subj_type', 0x3d, '/dev/dmmidi#\x00'}}, {@dont_measure='dont_measure'}]}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000000400)=ANY=[@ANYBLOB="0500200000000000000000000000000500e8ffffffffffffff00000000000000000000000000000000000000000000000000000000008464bfd0a259915644ab6c"])
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:09:55 executing program 3:
r0 = syz_open_dev$binder(&(0x7f0000000200)='/dev/binder#\x00', 0x0, 0x7fc)
r1 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r0, 0x40046205, 0x3)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x44, 0x0, &(0x7f0000000280)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdfd, 0x0, &(0x7f0000000040), &(0x7f0000000080)}}], 0xfeffff, 0x0, &(0x7f0000000340)})
r2 = memfd_create(&(0x7f0000000000)='/dev/binder#\x00', 0x4)
ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000040)={<r3=>0x0})
ioctl$DRM_IOCTL_SET_SAREA_CTX(r2, 0x4010641c, &(0x7f0000000140)={r3, &(0x7f0000000080)=""/105})

[  609.238996] *** Guest State ***
[  609.242605] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  609.257487] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  609.283184] CR3 = 0x0000000000000000
10:09:55 executing program 0:
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
set_thread_area(&(0x7f0000000000)={0x7, 0x20000000, 0xffffffffffffffff, 0x3, 0x2, 0x0, 0x7f5, 0x38000, 0x0, 0x1ff})
bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r0, 0xffefffffffffff7f)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r2 = socket$inet6(0xa, 0x3, 0x6)
ioctl(r2, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")
r3 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@ipv4={[], [], @multicast1}, 0x0, 0x1, 0x0, 0x4}, 0x20)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000500)={0x1, 0x400}, 0x8)
epoll_create(0x400)

10:09:55 executing program 2:
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
io_setup(0x40000100000003, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x804000000000000, 0x0, 0x8, 0x1, 0x0, r0, 0x0}])
syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2)

[  609.301160] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  609.341705] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  609.357469] binder: BINDER_SET_CONTEXT_MGR already set
[  609.365766] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  609.391351] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  609.401132] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  609.409615] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  609.420538] binder: 20752:20758 ioctl 40046207 0 returned -16
[  609.422584] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000)

[  609.434955] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  609.444733] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  609.454744] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  609.467696] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x40000)

[  609.493582] IDTR:                           limit=0x00000000, base=0x0000000060000011
10:09:55 executing program 3:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net\x00')
exit(0x201)
ioctl$EVIOCGBITSND(r0, 0x80404532, &(0x7f0000000280)=""/116)
r1 = geteuid()
syz_mount_image$hfs(&(0x7f0000000000)='hfs\x00', &(0x7f0000000040)='./file0\x00', 0x5, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000180)="331957a628c46618a776faac3845670430c72d5967524bb0c8a70ed8cf9830c53e1e595b2060eb25863fabb35e4c44dd53c5d051b5dba39c32f28a1f6ff2b15d787f3c06d5a2695e0700776ed8603b0d26c34e1efa8ec285a8c7d89cfda036fb18a0559b4d6c7edae1ad552907811e7002430ae361caa767fb6fcc2b467e797f02672c2e84c2e11b0c12242bbf0488c31186c3bd2740e93d2e44e4fe2cdd1f731ca5536cf4fb30ba12584bd6df9fca0b7e26c76500507df9d1f39749036e1a8f95fa824be46ae25a38", 0xc9, 0x1f}], 0x0, &(0x7f0000000100)={[{@part={'part', 0x3d, 0x6}}], [{@uid_eq={'uid', 0x3d, r1}}]})
stat(&(0x7f0000000300)='./file0\x00', &(0x7f00000003c0))
fchownat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000340)={<r2=>0x0, 0x1, 0x10, 0x9, 0x8}, &(0x7f0000000380)=0x18)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000440)={r2, @in={{0x2, 0x4e20, @remote}}, 0xffff, 0x5, 0x6, 0xc3c4, 0x80}, &(0x7f0000000500)=0xfffffe07)

10:09:55 executing program 0:
r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x1, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
set_mempolicy(0x8003, &(0x7f00000001c0)=0xffffffffffff0001, 0x7)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000180)='/dev/urandom\x00', 0x400000, 0x0)
read$FUSE(r0, &(0x7f0000000700), 0x1000)
r1 = add_key(&(0x7f0000000100)='blacklist\x00', &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$clear(0x7, r1)
socketpair$inet_sctp(0x2, 0x0, 0x84, &(0x7f00000003c0))

[  609.545790] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  609.563694] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:09:55 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x1, 0x70}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, r0, 0x0)
read(r1, &(0x7f00000000c0)=""/91, 0x5b)
write$binfmt_aout(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x176)

[  609.608786] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  609.647793] Interruptibility = 00000000  ActivityState = 00000000
[  609.671834] *** Host State ***
[  609.683863] hfs: can't find a HFS filesystem on dev loop3
[  609.702117] RIP = 0xffffffff8120262c  RSP = 0xffff8801b9cb7390
10:09:55 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0)
ioctl$LOOP_SET_CAPACITY(r0, 0x1265)
r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x2000)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000040)={0x44, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="07630440030000000d6300000e630c40010000000300000079000000000000040000000000000010630840030000007e25b9000000000d0000fffffffb00000000000000"], 0xe8, 0x0, &(0x7f0000000140)="2deedbb356e2e56060fda06a56d52616af306c3c35791111799314584c027899ea118cf6cfe469c8ecbca393f538af3ef321cf311bad04d5d5845f95a84a419f59883e9d145b37a07de5d5c5523d28960c399a6c5cf5769ad0949ddfcd34778dc5a5111577179b7cacd6ddb271aa238bf2f579beb74107d932a36163f0d4c3c61c18a248631a7383c098b8f5f50c0e9011b7256020e58bcc8665d77081fcd3283a3390552d42bd8651df1f221801306bc28d213f358fba5bbed27a9c21ef2def78ce3a3495301aba31321d5324522772abce62e2ff478418bbd80bb1c770b1ecc4c09144b02c722e"})

10:09:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xc000000)

[  609.730218] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  609.764570] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  609.827643] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  609.855633] CR0=0000000080050033 CR3=00000001ba36a000 CR4=00000000001426f0
10:09:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x2000)

[  609.872456] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  609.882675] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  609.894585] *** Control State ***
[  609.902969] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  609.916946] EntryControls=0000d1ff ExitControls=002fefff
[  609.925758] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  609.934194] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  609.941518] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  609.948692]         reason=80000021 qualification=0000000000000000
[  609.955315] IDTVectoring: info=00000000 errcode=00000000
[  609.961347] TSC Offset = 0xfffffeb7a2e35942
[  609.965973] EPT pointer = 0x00000001818ca01e
[  609.968929] *** Guest State ***
[  609.973837] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  609.989261] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  610.010793] CR3 = 0x0000000000000000
[  610.014657] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  610.021276] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  610.030142] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  610.037531] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.047573] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.061564] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f00000000c0)={0x16, 0x4, 0xff})
ioctl$UI_ABS_SETUP(r3, 0x401c5504, &(0x7f0000000080)={0x6, {0x400, 0x5, 0x3ff, 0x5, 0x1, 0xfffffffffffffffd}})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r3, 0x84, 0xc, &(0x7f0000000140), 0x4)
syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x8, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:55 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/wireless\x00')
r1 = socket$kcm(0x29, 0x5, 0x0)
sendfile(r1, r0, 0x0, 0xffffffff)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000000))
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x3, 0x9, 0x1f})
write$binfmt_aout(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="ec44ce00000000"], 0x1)

[  610.076471] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.093793] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.102560] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.139716] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  610.169689] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0xa00000000000000)

10:09:56 executing program 2:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000480))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0)
socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000000))
sched_rr_get_interval(0x0, &(0x7f0000000040))
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080), 0x13f, 0x1000}}, 0x20)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000140)={0x0, 0x9}, &(0x7f00000001c0)=0x8)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000280), 0x8)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000500)=[@text64={0x40, &(0x7f0000000480)="660f38816b0066baf80cb8509b4186ef66bafc0cb87a5b0000ef400f09440f20c0350d000000440f22c0b991000040b8e4dd0000ba000000000f30b9800000c00f3235002000000f3066450f083ef2650f01c90f01d1c7442400d3000000c7442402e4000000c7442406000000000f011424", 0x72}], 0x1, 0x0, &(0x7f0000000200), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  610.183289] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  610.192231] *** Guest State ***
[  610.199829] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  610.202776] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  610.219814] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  610.237371] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  610.246417] CR3 = 0x0000000000000000
[  610.250565] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  610.259143] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  610.265277] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  610.270651] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  610.272637] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.287700] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.296191] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.308544] Interruptibility = 00000000  ActivityState = 00000000
[  610.315582] *** Host State ***
[  610.319465] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.327666] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb0f390
[  610.335137] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.343485] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  610.350296] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.358374] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  610.358619] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  610.380378] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  610.386604] CR0=0000000080050033 CR3=00000001cf2a6000 CR4=00000000001426e0
[  610.394075] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  610.401065] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  610.401327] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  610.411502] *** Control State ***
[  610.420265] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  610.427190] EntryControls=0000d1ff ExitControls=002fefff
[  610.447244] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  610.456364] hfs: can't find a HFS filesystem on dev loop3
[  610.469768] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  610.478970] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
10:09:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000)

[  610.512658] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  610.519892] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  610.538590] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  610.549988] Interruptibility = 00000000  ActivityState = 00000000
[  610.557172] *** Host State ***
[  610.561207] RIP = 0xffffffff8120262c  RSP = 0xffff880181a8f390
[  610.567319] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  610.574438] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  610.588806] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  610.596715]         reason=80000021 qualification=0000000000000000
10:09:56 executing program 0:
semctl$IPC_INFO(0x0, 0x3, 0x3, &(0x7f0000000080)=""/205)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x100000000000003}, 0xffffffffffffffee)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r1, &(0x7f00000005c0)=@pppol2tp={0x18, 0x1, {0x0, r0, {}, 0x3, 0x4, 0x1}}, 0x26)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @local, 0x0, 0x0, 'wrr\x00', 0x20, 0xfffffffffffff0b5}, 0x2c)
ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x0)
r4 = syz_open_dev$vcsa(&(0x7f0000000340)='/dev/vcsa#\x00', 0x0, 0x0)
r5 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r5, 0x84, 0x12, &(0x7f0000000300), 0x4)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000080)={0x0, 'veth0_to_bridge\x00'}, 0x18)
pselect6(0x40, &(0x7f0000000100)={0x3f, 0x0, 0x0, 0x200, 0x401, 0x2, 0x607153fe, 0x100000001}, &(0x7f0000000140)={0x5, 0x1, 0xc53, 0x401, 0x0, 0x2, 0xd75c, 0x100}, &(0x7f0000000180)={0x2197, 0xbc, 0x40, 0x0, 0x3, 0x7}, &(0x7f00000001c0)={0x0, 0x1c9c380}, &(0x7f00000002c0)={&(0x7f0000000280)={0x2}, 0x8})
ioctl(0xffffffffffffffff, 0x800000000008982, &(0x7f0000000080))
signalfd4(r4, &(0x7f00000003c0)={0x4}, 0x8, 0x80800)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0)
socket(0x10, 0x1, 0x0)
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000240)="c626262c8523")
openat$urandom(0xffffffffffffff9c, &(0x7f0000000440)='/dev/urandom\x00', 0x8180, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r6, 0x4008ae89, &(0x7f0000000640)=ANY=[@ANYBLOB="010000f673da135dd4fba5c01dde606e094b14c34b0000000000000038855ca110100076f8f10a9ca444f6901ccc63846bffb85e077775133d64e34443"])

10:09:56 executing program 3:
r0 = syz_open_dev$video4linux(&(0x7f0000000040)='/dev/v4l-subdev#\x00', 0x5, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x400000, 0x0)
mq_open(&(0x7f0000000240)='fou\x00', 0x40, 0x2, &(0x7f0000000280)={0x8000, 0xba6, 0x208, 0x4, 0x100000001, 0x1, 0x10000, 0x1396})
r2 = syz_genetlink_get_family_id$fou(&(0x7f00000000c0)='fou\x00')
sendmsg$FOU_CMD_DEL(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r2, 0x300, 0x70bd28, 0x25dfdbff, {}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0xbf}, @FOU_ATTR_TYPE={0x8, 0x4, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000100)={0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xb, 0xc300000}})

[  610.635686] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  610.643916] IDTVectoring: info=00000000 errcode=00000000
[  610.650745] CR0=0000000080050033 CR3=00000001d91cd000 CR4=00000000001426f0
[  610.657963] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  610.665677] TSC Offset = 0xfffffeb7478229b2
[  610.670423] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  610.677215] EPT pointer = 0x00000001cc57401e
[  610.686515] *** Control State ***
[  610.708707] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
10:09:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x80ffff)

[  610.759063] EntryControls=0000d1ff ExitControls=002fefff
[  610.783271] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  610.810214] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  610.829900] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
10:09:56 executing program 3:
r0 = syz_open_dev$usbmon(&(0x7f00000001c0)='/dev/usbmon#\x00', 0x0, 0x402)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x3)
ioctl(r2, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070")
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r1})
read$FUSE(r0, 0x0, 0x0)
r3 = syz_open_dev$usb(&(0x7f0000000140)='/dev/bus/usb/00#/00#\x00', 0x1ff, 0x0)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000000)={<r4=>0x0, 0x100000001, 0x8182, 0x2, 0xce, 0xfff}, &(0x7f0000000080)=0x14)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000200)={r4, @in={{0x2, 0x4e22, @multicast2}}, 0xf3}, 0x90)

[  610.869707]         reason=80000021 qualification=0000000000000000
[  610.886007] IDTVectoring: info=00000000 errcode=00000000
10:09:56 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x1e, 0x1, 0x0)
sendmsg(r0, &(0x7f00003bbfc8)={&(0x7f0000fdbf80)=@generic={0x10000000001e, "02ff0100000001000000000000000ae77f5bf86c48020002000000f1ffffff009a480075e6a50000de010300000000e4ff064b3f013a000000080000008f00000000ac50d5fe32c4000000007fffffff6a008356edb9a6341c1fd45624281e00070ecddd0206c39750c40000fd00000900000000000b0000db000004da36"}, 0x2ef, &(0x7f0000d1b000), 0x0, &(0x7f000012e000)}, 0x0)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000)={0x4, 0x8, 0xfa0, 0x309}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000100)=[@in={0x2, 0x4e22, @local}, @in={0x2, 0x4e21, @multicast2}, @in={0x2, 0x4e22, @rand_addr=0x1f}, @in6={0xa, 0x4e20, 0x1, @mcast1, 0x17f5}, @in={0x2, 0x4e23, @rand_addr}, @in6={0xa, 0x4e20, 0x5, @local, 0x101}], 0x78)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f00000000c0)={0x5, 0x10, 0xfa00, {&(0x7f0000000280), 0xffffffffffffffff, 0x4000000000000000}}, 0x152610)
close(r0)

10:09:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0xffffff7f00000000)

[  610.960049] TSC Offset = 0xfffffeb720ed7291
[  611.031374] EPT pointer = 0x00000001ca17701e
10:09:57 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='coredump_filter\x00')
ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000080)={0x100000000, 0x20, [0x82, 0x4, 0x5, 0x3, 0xfffffffffffffffd, 0x4402, 0xff, 0x7f]})
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000000)='+4', 0x2}], 0x1)

[  611.120128] *** Guest State ***
[  611.123657] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  611.188266] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  611.261708] CR3 = 0x0000000000000000
[  611.298589] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  611.325423] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  611.335861] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  611.343184] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.351912] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.364344] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.373740] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.388555] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.396703] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  611.406322] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  611.419245] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  611.429407] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  611.437601] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  611.447182] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  611.454134] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  611.461956] Interruptibility = 00000008  ActivityState = 00000000
[  611.468266] *** Host State ***
[  611.471614] RIP = 0xffffffff8120262c  RSP = 0xffff8801b8a17390
[  611.477649] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  611.484258] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  611.492161] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  611.498152] CR0=0000000080050033 CR3=00000001d91cd000 CR4=00000000001426f0
[  611.505300] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  611.512128] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  611.518235] *** Control State ***
[  611.521806] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  611.529467] EntryControls=0000d1ff ExitControls=002fefff
[  611.535002] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  611.542053] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
10:09:57 executing program 3:
r0 = syz_open_dev$sndctrl(&(0x7f000000a000)='/dev/snd/controlC#\x00', 0x0, 0x101800)
socketpair(0x3, 0x0, 0x4, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fchmodat(r1, &(0x7f0000000080)='./file0\x00', 0x40)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000040)=0x30)
write(r1, &(0x7f00000000c0)="0f3568998eb42d53f1e66da38dd152211b0587109fe4eccecd4b657dc93ab783a28bad1ab15d93cce863dbb1af6adf23f8b445ba2c7d18610c204bf92c55", 0x3e)
readv(r0, &(0x7f0000000100)=[{&(0x7f0000000500)=""/188, 0xbc}], 0x1)

10:09:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xe000000)

10:09:57 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x3000000)

10:09:57 executing program 0:
mq_open(&(0x7f0000000540)='\x00', 0x0, 0x0, &(0x7f00000003c0))
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200))
mq_timedreceive(0xffffffffffffffff, &(0x7f0000000140)=""/133, 0x85, 0x0, 0xfffffffffffffffd)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000040))
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000100))

10:09:57 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xb4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f00000000c0)={0x0, 0x8, 0xe01c, &(0x7f0000000080)=0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
io_setup(0x2, &(0x7f0000000040))

10:09:57 executing program 2:
ioctl$KDENABIO(0xffffffffffffffff, 0x4b36)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f0000000080)=0xd0, 0x4)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000100)={0x3})
r0 = socket(0x10, 0x807, 0x8)
ioctl$sock_ifreq(r0, 0x89f3, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_data=&(0x7f00000000c0)="a325d3c91116bf66fed2b246a94500aa6593352d29be1746fd84168b6ef37b32"})

[  611.548828] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  611.555473]         reason=80000021 qualification=0000000000000000
[  611.561915] IDTVectoring: info=00000000 errcode=00000000
[  611.567444] TSC Offset = 0xfffffeb720ed7291
[  611.571888] EPT pointer = 0x000000017beef01e
10:09:57 executing program 2:
r0 = socket$inet6(0xa, 0x803, 0x3)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x26e1, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000700)=[{&(0x7f0000000680), 0xffffff04}], 0x10000000000001c0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
pwritev(r1, &(0x7f0000000380), 0x0, 0x0)
r2 = socket$inet6(0xa, 0x8000e, 0xff)
ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000440)={0x7, 0x800, 0x7, 0x200, 0x1688})
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000140)={0x0, 0x0, 0x8000}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000400)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000480)=0x7, 0x4)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000000040)={<r3=>r2})
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc80700145f8f764070")
r4 = socket$inet6(0xa, 0x2000000802, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000f68000)={@loopback, 0x0, 0x0, 0xff, 0x1}, 0x20)
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000540), &(0x7f0000000680)=0x4)
ioctl$FS_IOC_GETVERSION(r4, 0x80087601, &(0x7f00000006c0))
setsockopt$inet6_int(r2, 0x29, 0x1d, &(0x7f0000000080)=0x8, 0x4)
unshare(0x40000000)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00')
sendmsg$IPVS_CMD_SET_CONFIG(r3, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="b0000000", @ANYRES16=r5, @ANYBLOB="000b25bd7000fcdbdf250c0000003000010008000500030000000c000700030000002a000000080004004e210000080005000100000008000100020000003c0002001400010000000000000000000000000000000001080002004e2300001400010080860001000000000000000000000000080009000300000014000200080005000300000008000700000100001c000100080002002900000008000100020000000800080000000000"], 0xb0}, 0x1, 0x0, 0x0, 0x14}, 0x80)
ioctl$sock_bt(r1, 0x0, &(0x7f00000004c0)="18cbb0620d8bbcaf1855a8e8afe9fe2eaadd2bbba4f7352c6b32b3b6b878122a5963119e179a355c16c7083bc5a33fc2b42c97318b829ff7395210a218649e80")
socket$inet6(0xa, 0x4, 0x2000001d)
r6 = socket$inet6(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r6, 0x29, 0xc8, &(0x7f00000007c0), 0x4)
setsockopt$inet6_MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f00000000c0)={0x7, 0x1, 0x7, 0x10000000000004}, 0xc)
setsockopt$inet6_MRT6_ADD_MFC(r6, 0x29, 0xc9, &(0x7f0000000180)={{0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, {0xa, 0x0, 0x0, @remote}}, 0xb)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")

10:09:57 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@polexpire={0xc0, 0x1b, 0x1, 0x0, 0x0, {{{@in=@multicast2=0xff010000, @in6=@local}, {}, {}, 0x0, 0x8}}}, 0xc0}, 0x8}, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x809c1, 0x4)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r1, 0x6430)

10:09:57 executing program 3:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x2000, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x80000000)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000010000000834d56ffffffffffffffff000000000024acb19b667de00c8d736f4c8f581df6a4a14803ba5d8a2f4428fbfffef2bec468ef26734106164cc18c199194e8227bfddf29a1b86ce90d1d5ebd224f218a0ebdd1f53c5927e518442228522face5d1691dbe0c1ad9710e75bd98d120bd349f957efe43bc33774e5f6d9b6ed56e958bfbaef0cc26f34c31f9fbe35edaab933e0538"])

[  611.759515] *** Guest State ***
[  611.763013] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  611.787221] *** Guest State ***
[  611.799797] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  611.825853] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  611.848045] IPVS: ftp: loaded support on port[0] = 21
[  611.851038] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  611.891204] CR3 = 0x0000000000000000
[  611.899702] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  611.906182] CR3 = 0x0000000000000000
[  611.914126] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:09:57 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x11)

10:09:57 executing program 0:
r0 = creat(&(0x7f0000000100)='./file0\x00', 0x20)
getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f0000000280)=""/78, &(0x7f0000000200)=0x4e)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
io_setup(0x5, &(0x7f0000000240)=<r4=>0x0)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x84000)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x20000, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r6, 0x89e2, &(0x7f00000000c0)={r1})
dup3(r1, r1, 0x80000)
write$P9_RREADDIR(r5, &(0x7f0000000040)=ANY=[@ANYBLOB='\v'], 0x1)
io_submit(r4, 0x0, 0x0)
io_submit(r4, 0x1400, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000140), 0xffffff67}])

[  611.938878] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  611.945100] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  611.953314] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  611.961144] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  611.989847] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.001405] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.020123] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.030725] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:09:57 executing program 3:
ioctl$ASHMEM_SET_SIZE(0xffffffffffffffff, 0x40087705, 0x3)
syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000800)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RXATTRCREATE(r0, &(0x7f0000000200)={0x7, 0x21, 0x2}, 0x7)
creat(0x0, 0x0)
syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x800, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000980)={0x8, "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", 0xfffffffffffffd14}, 0x10a9)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f00000000c0), 0x8080fffffffe)
ioctl$sock_inet6_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, 0x0)

[  612.044653] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.054114] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.062509] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.071176] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.079576] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.092337] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.102608] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.111010] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.111537] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  612.127589] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.135938] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  612.144197] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  612.178522] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.189500] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  612.198279] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  612.210626] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  612.228531] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  612.237706] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  612.245642] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  612.253185] Interruptibility = 00000000  ActivityState = 00000000
[  612.259874] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  612.268249] *** Host State ***
[  612.271904] RIP = 0xffffffff8120262c  RSP = 0xffff8801bcf47390
[  612.282237] Interruptibility = 00000000  ActivityState = 00000000
10:09:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x18000000)

[  612.292182] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  612.301546] *** Host State ***
[  612.307243] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  612.315539] RIP = 0xffffffff8120262c  RSP = 0xffff8801c6047390
[  612.324511] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  612.337998] CR0=0000000080050033 CR3=00000001b8725000 CR4=00000000001426f0
[  612.353567] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  612.366150] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  612.379563] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  612.385842] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  612.403587] *** Control State ***
[  612.411616] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  612.420398] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  612.426103] EntryControls=0000d1ff ExitControls=002fefff
[  612.440503] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  612.441174] CR0=0000000080050033 CR3=00000001d1dbe000 CR4=00000000001426e0
[  612.455249] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  612.459350] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  612.462548] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  612.475332] *** Control State ***
[  612.479860] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  612.481410] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  612.486850] EntryControls=0000d1ff ExitControls=002fefff
[  612.499370] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  612.506644] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  612.514422] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  612.539375]         reason=80000021 qualification=0000000000000000
[  612.546812]         reason=80000021 qualification=0000000000000000
[  612.553273] IDTVectoring: info=00000000 errcode=00000000
[  612.559301] IDTVectoring: info=00000000 errcode=00000000
[  612.573590] TSC Offset = 0xfffffeb6498e9e9d
[  612.583876] TSC Offset = 0xfffffeb652b8dd68
[  612.591114] EPT pointer = 0x00000001cb88101e
[  612.594872] EPT pointer = 0x00000001b1da001e
[  612.638552] *** Guest State ***
[  612.642155] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  612.659784] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:09:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xa00)

10:09:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x19000000)

[  612.689715] IPVS: ftp: loaded support on port[0] = 21
[  612.691657] CR3 = 0x0000000000000000
[  612.730945] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  612.758891] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  612.789385] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  612.823859] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.850156] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.862982] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.874504] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.887599] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.899346] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  612.937079] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 16)
10:09:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x1a00)

[  612.948729] FAT-fs (loop3): Filesystem has been set read-only
[  612.954864] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  612.965187] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000020)
[  612.998013] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.014172] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  613.038913] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  613.055010] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  613.068649] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  613.079553] Interruptibility = 00000000  ActivityState = 00000000
[  613.087002] *** Host State ***
[  613.092097] RIP = 0xffffffff8120262c  RSP = 0xffff8801b91cf390
[  613.098158] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  613.106559] FSBase=00007fafd1387700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  613.114593] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  613.120862] CR0=0000000080050033 CR3=00000001b8725000 CR4=00000000001426f0
[  613.127988] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  613.153369] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  613.170552] *** Control State ***
[  613.178721] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  613.185462] EntryControls=0000d1ff ExitControls=002fefff
[  613.198747] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  613.209153] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  613.216204] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  613.223020]         reason=80000021 qualification=0000000000000000
[  613.229523] IDTVectoring: info=00000000 errcode=00000000
[  613.238644] TSC Offset = 0xfffffeb6498e9e9d
[  613.248586] EPT pointer = 0x00000001cb88101e
10:09:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:09:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x13)

[  613.466238] *** Guest State ***
[  613.478629] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  613.487608] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  613.508548] CR3 = 0x0000000000000000
[  613.512431] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  613.518572] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  613.524719] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  613.532548] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.540751] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.548935] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.557036] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.565149] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.573273] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.581429] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  613.589563] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  613.597671] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  613.605804] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  613.613932] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  613.613945] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  613.613955] Interruptibility = 00000000  ActivityState = 00000000
[  613.613960] *** Host State ***
[  613.613973] RIP = 0xffffffff8120262c  RSP = 0xffff88018007f390
[  613.613996] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  613.668540] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  613.677667] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  613.688559] CR0=0000000080050033 CR3=00000001bf045000 CR4=00000000001426f0
[  613.695752] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  613.702605] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  613.708813] *** Control State ***
[  613.712375] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  613.719257] EntryControls=0000d1ff ExitControls=002fefff
[  613.724833] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  613.731992] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  613.738811] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  613.745505]         reason=80000021 qualification=0000000000000000
[  613.751962] IDTVectoring: info=00000000 errcode=00000000
[  613.757533] TSC Offset = 0xfffffeb55f79917d
[  613.762019] EPT pointer = 0x00000001b390601e
[  613.849117] *** Guest State ***
[  613.855220] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  613.864717] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  613.873823] CR3 = 0x0000000000000000
[  613.877679] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  613.883917] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  613.892684] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  613.899926] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.918638] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.938920] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.952499] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.961714] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.970858] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  613.979145] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  613.987254] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  613.995579] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  614.003892] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  614.012382] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  614.019068] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  614.026705] Interruptibility = 00000008  ActivityState = 00000000
[  614.033175] *** Host State ***
[  614.036501] RIP = 0xffffffff8120262c  RSP = 0xffff8801b91cf390
[  614.042852] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  614.050624] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  614.058707] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  614.064741] CR0=0000000080050033 CR3=00000001bf045000 CR4=00000000001426f0
[  614.072001] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  614.078966] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  614.085150] *** Control State ***
[  614.098571] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  614.109830] EntryControls=0000d1ff ExitControls=002fefff
[  614.121003] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  614.135812] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  614.149330] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  614.163824]         reason=80000021 qualification=0000000000000000
[  614.176955] IDTVectoring: info=00000000 errcode=00000000
[  614.189321] TSC Offset = 0xfffffeb55f79917d
[  614.198182] EPT pointer = 0x0000000182f7c01e
10:10:01 executing program 2:
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000ec0)={&(0x7f0000000e80)='./file0\x00'}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x8300, 0x0)
ioctl$ASHMEM_PURGE_ALL_CACHES(0xffffffffffffffff, 0x770a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)="2f67726f75702e73746174003c23fb572a1f0494e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000200))
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000480)="2f67726f3c23fb57e6c60f1f4b45b74d999a9a8c2ce15b26e518a4cb3a9cd12dcea440d899c22c652b3a471b4a7db7f3fef6e02e2be389de133945a385bd81e9bdeeee03000000000000005b540745df4b1dee483b157624c5bc719a099e6a3509000000398c34", 0x2761, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240)=0x5)
write$cgroup_pid(r1, &(0x7f0000000080), 0xfffffe38)
ioctl$EVIOCREVOKE(0xffffffffffffffff, 0x40044591, &(0x7f0000000280)=0x10000)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000000)={0x5, &(0x7f00000002c0)=[{0x8, 0x8, 0x9, 0x5}, {0x2, 0x34a0a992, 0x3}, {0x9, 0xf, 0x0, 0x4}, {0x8, 0x0, 0x0, 0x80}, {0x0, 0xfff, 0x9, 0x3ff}]}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x660c, 0x100000020002933)
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000040)={0x6, 0x0, 0x10021, 0x7})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000000), 0x0, &(0x7f0000000800)}, 0x0)

10:10:01 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x20000400)
clone(0x30020100, 0x0, &(0x7f0000d70ffc), &(0x7f00001cc000), 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={<r0=>0x0, 0x0, 0x0}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000280)={r0, 0x20, 0x30, 0x600000000000, 0x5}, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340)=<r1=>0x0)
sched_setscheduler(r1, 0x0, 0x0)
inotify_init1(0x80803)

10:10:01 executing program 3:
r0 = socket(0x1000000000000010, 0x80802, 0x0)
write(r0, &(0x7f0000000040)="2400000058001f02ff07f4f9002304000a04f51107000100020100020800028001000000", 0xffffffffffffff4c)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000000)={<r1=>0x0, @multicast1, @rand_addr}, &(0x7f0000000080)=0xc)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)={'team0\x00', r1})

10:10:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000)

10:10:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x11)

10:10:01 executing program 5:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x20000, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$VT_OPENQRY(r0, 0x5600, &(0x7f0000000080))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:10:01 executing program 3:
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000000000), 0x100000000000001)
futex(&(0x7f000000cffc), 0x1, 0x0, &(0x7f000000d000)={0x0, 0x7f}, &(0x7f0000000280), 0x0)

[  615.293277] *** Guest State ***
[  615.296896] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  615.357875] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  615.379892] CR3 = 0x0000000000000000
[  615.383814] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:10:01 executing program 0:
r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x9, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
preadv(r0, &(0x7f00000013c0)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, 0x0)
ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0585609, &(0x7f0000000180)={0x0, 0x9, "2a8f5865af49c7250671f832f1ce9782bf915349fd6618fbaf11b15f24f44d12", 0x0, 0x0, 0x0, 0x70f000, 0x100000001})
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c)

[  615.421124] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  615.430302] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x13000000)

10:10:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1b00)

[  615.474655] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.513680] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.561419] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.588649] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.613352] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.639897] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  615.668669] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  615.708586] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000001000)=ANY=[])
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000540)='/dev/vcs\x00', 0x20000, 0x0)
syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000900)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, 0x0)
syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000001c0)=@abs, 0x6e, &(0x7f0000000c00)}, 0x0)
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl(r3, 0x360d, &(0x7f0000000600))
fcntl$getown(r4, 0x9)
ptrace$getenv(0x4201, 0x0, 0x0, &(0x7f0000000280))
mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]})
ioctl$KIOCSOUND(r3, 0x4b2f, 0xff)
setxattr$security_smack_entry(&(0x7f0000000800)='./file1\x00', &(0x7f0000000840)='security.SMACK64MMAP\x00', &(0x7f0000000880)='[}$keyring\x00', 0xb, 0x2)
stat(&(0x7f0000000240)='./file0/file0\x00', &(0x7f0000001e40)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, 0x0)
close(0xffffffffffffffff)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x0, 0x0, 0x3}, 0x2c)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x127)
sendto(r3, &(0x7f0000000580)="9227303d8a801e20f3c10ebb33ea106cd27e7eb3d67a5f46b5d82865a2b65da1f11a6c0922422ce150e488a8e908e0b26a2318ec76f026b63277a57e010cd01634fbbdc9827272d7f17cf83489a3e9b14b870868b934b2a85eb15701ad125a910e1cd93cbb9855cdf944f8327aa2f8f9454d1e6ec61f9d016ca52250697ba7b65d7749608bc1ce1cfd1663cb9dc88781b7633367954402b3d2419c72fe710946f8f0dff6642f0a4afb2a784ac9829bf0af4aeb9039f4eaad0d7e77b1a82d51d8dcafaf1714888e0851296284f7c6c2dc52d0e9d6d0080f5a4d3e44c5a7757e7ab9430e3e4926c432dacd6d3f3c", 0xed, 0x20000000, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, <r7=>0x0})
setsockopt$sock_attach_bpf(r7, 0x10f, 0x87, &(0x7f0000000180), 0x127)
setxattr$system_posix_acl(&(0x7f0000000180)='./file1\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f00000003c0)={{}, {0x1, 0x3}, [{0x2, 0x0, r5}, {}, {0x2, 0x1}, {0x2, 0x1}], {0x4, 0x7}, [{}, {0x8, 0x4}, {0x8, 0x4}, {0x8, 0x6}, {0x8, 0x7}], {0x10, 0x4}, {0x20, 0x3}}, 0x6c, 0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000004a00)=[{{&(0x7f0000000300)=@l2, 0x0, &(0x7f0000000740)=[{&(0x7f0000000480)=""/92}, {&(0x7f0000000680)=""/92}, {&(0x7f0000000e00)=""/4096}, {&(0x7f0000000700)=""/39}], 0x0, &(0x7f0000000780)=""/97, 0x0, 0x5}, 0x1000}, {{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f00000008c0)=""/63}, {&(0x7f0000000940)=""/74}, {&(0x7f00000009c0)=""/185}], 0x0, &(0x7f0000000ac0)=""/138, 0x0, 0x5}, 0x4}, {{0x0, 0x0, &(0x7f0000000d80)=[{&(0x7f0000000b80)=""/33}, {&(0x7f0000000bc0)=""/130}, {&(0x7f0000000c80)=""/247}], 0x0, &(0x7f0000001ec0)=""/203, 0x0, 0x8}, 0x7f}, {{&(0x7f0000001fc0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x0, &(0x7f00000033c0)=[{&(0x7f0000002080)=""/123}, {&(0x7f0000002100)=""/4096}, {&(0x7f0000003100)=""/115}, {&(0x7f0000003180)=""/130}, {&(0x7f0000003240)=""/192}, {&(0x7f0000003300)=""/121}, {&(0x7f0000003380)=""/11}], 0x0, &(0x7f0000003440)=""/35, 0x0, 0x3098}, 0x7fffffff}, {{0x0, 0x0, &(0x7f0000004540)=[{&(0x7f0000003480)=""/4096}, {&(0x7f0000004480)=""/41}, {&(0x7f00000044c0)=""/125}], 0x0, &(0x7f0000004580)=""/129, 0x0, 0x1ff}, 0x3}, {{0x0, 0x0, &(0x7f0000004900)=[{&(0x7f0000004640)=""/100}, {&(0x7f00000046c0)=""/211}, {&(0x7f00000047c0)=""/158}, {&(0x7f0000004880)=""/112}], 0x0, &(0x7f0000004940)=""/130, 0x0, 0x5}, 0x8}], 0x1, 0x0, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1, 0x2, 0x0, 0x2000, &(0x7f0000fe7000/0x2000)=nil})
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000dc0)={<r8=>0x0, 0x3c, &(0x7f00000002c0)=[@in={0x2, 0x4e22, @remote}, @in6={0xa, 0x4e24, 0x2, @dev={0xfe, 0x80, [], 0x15}, 0x64bf}, @in={0x2, 0x4e24, @local}]}, &(0x7f0000001e00)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r6, 0x84, 0x72, &(0x7f0000002040)={r8, 0x100000001, 0x20}, 0xc)

[  615.739362] IDTR:                           limit=0x00000000, base=0x0000000060000011
10:10:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x7000000)

[  615.798723] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  615.860126] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  615.895880] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  615.913803] Interruptibility = 00000000  ActivityState = 00000000
[  615.920545] *** Host State ***
[  615.923878] RIP = 0xffffffff8120262c  RSP = 0xffff88017bd7f390
[  615.930666] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  615.970037] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  616.005231] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  616.025171] CR0=0000000080050033 CR3=00000001d2f7a000 CR4=00000000001426f0
[  616.043646] ntfs: (device loop0): ntfs_fill_super(): Unable to determine device size.
[  616.111401] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  616.210841] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  616.228965] *** Control State ***
[  616.258963] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  616.290400] EntryControls=0000d1ff ExitControls=002fefff
10:10:02 executing program 2:
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000000080)="890704089a", 0xfffffffffffffdc3)
getsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000001040)=""/4096, &(0x7f0000000000)=0x1000)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff})
ioctl$DRM_IOCTL_DROP_MASTER(r1, 0x641f)

10:10:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x3800)

10:10:02 executing program 3:
r0 = socket$inet(0x2b, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000600)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x4e23, @rand_addr}, 0x10)

10:10:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x3f, 0x400)
r2 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x2000, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000180)='/dev/snd/pcmC#D#c\x00', 0x5, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000001c0)={r2, 0x0, 0x5, r3})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x10201, 0x3, 0x40000000, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r5, 0xae80, 0x0)

[  616.308543] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  616.329590] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  616.339053] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  616.346524]         reason=80000021 qualification=0000000000000000
[  616.355859] IDTVectoring: info=00000000 errcode=00000000
[  616.408510] TSC Offset = 0xfffffeb4661fc578
10:10:02 executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x5, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
clone(0x2102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x400000, 0x0)
getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000240), 0x4)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000000))
read(r0, &(0x7f0000000d00)=""/4096, 0x1000)
rt_sigtimedwait(&(0x7f0000000100), 0x0, 0x0, 0x8)
write$uinput_user_dev(r0, &(0x7f0000000880)={'syz1\x00', {}, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000]}, 0x45c)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000280)={@loopback, 0x9, 0x2, 0x2, 0x1, 0x100000000, 0x6b94, 0xb143}, 0x20)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000180)={<r2=>0x0, 0x2c, &(0x7f0000000140)=[@in={0x2, 0x4e21, @broadcast}, @in6={0xa, 0x4e22, 0x8fc6, @dev={0xfe, 0x80, [], 0x1c}, 0x7f}]}, &(0x7f00000001c0)=0x10)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000002c0)=ANY=[@ANYRES32=r2, @ANYBLOB="0100040000028000010006004d33d5f1ec2a0ddaff1d32ca650800000079f681aeccf5c6901295e549cf61179267eee7fdae78bc21130c5983e5e7e40116cf088692d4ec5b3cd487000000000000000000000000"], 0x10)

[  616.432414] overlayfs: filesystem on './file0' not supported as upperdir
[  616.448994] EPT pointer = 0x00000001d196a01e
10:10:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, r3, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:02 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$kcm(0xa, 0x20001005, 0x11)
sendmsg$kcm(r1, &(0x7f00000027c0)={&(0x7f0000000000)=@nl=@unspec, 0x80, 0x0, 0x0, &(0x7f0000000080)=[{0x18, 0x29, 0x37, 'D'}], 0x18}, 0x0)
ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000280)=""/4096)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, &(0x7f00000000c0)={0x1ff, 0x6, 0x200, 0x2, 0x6, 0x401, 0x8, 0x5, <r2=>0x0}, &(0x7f0000000100)=0x20)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000140)={r2, 0xca, "2a35bb44c3a1e87c30759d4f0a63567e469cd2bdac6783b7fc69becb0cb2e6d5c2530ba6f0ad64f2c06e09eab807946dad6eebfd262618f592a85a142840aae30196a502811a4c601810abd84f9984261213a3bf030dbead6f490ffecf22336824b2ad3df055aa54171203c9e3b2141efef75f94259d5abebbce6d60d59534db6bacdb3f1d131f1383e1841929105d5cbacce07598b49889e63eff6bb51080db8953cbebe6affbcf9ef01e729bbaafb2c0960a5e3abf6fd1c006d2e8a5435d00ef9b4ed659ad7c61f2fe"}, &(0x7f0000000240)=0xd2)

10:10:02 executing program 2:
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000100)={0x1, &(0x7f0000000280)=[{0x4d, 0x0, 0x3a4}]})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
close(r0)
fsetxattr$security_selinux(r0, &(0x7f00000001c0)='security.selinux\x00', &(0x7f0000000200)='system_u:object_r:mail_spool_t:s0\x00', 0x22, 0x3)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000180)={0x1, 0x1, [@random="e8f188be6590"]})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x7, 0x8001, 0xff, 0x8}]})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000005c0)={"766574000000000000000000bd6800", 0x43732e5398416f1a})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'\x00', 0x8400})
ioctl$TUNATTACHFILTER(r1, 0x401054d5, &(0x7f0000000600)={0x70, &(0x7f0000000240)=[{}]})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={"76657400000000000000000400", 0x43732e5398416f1a})

[  616.604136] *** Guest State ***
[  616.613455] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  616.641235] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  616.654532] CR3 = 0x0000000000000000
[  616.658642] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  616.671461] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  616.689039] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  616.699948] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  616.713179] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  616.723709] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  616.732138] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  616.740909] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:02 executing program 3:
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000b4508a)='/dev/ashmem\x00', 0x0, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/qat_adf_ctl\x00', 0x8000, 0x0)
accept4$nfc_llcp(r0, &(0x7f0000000340), &(0x7f0000000140)=0x1fe, 0x80000)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f0000000200)={'mangle\x00', 0x2, [{}, {}]}, 0x48)
ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000080)=""/166)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

10:10:02 executing program 0:
r0 = socket$inet6(0xa, 0x5, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x1}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x6b, &(0x7f00000000c0), 0xfffffffffffffd04)
r2 = dup2(r0, r0)
ioctl$VIDIOC_SUBDEV_S_EDID(r2, 0xc0285629, &(0x7f00000001c0)={0x1, 0xa4d, 0xfffffffffffffffb, [], &(0x7f0000000240)=0x20000c307})

[  616.749260] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  616.757342] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  616.757364] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1c00)

10:10:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000300)={0x0, 0x10002, 0x10, 0x0, 0x8}, 0x0)
accept4$packet(r3, &(0x7f0000000340)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000380)=0x14, 0x80000)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000003c0)={{{@in6=@loopback, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@remote}, 0x0, @in=@broadcast}}, &(0x7f00000004c0)=0xe8)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000500)={{{@in6=@dev={0xfe, 0x80, [], 0xc}, @in, 0x4e23, 0x8454, 0x4e23, 0xfffffffffffffffa, 0xa, 0x80, 0x80, 0x87, r4, r5}, {0x9, 0x7, 0x6, 0x4, 0x9, 0x8, 0x8, 0x7fffffff}, {0xfffffffffffffffc, 0x1, 0x8001, 0x60cd}, 0x6, 0x6e6bbb, 0x2, 0x1, 0x1, 0x3}, {{@in=@dev={0xac, 0x14, 0x14, 0xf}, 0x4d5}, 0x2, @in6, 0x3503, 0x3, 0x0, 0x6, 0x2, 0x40, 0x7fff}}, 0xe8)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0)={<r6=>0xffffffffffffffff}, 0x0, 0xd}}, 0x20)
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000200)={0x5, 0x104, 0x231, 0x1, 0x8, 0x1, 0x7348, 0x8, 0x101, 0xd7a5}, 0xb)
write$RDMA_USER_CM_CMD_DESTROY_ID(r3, &(0x7f00000001c0)={0x1, 0x10, 0xfa00, {&(0x7f0000000080), r6}}, 0x18)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  616.806408] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  616.838146] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  616.876760] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:10:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000080))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, &(0x7f00000002c0)="0f07f00fbaaa293584660f35f0210b0f20e06635400000000f22e00f066636f0805d080766b80500000066b9b00000000f01d90fc75d0a0f2014", 0x3a}], 0x1, 0x64, &(0x7f0000000340)=[@dstype3={0x7, 0x3}, @cr0={0x0, 0x20000000}], 0x2)
r4 = openat$vhci(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhci\x00', 0x90400, 0x0)
ioctl$UI_SET_RELBIT(r4, 0x40045566, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000380)={0x4, 0x8000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000240)="c4e27d784e9a2e660f3a0cce5743040066ba4200ed65450f800c1d5ad166baf80cb8943be38cef66bafc0ced0f21bd65652e0fc719c421656637b8010000000f01d9", 0x42}], 0x1, 0x0, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
write(r6, &(0x7f00000001c0), 0xfffffef3)
vmsplice(r5, &(0x7f0000000000)=[{&(0x7f0000000500)}], 0x1, 0x4)

[  616.928688] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
10:10:02 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x0)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x101000, 0x0)
sendmsg$kcm(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001800)=[{&(0x7f00000000c0)="88411d7a98ef14b442fbf7522de5f5a5fe2488e615b94f5ef195ca6128638771e387b2e5a54e1d659ad64b77076309f8c000c3ab7c3173f0291c837bc0e8ce3ed2cd015511aa02a187d2221df1a4cf3a1d890926dee611c7224cecd3ce07f397f55c3a59fa5a3353ba1592555429d65af6685d43705c8e334ca941bc3f23453ca52ad55728335a6beb3c1239882ca27fdcf32115102810881ea8fa47d06956d67470f847a70676b3602201d1343db46af3fc52a328e406dfbbd2134722c467e69fc7c88f58ed70bee49c7897e838ecac879cd18e7084d23407db242d14b70c21a2", 0xe1}, {&(0x7f00000003c0)="ec56ed42fe2d9cbe1d630e2075e5af7d60c7a262d2bb0d57f9cfe36b963b5064c87f0cf96b073cc4a8bc5142253f8e8c040204418d4ebd023c75bd880d9647008932d73e76484900b1c07e6f26f790279ad1f9f388f5a44c4f96b581d7c46d9fdb392ee83e99f9d12e1b4812309952bbd87de4a96652de82f3ea8dcd10238e6554dfc55b821de8c96c3e216c25898e1d943d0d2f9ae404468b91cc02c642822b69adde218c17cefc3a537b36255487a945640fd853a0a82f1ab251be2992d41dbeb9f996b4ffdc4263fca9abc8d6c691a612334a86335ae1c1c03f92291b7322adfdf4c0f6b2ca9d92c59dfb54008d00dc423961afc78b3372b0f468b07d1e161c25b58f1431d80b3a1b6b694ee8123b6c43c0a9b537a649975a34a49a6669ef712efbe3c6ddb1f552aa6684a13a9232bd4121bee7d483c01cacb2831ba55456f1d5747d4d8ebf3b7110c13e1dd2903efd62b156a3ce5998eb70c2473e9fc343acf4923a936d617bc4ed10bd35dc976bf4a1201923a5588cf95afcd1534d14ebaaed3226a55da40c68e8908cf19809a31ea43eb6f04d7e102cf4b004f3d86e336cb1a2a805e65b0ba9958a8d0289edff5cdd9e083d0f928fe508924e0427a99953480597ab75bd99d4eaec6f4733b9b204d0801be3a1d3ab4956949e07032fc0ecda66ed5f1988ae0a981a36fa875fe47e3c304069386e09c1d70242252957b53337ae259dc100145f152fd15bd2922e3e2cadd4380f79a97591f1e0da4630b941e2f720ccb609da874cc527a0ed0992d3770eb7b6d925d3b9ba90064b69caea1f2d00055a606b6bf80958391fed34c4dac4097b5971bcd3f27e326456ccda7c94eba4af833f8d77fcfa91372cee1c230a4e5665f5a1c45a4ba759a6f886415feb009a8b20606900484a9d2110e2d919edaf2fbf74635fe18225719d23399893d5f5e2b5fe394d30d1ab64d6fc8400090565a52b9daa33aba25f1661527028c9398bc5dca136e0c1aa2e1bc2e857e2821637f26ce98af7b08461b7fc92d6980e92c92b0339cb6a40ea6bc3ba279621c3fef90900d1645f143fd79ae1797db2c9915d5dbd583834a95d3c0e2896add29d19420f01c546f11bc7b1d3586330f051e737c362d31451dca61e3cbab6a0d7d7cc742d7e542697ca9ac7deee431410b68fc83805698076b79957b5e407d969a72d588fafcde693de1bed7109b63e0450ea90531ead317df6ef5de7804c680746c0549459e72a8924d2309e2b9e96dd8e5206321c42a7961704b22cfae18ab8fea10dbe8260a42086adfaceb9c76439cbee622c7c4d349ed1f144638e70b37796f5874b858458d239a193f2a276bfc7acfd97a03898ff25f798b31c4c3ee9dc1d6a59a5e881fac2d91ba6ff6e10fc428c6f485e97c98e96609914eea9959b79b7b2d1801c50b8dc97359a6fb79396ca8d75a0a20ee72d7009a9c9649d6a677d0fa62f659bccebc71ab2ef8b134f404625e61fdabb7682e0c506b3201b8c1de2f4216853a604a7bf9b333bbd44bee661c3b132628d97ddd4a263b5fed976a2f88ff3c009a23dd889378f9b99db0d5f8e9cdedb7d2d71cdfaf3f34abecddc496c427d98648b2e26dbf387e13dc2c67d214929b8756110f004117097583f19a728b00661bde8f6677a50d195b87864ac75d82ba11319e2cb0f19900634eea6fb29148ff7dd86ee0907915024a8b95b4a300c819a37cfc511d0ce3333cb1f9092e2d1fb54fc95da5c5a719ff25915d37f49c71e05e5c648ebfb0b24b8c80f51e916303b9e07d3fb296f19850ab211e22e2f4fac94867e559ee8ad4299716b3b939fcff21acc40b81ad91369c02bb60d9330b69b6b0b07d2adac7248cdb1736a31c25c5dd88bc4456e336427beb0b2f2242b74be4d6b8c726fe7a906f6f5e4dadfaa5fbdbb3333f1f7f11479fe967757296b89ec517d61da7281e7749ec33088e0fda7dfeedc437362e9c1a4c7a322fdcc9a547a41fa38a07f038112c39bf4629e54eebd5636ca87a8bb9fd94f869b53295eb7783e6626696c1f13a88679c051ce53a230ba50e0ff75aa2a060110eb2cab4c14a4e3168bb76bfff7ef37a4f5226291f06116f41efa4e35a2ffd15f69b56e2135d72e713f3d70735e23cbec3ba08b7eead5dd88456a6972a806f2718f748ab50492681b54079afb615de89922c55ac425d6f81a0bd728d78a41353ce72b02409d679253643fde1272c6860c6aa0e9b19b1040548d019587c818483cc170acbe32a5bb705453dccecc791567464e6cdbde453e69bc444e061c4476ad897ba56d20005fca1a6161019addde9b01ded43812b952ec4a4da28c33d6ffb11370ce06e3c6baaa53c55327ef75c5e23040e0c1bcbccde7fee0601b36bccf085adbc36106201fe3cda75c4a1e54d729fc3e4bb8517881e0a3fef3a4aeaf4261871fdf6b327daee7c1aefa699d75c5cfec3498edcaac096f44b2935f86d82cfa6b7244acbba8d777040ffe60a63957107811de1e2796941767a7b7c145f4dc4350e71564a98be8f66a11798202ae3ae0188b9e9e45fc6fee095e0e2b4b8506a2f46df56645bf0dc8df1ca7f60bbe0d55cd7a0ed33cf264282dc1994fb164209bdfe9eab1cfa1f5069d79fca1ab81e1588dab86dcfad1ac8e6b7ec2f654d72b274a747dbb8873ccbdbf5a2dfc49b6b5e2e81d1a75603bcc9f82353a746a5a0995a9940f8ad37dc559bff7fa14d50187721b44332b63bb527eefc2f8b84fae2677d4556b547f09285a596ec70a212cb2b4e23a86221fc15353d5c49870c41dea4e8026a9d4a4a2f6e3ba1680da184c7272e9681c874b215af15b2497bb0d6519e7cdb8ceec680ba6420fc4b514714a74215c09c6326a12dea1feacca9e39f6c0f263a16f969765fcba80d4c7cb6acb6d9c951e3bb79564dcc8f5e0bca48804be250cc3d8b2432812fba6755e061a832afbc457ffe6c75bb32cc22e524af5dd1d770b3b9b43aa6a63a3659e35f8737d505b3c6b68d486ac293b7006eca5a79df370cc18618a6e62ec0195067924533c704eeda439a392818dd794e731b83e7ff29d0dea5db7dcf38e30df6148ad3bf06773369345aa9a14d2535a557ec22d1d3d49e3c80265d01f2ca7d1cc91c53164156dc541304a9abe73e49fa874e44e97d93b2f88a7a6227f8b6eb537c5334ea3b8ec2d545ebc8ef68f40305da3b4b017fe86e3b86e004d05cbaeb7ae4c8731d2484927ad7a8aa935f3a5226fdfebd14052cefc206bcc5289f5ac485bf7e9f3101fbd31af5ac00e1945a0b97478757aac2df5bc74896e35434c9e76ef495a1a4dd4ab5aa5b1a25e4d9757ad3ad4e4de477d956e0803ba8e9ed3b73bc18ef8844ded9588e95ac2da3f81cb4b1d607aec4fc1a14352cf12606ea2944dea88ef54e27d0cfc6ab7a687de51f660a431c4aa5adf64bce20a7e62a0496df43cdd3c764bd4c0171bbe99a9411bbcf279b1fa115b8c465d2044154c901b6fcd57f62a430e75cbf569a5fc377dae972594c2e59c5d8c60e143fcb9bd677b323ecda4be9a0479c25949fd08e1ef1f0ea4f0ac308d573862803cdf323a53504e382a7178b5388a1aca16e4d2bb9f84bb70b0669b35584a1d9e9302f994d1904c13ea79001784f5350883428a8ea6ddcb71e1ccbb06de5fa0e3db84fe6304fc00b63a4e91c2ed1e175dd8fbd48f8f35a8c20eab57bf3335a264289219ae0490a71b624e462e5268d99f353a6dcc6d3fd264055fc7ef44405137f77ff128d7fa02a012e9ca465aec56bf7e0a64763c379874098f11f413088ad0d41cfacf99d9f86cbeaa4c47d455a3bcbbc8d2da16cc0c9b4687d31993c2e0fbb35f68040de4815a2771247761b6c9b2c5f5cbc175cb8b75b9fc9dc7377e42e356f4135f247e449e9eb916220dac79041be68f3b4b3f10196f85e23e8da187adb601dafb701ffe6fec9de721f4cb6ff5c6e77a470ca7aba3b7ed9e96f3826de2cd7cb5f2e8465688027598ff4bc5105ecfdd9cb807b52ff588cec898f1c024bdb02965091914930237141a5fbfca8cf5419712f5f2452d5e59efffa8c17301cfcbd849da5b3ded560e95dd29077c5d4fdeb33b4fa1aab217fa4d2086812165f90a018df7c21a882d5bef53d80f02710191b88d0b6e77b37619886376734fa8cb49ec3fa8c3daad88bd63a95fc9be623081777b4867f0863240a28993c46ac4abbf755771adce07ce2a3f0b2007294bc9567539a786d9309fbba25e743802f91b82d7553a64091976fea9517f45437bad9afd7bf2b11adfe9cf6363700172685c0f9a492f84b8334df7acfc2e124db9a26b50ab1b172c127721e7ae42ad3b288f3adb330a627b74029ae131ac0cbe77d787cab432a07f6ceb4be712f68caba7545a889b04333af4fc994768cd12b4196ebbb80b542828b983ae67a27297224bc9d574d16646417d58cfd2a43733db3e18b39e94e95e16ae9dbda9cb3574241af052d8470ddfedbd9d91fb65a47cb62ae93c959033d58d8b69f917f63137afe54c85901b92086f2eeec5aa4b51948aac81c71e7ccfde6b9dbb331422dc956b228bc29b2580d80f0ce98186d1dbfc9e0af9e62d42c5b180320d2ef22e506159614349479e10a18879428885e8b8618fc27825e74e9271fd7e2205109e6487d0134fca95cd15ccaa869d941caa38c6a52e2325e1745ffb915479d4cbc690f1f2496c01d355b80098873ae9465e10f976eeee84059da9d6eef12eff37a9682b4ea1cecc9b29d8b1e51e0ba4610a1fa206afc23ae9c3e643445464827c85f56e9961d06f95b37b742798a6209688963d071711b04fbbdd0df1e535456e6897baa1bd0b9569907c30b49fb01256a916fb8482e9ceef904fc30fe2466b5a945765a074da12a29fa9486890c27e1476b5fbc4a527e397860ed735cd88ddc4530cc4965a785a11f8d70ccbc2ab51113e2958f2bb003efeeac62a8b260736a20d53fd629715fb732404df39ad8efd81ca3d52d25af3fbd7530c8855ff92caebfc5c080a5a0b646490126c1e853b85ae706722e90095c645dd350653dcc73f1db06fa38a51ed997c53222e035f7eb9dfecceb93cbc9fe23b7bdb92303842dc47bb9713f39270c5da3f02b2ef64f0d850b6efaca7fb3ccc488edbf290ceee6e07d20b910a62bf5c8419489e77914c107eaa9743283ccc201ab0caa7879fb98dcfd836d2669652ede35a1d5982f37f16761b7456317945d5499b30fc9da0ea98254c35c1a2d9dd7269f3c489b70c7c8dd427a70b7e0f2f931ef6c8d101eb3e2a20860ed7468d7a9bb4fecc4f558e9d5a82fc86e703af0e16effb56eebb6880541c47b24e72e20dd9860bcab4e828b8029c478909274cd4ab8ba6f9926ba3a6a5f3b202ec371edf8317695b7bb644c43d163d91e6b58b212ae0346e7e09dab950a88a05d24575c230ecc5b544133c5e4e11f9ad0dad83371adb4204a261118d71e7304d271b7f05e7804b1d640c73c0c8c5001c26d66bb757146cb1ff30116a0076b53ebfbff6c5d1995e5a85792d620a194098b0bf2e87a0d1e415daf3f16517d70e9b8a8c943e9f75d3b1632ec188ffebe0d2adc0541b578b8d300b4ab0f3b6c0df47c3f70045e1ff214c151aa8444ca244ee3c716514c736503708de1b8ef812ca95406c4e7ec547996bf069a70cd4b2b7c415ef583dca57920cbd348ad40bc31ab628a50e4477a66c2b0b8d6b7bd6fd324337d15cb0fc69d5ceda972e931297f3ac2a7d015f764a34ef62222d22ba1ca9adc6925e01770a254191483e228990220228402de63222b840", 0x1000}, {&(0x7f00000001c0)="2bca8fd2e3f78e46b3c01bb2ef406b1a73015c64f610a5c27eab3fe0223e50ef0f0e3b24821f820e7adc3a8cd373639f3eacc521092681e2d01ce826d9cf846c971870ddd728bf54bd0bafce64ad62406d7fba88e32301adc704f4f412193a72aa4504a5c8d7472b76791b5166e19b719ed0ba83f3c53f301af5978d3f20703b88436daf8beebf34cc8d6fda14dde309174c1eaed6f99e30c198e07fefae992a2c0da3aa0dbd7d386f99751240f28f2334dcade989", 0xb5}, {&(0x7f0000000280)="45212475eb8eb1b3a14b263870e8a1ebe48d12d769c9ab7703a12233f4e510aece1af02e5f85e613bc68393efe2a39ad957d6d1306f04e615842412a81f3530cfa", 0x41}, {&(0x7f00000013c0)="749620e699a485160a05d74f44d52d79a6fba3c0094712422056d99b1f3acce566d868231d0f48e66e1d5c796d095139738de1f79503c13e11ba3e6292914596088ab728dc54e95608beb2a20cb15056a4e3aa3dbd3fa375b01c9d8285a9d0641377eac18f7f79679690a639c8a347f896732ac7e3917652cde4574c13f6c539b572555c3a63d1d6a9ca31f7882e61488c7032da3bfff8ac6e4be5840666ebc9608d0a4613308cb75f952726d1937df659e29fff42031c3e359a52bbd8e56d27766fb3172220bc80964a7fc799d1ae5581353fa46a61", 0xd6}, {&(0x7f00000014c0)="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", 0xfb}, {&(0x7f00000015c0)="b046d67a9abc315fee76f170c8e8d811b65cbb9db6743bbec23cd18d883ce255bc0b0e960cbd568459d5d068cd82b079408dfca3e852e8ef57cb9292cc37e4f48331ecb291b3fbc63310455cc23f18953025e09bf9a9d9c2aa2230ab6bc0ba3b6f3b8aa081a588b76f20a612c3646ef302204a99b5385dcb4431e9f71346f3dc2e6258b014f650732b1d4737627e378381f15598306d03a70f8d33a6a21d1a8e31dd46", 0xa3}, {&(0x7f0000001680)="0f86c3990da2af6d0bd2528ed4b6c02f3640f6f618def83d975dc8b3b0b284636fe38b236442eee7f1558d99afcdb8b465c7fa1ec34f9a0997228ded72b1254c601948c862845df73f355000819a0b9272bd1d033a5b37dbbb9875c96ec9d9bef92dec475e6d1bb5b9b44d7a78ce03c91e79ec5fa8ccacc7e18480014140a31c60051f504717a0b9c899b4", 0x8b}, {&(0x7f0000000300)="67a03a4cde3c75d0aad09eefafdadfb77ccdbf0f65c77faab5ecf4648bcdb0b44c63615047694feac724698691990ec767dd5738", 0x34}, {&(0x7f0000001740)="206e12a5cbabd486af168710afeeacc11b1f92973e726d99020c924e36ceb4c8442e1e40f91c9faeea87653fd207d43e3c28bf3e74c23105715e1baf5d2c43f5523daa9870082390d1720c9baa46c1a00ad7647100e33ead8fa6796d77dc8cb11c90a9ea06616ccdf08c201af60bdcec3df45b5eddd4d68547a3e61ef758dfb79958e61a1e8fcb50c3f4c5a921bfc75abf4649db", 0x94}], 0xa, &(0x7f00000018c0)=[{0x48, 0x0, 0x81, "5692b40bc5bc40f2264192d90659f1761b3a94b177267ae2741e5992fd3c72c059a4b258aea1e3d05851b17de21ebfdd6e73"}, {0xe0, 0x0, 0x6, "5b7190bf15f17984062ca0a7ec7004931876a8d193928fa4ab61484b717dc250c639da18d29f3520e24c36c43ba29c1a7580bc1d5d506761d7b96b936d6c0b6a84bf148e9dcf0cd7cb6f118155f481a6016147947b1313c42a09523f9d822c72e24d31007b41546e99a3ccfe1a37de59805cee6012f8e607ab92c31277fac40acaecd4636f465773202dd863c70444b2a8c684c56283851868ba1de1e7dc94461353134fbc2cdfe0cf2a6fb6b5a68e2e848c8659b673744cfcd6a5d34e044c6cbacc690a2d511c2d3e81"}, {0x10, 0x11b, 0x7}], 0x138, 0x4001}, 0x0)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000080)={'veth1_to_bond\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="7f7f65"]})
close(r2)
close(r1)

[  616.975265] Interruptibility = 00000000  ActivityState = 00000000
[  616.983246] *** Host State ***
[  616.992244] *** Guest State ***
[  616.998613] RIP = 0xffffffff8120262c  RSP = 0xffff8801c5fa7390
[  617.013480] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  617.028761] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  617.037613] CR3 = 0x0000000000000000
[  617.047461] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  617.066978] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
10:10:02 executing program 2:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000780)='/dev/usbmon#\x00', 0x7f, 0x600001)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, &(0x7f00000007c0))
r2 = socket$inet6(0xa, 0x5, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/autofs\x00', 0xc0, 0x0)
stat(&(0x7f00000003c0)='./bus/file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
sendmsg$nl_xfrm(r3, &(0x7f00000006c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000680)={&(0x7f00000004c0)=@newsa={0x16c, 0x10, 0x400, 0x70bd26, 0x25dfdbfb, {{@in6=@dev={0xfe, 0x80, [], 0x19}, @in=@broadcast, 0x4e20, 0x7, 0x4e23, 0x2, 0xa, 0x20, 0xa0, 0x3f, 0x0, r4}, {@in=@rand_addr=0x6, 0x4d3, 0x32}, @in=@remote, {0x2d364f0c, 0x3, 0x3, 0x7, 0x1, 0x7fff, 0x14, 0xff}, {0x3, 0x1, 0x800, 0xdb5}, {0x9, 0x3, 0x5c7e3316}, 0x70bd2c, 0x34ff, 0xa, 0x3, 0x1, 0x20}, [@algo_auth={0x7c, 0x1, {{'md4-generic\x00'}, 0x1a0, "a9cc77a624a410f4fb50d7f0c38531d89d456c1d089f7c4ef08eae13dc4d30e4c6951a8b2f4e3fce1e7be4758d023a4b1d3830a6"}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x8000}, 0x884)
ioctl(r2, 0x8912, &(0x7f0000000280)="025cc80700145f8f7640")
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="b700000000000000070000000000003d0f0da38dbd2f802b9bc8d71043219500000000000000"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0xfffffffffffffffc}, 0x48)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000008ffc)=0x57bd, 0x4)
setsockopt$sock_attach_bpf(r6, 0x1, 0x34, &(0x7f0000000300)=r5, 0x4)
r7 = socket$inet(0x2, 0x200000002, 0x401)
clock_nanosleep(0x5, 0x1, &(0x7f00000001c0), &(0x7f0000000200))
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r9, 0x107, 0x1, &(0x7f00000000c0)={0x0, 0x1, 0x6}, 0x10)
r10 = syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x6, 0x0)
ioctl$KVM_SET_CLOCK(r10, 0x4030ae7b, &(0x7f0000000140)={0x7, 0x9})
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000800)={'vcan0\x00', <r11=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000840)={@local, @remote, @empty, 0x400, 0x0, 0xfffffffffffffffe, 0x500, 0x9, 0x40, r11})
getsockopt$inet_udp_int(r10, 0x11, 0xb, &(0x7f0000000640), &(0x7f0000000740)=0x4)
ioctl$sock_ifreq(r8, 0x0, &(0x7f0000000400)={'ip6tnl0\x00', @ifru_hwaddr=@remote})
ioctl$sock_ifreq(r8, 0x8990, &(0x7f0000000040)={'bond0\x00', @ifru_names='bond_slave_1\x00'})
getsockopt$llc_int(r10, 0x10c, 0x2, &(0x7f0000000180), &(0x7f0000000240)=0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x6, 0x4, 0x8000, 0x3f}, 0x2c)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1)
fcntl$dupfd(r7, 0x0, 0xffffffffffffffff)
creat(&(0x7f0000000700)='./bus\x00', 0x0)
waitid(0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0)

[  617.076163] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  617.093350] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  617.102154] CR0=0000000080050033 CR3=00000001d2750000 CR4=00000000001426f0
[  617.110567] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  617.117594] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  617.133523] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  617.141977] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  617.144442] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.159708] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.167604] *** Control State ***
[  617.167919] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.180793] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.180850] bond0: Error: Device is in use and cannot be enslaved
[  617.189095] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.189115] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  617.189128] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  617.189156] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1a00)

[  617.189167] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  617.189184] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  617.189194] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  617.189204] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  617.189213] Interruptibility = 00000000  ActivityState = 00000000
[  617.189218] *** Host State ***
[  617.189229] RIP = 0xffffffff8120262c  RSP = 0xffff8801d8ccf390
[  617.189249] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  617.189261] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  617.189272] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  617.189285] CR0=0000000080050033 CR3=00000001c0b08000 CR4=00000000001426e0
[  617.189306] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  617.189317] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  617.189322] *** Control State ***
[  617.189348] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  617.189355] EntryControls=0000d1ff ExitControls=002fefff
[  617.189370] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  617.197471] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  617.203929] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  617.220192] EntryControls=0000d1ff ExitControls=002fefff
[  617.237918] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  617.264857]         reason=80000021 qualification=0000000000000000
[  617.307438] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  617.323311] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  617.324891] IDTVectoring: info=00000000 errcode=00000000
[  617.341227] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  617.366554] bond0: Error: Device is in use and cannot be enslaved
[  617.378647] TSC Offset = 0xfffffeb380e14938
[  617.387420] EPT pointer = 0x00000001ba38f01e
[  617.405069]         reason=80000021 qualification=0000000000000000
[  617.428981] IDTVectoring: info=00000000 errcode=00000000
[  617.443244] TSC Offset = 0xfffffeb3b07a1ce3
10:10:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x0, 0x0, 0x2, r2, 0x1})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x2, r2, 0x5})
fsetxattr$security_smack_entry(r2, &(0x7f0000000000)='security.SMACK64MMAP\x00', &(0x7f0000000040)="657468318c00", 0x6, 0x2)

[  617.468779] EPT pointer = 0x00000001ba80001e
[  617.479014] *** Guest State ***
[  617.484508] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  617.503720] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  617.518982] *** Guest State ***
[  617.533224] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  617.559309] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  617.568259] CR3 = 0x0000000000000000
[  617.573616] CR3 = 0x0000000000000000
[  617.577842] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  617.584227] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  617.591180] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  617.591497] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  617.597347] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  617.603570] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  617.610390] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.617150] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.635982] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.645708] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.654121] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.658575] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.662513] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.671222] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.686770] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.688689] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.695706] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.710977] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  617.710992] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  617.719410] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  617.727109] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  617.747412] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  617.748785] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  617.755564] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  617.764445] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  617.780883] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  617.789943] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  617.796518] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  617.797449] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  617.805546] Interruptibility = 00000008  ActivityState = 00000000
[  617.818358] *** Host State ***
[  617.824749] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3627390
[  617.828519] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  617.831109] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  617.842749] Interruptibility = 00000008  ActivityState = 00000000
[  617.844927] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  617.851023] *** Host State ***
[  617.859029] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  617.862029] RIP = 0xffffffff8120262c  RSP = 0xffff8801bdc57390
[  617.867949] CR0=0000000080050033 CR3=00000001d2750000 CR4=00000000001426f0
[  617.874048] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  617.881590] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  617.887613] FSBase=00007f88e609d700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  617.894489] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  617.902486] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  617.908481] *** Control State ***
[  617.914204] CR0=0000000080050033 CR3=00000001c0b08000 CR4=00000000001426f0
[  617.917662] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  617.924686] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  617.924698] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  617.938141] *** Control State ***
[  617.945469] EntryControls=0000d1ff ExitControls=002fefff
[  617.947666] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  617.959984] EntryControls=0000d1ff ExitControls=002fefff
[  617.960288] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  617.965499] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  617.972775] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  617.986461] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  617.993463]         reason=80000021 qualification=0000000000000000
[  618.000175] IDTVectoring: info=00000000 errcode=00000000
[  618.005743] TSC Offset = 0xfffffeb3b07a1ce3
[  618.008511] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  618.010439] EPT pointer = 0x00000001b685601e
10:10:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000040)={<r4=>0x0, 0x0, 0x3, [0x0, 0x10000, 0x100]}, &(0x7f0000000080)=0xe)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f00000000c0)={r4, 0x6d4, 0x2}, 0x8)

10:10:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x18000000)

10:10:03 executing program 0:
gettid()
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/nullb0\x00', 0x80004002, 0x0)
io_setup(0x20000000000006, &(0x7f00000000c0)=<r1=>0x0)
io_submit(r1, 0x111, &(0x7f0000001540)=[&(0x7f0000000140)={0x4068, 0x7d010000, 0xd, 0x0, 0x0, r0, &(0x7f0000000000), 0xfffffce4}])
ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1)
r2 = add_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000180)="319fcb60c73030729a7adf667cb71da4c339f4b0a0b5d2ea45ce96cdc89bd08aef4d74f57966e69df0db77e4c4864d46dd1f232f4c148ff7aeaf6f0687dfb423b522248cd9e19ca8bb6bbd985cd725ea1cb30aeed233a8b9e9a6fa8fbf5f3cbebbb1aa268d4f1404e66d800cfd816f789e92dbbe9ea3ffd374dc32", 0x7b, 0xfffffffffffffff8)
r3 = add_key(&(0x7f0000000200)='syzkaller\x00', &(0x7f0000000240)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9)
keyctl$unlink(0x9, r2, r3)
timer_settime(0x0, 0x0, 0x0, 0x0)
r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vga_arbiter\x00', 0x2, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000300)={@rand_addr, @multicast2, r5}, 0xc)
syz_open_dev$sg(0x0, 0x8000000, 0x0)

10:10:03 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast2, @in=@rand_addr}, {@in6=@ipv4={[0xfffffff0], [], @broadcast}, 0x0, 0x32}, @in6=@ipv4, {}, {}, {}, 0x0, 0x0, 0x2, 0xd101}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
r1 = socket$inet6(0xa, 0x803, 0xfba)
msync(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x7)
socket$inet6(0xa, 0x80000, 0x400)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)="1128272400", 0xffffffffffffff9c}, 0x10)
openat$cgroup_ro(r0, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0)
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000240))
getsockname(r1, &(0x7f00000004c0)=@nfc_llcp, &(0x7f0000000580)=0x80)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc)
sendmsg$nl_generic(r3, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000280))
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x8080, 0x0)

10:10:03 executing program 3:
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
r0 = syz_open_dev$dmmidi(&(0x7f0000000140)='/dev/dmmidi#\x00', 0x1000, 0x101080)
ioctl$TIOCNXCL(r0, 0x540d)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @random="a29ab0893fde", [], {@ipv6={0x86dd, {0x0, 0x6, '?:T', 0x14, 0x2f, 0x0, @remote={0xfe, 0x80, [0x0, 0x0, 0x608]}, @mcast2, {[], @tcp={{0x0, 0x883e, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, &(0x7f00000004c0)={0xfffffffffffffffe, 0x1})
r1 = add_key(&(0x7f0000000080)='cifs.spnego\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)="a369667dc92347ddd19277e39e6fddac6f2739918f9c2bbec0bac082", 0x1c, 0xfffffffffffffffc)
keyctl$setperm(0x5, r1, 0x1000000)

[  618.019271] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  618.027751]         reason=80000021 qualification=0000000000000000
[  618.034251] IDTVectoring: info=00000000 errcode=00000000
[  618.052573] TSC Offset = 0xfffffeb380e14938
[  618.056993] EPT pointer = 0x00000001ba79901e
10:10:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x4, r3})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  618.185660] ip6_tunnel: non-ECT from fe80:0000:0800:0000:0000:0000:0000:00bb with DS=0x3
[  618.237290] *** Guest State ***
[  618.244417] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
10:10:04 executing program 3:
shmget(0x0, 0x1000, 0x54000e21, &(0x7f0000ffe000/0x1000)=nil)
r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xffffffff, 0x200)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000040)={0x61, 0x101, 0x3, 0x3ff, [], [], [], 0x1, 0x7, 0x400, 0x6, "b6df29cdc024894494a0ee77f8642a9e"})

[  618.289306] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  618.341968] CR3 = 0x0000000000000000
[  618.357458] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  618.359564] *** Guest State ***
[  618.382948] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  618.412134] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  618.416762] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
10:10:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x9000000)

[  618.427957] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  618.439756] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.447172] CR3 = 0x0000000000000000
[  618.452358] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:10:04 executing program 3:
socketpair$unix(0x1, 0x400000000001, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_int(r0, 0x1, 0x9, 0x0, &(0x7f0000000200))
r2 = semget(0x1, 0x2000000000000007, 0x400)
semctl$SEM_STAT(r2, 0x0, 0x12, &(0x7f0000000080)=""/84)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000040)={'gretap0\x00', 0x5})

[  618.475826] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  618.482239] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.497464] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:04 executing program 0:
openat$userio(0xffffffffffffff9c, &(0x7f0000000400)='/dev/userio\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$binder(&(0x7f00000004c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
write(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SG_GET_COMMAND_Q(r2, 0x2270, &(0x7f00000001c0))
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000800)={0x6, 0x1, 0x6, 0x5, &(0x7f00000007c0)=[{}]})
name_to_handle_at(r1, &(0x7f0000000180)='./file0\x00', &(0x7f0000000500)={0xa2, 0x5, "832873099cd115c734ac0461bf5716a9a27b3da33746459eb3a8e8c64d3f93f92feea5be96760afcef8e548dd9523162d49facc692cd52508c9a30b2cbaede4a350a001e2d8495b409b4e8a0a87877f634685adfc0e1f854469d12c033e989acece1c6e083667c64c4085c32324d259d8a7c76cb4a5e5d32482c4eff5a72155b36b9a5b0d8c0c4e7515213fe53a81d5d15519f8f111423ffdb26"}, &(0x7f0000000240), 0x1400)
pselect6(0x40, &(0x7f00000000c0)={0x64}, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000300)={&(0x7f00000002c0), 0x8})
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000340)={<r3=>0x0, 0x3}, &(0x7f0000000380)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000003c0)={r3, 0x8, 0x7}, &(0x7f0000000440)=0x8)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000700)={0x100})

[  618.525178] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.543353] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.552810] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.575449] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.581056] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.620194] binder: 21212:21213 ioctl 2270 200001c0 returned -22
[  618.626752] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.643965] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.657466] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.665257] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  618.674801] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.675008] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.685290] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  618.700371] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  618.709114] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:10:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000)

10:10:04 executing program 3:
r0 = memfd_create(&(0x7f0000000000)='[wlan0vboxnet1)vmnet1\x00', 0x1)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000040)={{0x5, 0x8}, {0x1f, 0x3}, 0x800, 0x2, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1000000000000279, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='net/sockstat\x00')
preadv(r1, &(0x7f0000000480), 0x1000000000000157, 0x0)

[  618.715642] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  618.723808] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.746304] Interruptibility = 00000000  ActivityState = 00000000
[  618.760545] *** Host State ***
[  618.767616] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  618.776328] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb0f390
[  618.798823] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  618.813732] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  618.834284] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  618.842949] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  618.850028] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  618.878275] CR0=0000000080050033 CR3=000000017d47d000 CR4=00000000001426f0
[  618.901970] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  618.908928] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  618.917614] *** Guest State ***
[  618.921116] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  618.923018] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  618.954716] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  618.955321] *** Control State ***
[  618.971592] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  618.978586] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  618.981905] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  618.990407] EntryControls=0000d1ff ExitControls=002fefff
[  618.997109] CR3 = 0x0000000000000000
[  619.000480] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  619.004418] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  619.018740] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  619.030824] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  619.030984] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  619.043824]         reason=80000021 qualification=0000000000000000
[  619.050540] IDTVectoring: info=00000000 errcode=00000000
[  619.056117] TSC Offset = 0xfffffeb2deab7579
[  619.056577] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  619.068002] EPT pointer = 0x000000018186d01e
[  619.068076] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  619.079253] Interruptibility = 00000000  ActivityState = 00000000
10:10:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
getsockopt$inet6_dccp_buf(r3, 0x21, 0xcf, &(0x7f0000000040)=""/26, &(0x7f0000000080)=0x1a)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f00000000c0)={<r4=>0x0, 0x1ff, 0xfffffffffffffffb}, &(0x7f0000000140)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000180)={r4, 0x5a, "54b0e76f138c62fd3a1ca022a7239948539facf40850d0cde4f5978293afc779439b890f3a0d77aefdeafa91fa5fbea5bbb64f3f125c19873e6692f7f6116f097d3df55882764752cbfafdc8b4d787f112aae796758d50272cc9"}, &(0x7f0000000200)=0x62)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000015000/0x18000)=nil, &(0x7f0000000380)=[@textreal={0x8, &(0x7f0000000340)="f0815a3e5820fcf2263ef0828b0000fe260f0092f9ff66f30f6f433d660fe263c1d9ca0f060f320f2257", 0x2a}], 0x1, 0x0, &(0x7f00000003c0)=[@cstype0={0x4, 0x8}], 0x1)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000300))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1b, &(0x7f00000002c0)=0x6, 0x4)

10:10:05 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@multicast2, @in=@rand_addr}, {@in6=@ipv4={[0xfffffff0], [], @broadcast}, 0x0, 0x32}, @in6=@ipv4, {}, {}, {}, 0x0, 0x0, 0x2, 0xd101}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}}, 0x0)
r1 = socket$inet6(0xa, 0x803, 0xfba)
msync(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x7)
socket$inet6(0xa, 0x80000, 0x400)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)="1128272400", 0xffffffffffffff9c}, 0x10)
openat$cgroup_ro(r0, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0)
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000240))
getsockname(r1, &(0x7f00000004c0)=@nfc_llcp, &(0x7f0000000580)=0x80)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc)
sendmsg$nl_generic(r3, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0)
ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000280))
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x8080, 0x0)

10:10:05 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
symlink(&(0x7f00000000c0)='.\x00', &(0x7f0000000140)='./file0/file0\x00')
umount2(&(0x7f0000000240)='./file0/file0\x00', 0x4)
umount2(&(0x7f0000000580)='./file0/file0\x00', 0x0)

[  619.109916] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.116001] *** Host State ***
[  619.122495] RIP = 0xffffffff8120262c  RSP = 0xffff8801792a7390
[  619.124579] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.133185] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  619.163441] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.186376] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.200211] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.208510] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:05 executing program 3:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x420002, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x40, 0x0)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x400000, 0x0)
r0 = creat(&(0x7f0000000180)='./file0\x00', 0x40)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r2 = accept$alg(r1, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=[@op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x200}], 0x30}, 0x0)
write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa)
recvmmsg(r2, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000000)=""/84, 0x54}, {&(0x7f0000000780)=""/98, 0x62}, {&(0x7f0000000280)=""/112, 0x70}, {&(0x7f0000000340)=""/249, 0xf9}], 0x4, &(0x7f0000000440)=""/45, 0x2d}}], 0x4000000000000e9, 0x0, &(0x7f0000000640)={0x77359400})

[  619.235003] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  619.238284] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  619.252885] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.261492] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  619.262525] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  619.268194] CR0=0000000080050033 CR3=00000001d719a000 CR4=00000000001426e0
[  619.279828] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  619.290761] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  619.290776] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  619.290786] Interruptibility = 00000000  ActivityState = 00000000
[  619.290796] *** Host State ***
[  619.290807] RIP = 0xffffffff8120262c  RSP = 0xffff88017ca27390
[  619.290826] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  619.290836] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  619.290847] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  619.290861] CR0=0000000080050033 CR3=00000001b35bb000 CR4=00000000001426e0
[  619.290875] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  619.341741] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  619.358158] *** Control State ***
[  619.369630] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  619.377250] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
10:10:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
ioctl$PIO_FONTRESET(r1, 0x4b6d, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  619.380816] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  619.392818] EntryControls=0000d1ff ExitControls=002fefff
[  619.396230] *** Control State ***
[  619.398706] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  619.410294] binder: 21212:21216 ioctl 2270 200001c0 returned -22
[  619.428964] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  619.456007] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  619.468974] EntryControls=0000d1ff ExitControls=002fefff
[  619.487758] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  619.502021] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  619.534840] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  619.535991]         reason=80000021 qualification=0000000000000000
[  619.548695] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  619.560203] *** Guest State ***
[  619.563653]         reason=80000021 qualification=0000000000000000
[  619.570481] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  619.579794] IDTVectoring: info=00000000 errcode=00000000
[  619.586205] TSC Offset = 0xfffffeb280d2ca8f
[  619.590985] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  619.600209] IDTVectoring: info=00000000 errcode=00000000
[  619.605817] EPT pointer = 0x00000001cd73c01e
[  619.610730] CR3 = 0x0000000000000000
[  619.617054] TSC Offset = 0xfffffeb2c269e2cd
[  619.630527] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  619.643652] EPT pointer = 0x0000000181d2601e
[  619.649660] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  619.664424] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000180)={&(0x7f0000000080)=[0x8, 0x3, 0x8, 0xfffffffffffffffb, 0x9, 0x2, 0x8, 0x40, 0x4], 0x9, 0x2066, 0x7, 0x7, 0x0, 0xd5d, {0x6, 0x683f, 0xbf4, 0x6, 0x95cf, 0x4, 0x0, 0x1000, 0x1db, 0x5, 0x0, 0x20, 0x81, 0x100000000, "158211341c5d93f41510958b60330237d3c8faf1bad7798ceff7fb39e609a981"}})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:05 executing program 0:
openat$userio(0xffffffffffffff9c, &(0x7f0000000400)='/dev/userio\x00', 0x0, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_open_dev$binder(&(0x7f00000004c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
write(r1, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SG_GET_COMMAND_Q(r2, 0x2270, &(0x7f00000001c0))
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000800)={0x6, 0x1, 0x6, 0x5, &(0x7f00000007c0)=[{}]})
name_to_handle_at(r1, &(0x7f0000000180)='./file0\x00', &(0x7f0000000500)={0xa2, 0x5, "832873099cd115c734ac0461bf5716a9a27b3da33746459eb3a8e8c64d3f93f92feea5be96760afcef8e548dd9523162d49facc692cd52508c9a30b2cbaede4a350a001e2d8495b409b4e8a0a87877f634685adfc0e1f854469d12c033e989acece1c6e083667c64c4085c32324d259d8a7c76cb4a5e5d32482c4eff5a72155b36b9a5b0d8c0c4e7515213fe53a81d5d15519f8f111423ffdb26"}, &(0x7f0000000240), 0x1400)
pselect6(0x40, &(0x7f00000000c0)={0x64}, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000300)={&(0x7f00000002c0), 0x8})
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000340)={<r3=>0x0, 0x3}, &(0x7f0000000380)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f00000003c0)={r3, 0x8, 0x7}, &(0x7f0000000440)=0x8)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000700)={0x100})

10:10:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1d00)

[  619.690862] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.707925] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.725175] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.734255] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.773796] binder: 21263:21264 ioctl 2270 200001c0 returned -22
[  619.783357] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.813691] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:05 executing program 2:
r0 = socket$inet6(0xa, 0x803, 0x3)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0a5c2d023c126285718070")
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x1, 0x0)
ioctl$NBD_CLEAR_QUE(r2, 0xab05)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
getsockopt$packet_buf(r3, 0x107, 0x6, &(0x7f0000000100)=""/204, &(0x7f0000000040)=0xcc)
bind$netlink(r1, &(0x7f0000000200)={0x4400000010, 0x0, 0x0, 0x70a0}, 0xc)
getsockopt$netlink(r1, 0x10e, 0x8000000009, &(0x7f00007e0000)=""/4, &(0x7f0000000080)=0x4)

[  619.832644] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  619.846713] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  619.857097] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  619.865573] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  619.869984] *** Guest State ***
[  619.873980] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  619.883736] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  619.884674] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  619.891579] Interruptibility = 00000000  ActivityState = 00000000
[  619.909339] *** Host State ***
[  619.926941] RIP = 0xffffffff8120262c  RSP = 0xffff8801d337f390
[  619.933693] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  619.942025] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  619.951940] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  619.955749] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  619.967556] CR0=0000000080050033 CR3=00000001c1cca000 CR4=00000000001426f0
[  619.976001] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
10:10:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xc)

10:10:05 executing program 2:
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]})
r0 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000280)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}}, {{@in=@multicast2}, 0x0, @in6=@dev}}, &(0x7f0000000440)=0xe8)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000480)={r1, 0x1, 0x6, @local}, 0x10)
fchdir(r0)
r2 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
getsockopt$IPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x43, &(0x7f0000000080)={'NETMAP\x00'}, &(0x7f0000000140)=0x1e)
setxattr$security_capability(&(0x7f0000000380)='./bus\x00', &(0x7f00000003c0)='security.capability\x00', &(0x7f0000000400)=@v2, 0x14, 0x0)
write$P9_RMKNOD(r2, &(0x7f0000000040)={0x14}, 0x14)

[  619.976213] CR3 = 0x0000000000000000
[  619.990035] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  620.002240] *** Control State ***
[  620.015358] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  620.016794] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  620.034485] EntryControls=0000d1ff ExitControls=002fefff
[  620.044440] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  620.050482] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  620.050492] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  620.050502] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  620.050510]         reason=80000021 qualification=0000000000000000
[  620.050518] IDTVectoring: info=00000000 errcode=00000000
[  620.050525] TSC Offset = 0xfffffeb21f4f03ab
[  620.050875] EPT pointer = 0x000000017841701e
[  620.063635] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  620.077746] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.092166] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.106891] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.123386] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.131768] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.131962] overlayfs: filesystem on './file0' not supported as upperdir
[  620.140188] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  620.147223] *** Guest State ***
[  620.155036] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  620.166122] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  620.166550] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:06 executing program 3:
openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x50100, 0x0)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB='ubi2\n'], &(0x7f00000002c0)='./file0\x00', &(0x7f00000000c0)='ubifs\x00', 0x0, &(0x7f0000000140)='adfs\x00')

[  620.177550] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  620.187987] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  620.198252] CR3 = 0x0000000000000000
[  620.212631] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  620.220173] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  620.228763] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:10:06 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x4004)
r1 = getpid()
sched_getattr(r1, &(0x7f0000000040), 0x30, 0x0)
shmctl$IPC_RMID(r0, 0x0)
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)

[  620.260628] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  620.270691] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  620.276696] UBIFS error (pid: 21288): cannot open "ubi2
[  620.276696] ", error -22
[  620.278299] UBIFS error (pid: 21289): cannot open "ubi2
[  620.278299] ", error -22
[  620.285143] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  620.289490] Interruptibility = 00000000  ActivityState = 00000000
10:10:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x15000000)

10:10:06 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x8010000200000084)
bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x0, 0x0, @loopback}, 0x1c)
lookup_dcookie(0x0, &(0x7f00000000c0)=""/171, 0xab)
r2 = getpgrp(0xffffffffffffffff)
perf_event_open(&(0x7f00000003c0)={0x0, 0x70, 0x100000000, 0x7, 0xe99, 0x1ff, 0x0, 0x401, 0x10, 0xd, 0x1, 0x6, 0x0, 0xffffffff, 0x7fff, 0x100000001, 0x8, 0x1, 0x200, 0x54, 0x14, 0x7, 0x7, 0x7, 0x4, 0x7fffffff, 0x5, 0x5, 0x3, 0x8, 0x5, 0xff, 0x56, 0xf196, 0x8000, 0xfffffffffffffffe, 0x4, 0xffffffff, 0x0, 0x23d, 0x1, @perf_config_ext={0x2f0, 0x1}, 0x402, 0xffffffffffff7fff, 0x80000000, 0x1, 0x47d83121, 0x10001, 0x80}, r2, 0xe, r0, 0x9)
getresuid(&(0x7f0000000180), &(0x7f0000000300), &(0x7f0000000380))
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f00000001c0)={<r3=>0x0, @in={{0x2, 0x4e22, @remote}}}, &(0x7f0000000280)=0x84)
r4 = open(&(0x7f0000000440)='./file0\x00', 0x80100, 0x156)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000480)={r3, 0x4}, 0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f00000002c0), &(0x7f0000000340)=0x8)

[  620.318843] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.323305] *** Host State ***
[  620.332666] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.355255] RIP = 0xffffffff8120262c  RSP = 0xffff88017ca27390
[  620.360181] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.375113] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  620.395519] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.415843] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  620.431137] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.439683] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  620.462795] CR0=0000000080050033 CR3=00000001cdbab000 CR4=00000000001426e0
10:10:06 executing program 2:
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x80000000000046, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f79805854fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a")
sendfile(r0, r1, &(0x7f0000000000)=0x2500, 0x2b428a52)

[  620.478298] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  620.479048] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  620.501116] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  620.506989] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  620.515404] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  620.546474] *** Control State ***
[  620.550737] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  620.579111] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  620.602502] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  620.623498] EntryControls=0000d1ff ExitControls=002fefff
[  620.629400] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  620.642159] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  620.658757] Interruptibility = 00000008  ActivityState = 00000000
[  620.667171] *** Host State ***
[  620.671361] RIP = 0xffffffff8120262c  RSP = 0xffff8801ccd2f390
[  620.679220] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  620.682813] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  620.685719] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  620.701855] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  620.705870] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  620.707829] CR0=0000000080050033 CR3=00000001c1cca000 CR4=00000000001426f0
[  620.714569] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  620.721892] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  620.735174] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  620.735573]         reason=80000021 qualification=0000000000000000
[  620.741650] *** Control State ***
[  620.748168] IDTVectoring: info=00000000 errcode=00000000
[  620.751415] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  620.757064] TSC Offset = 0xfffffeb1f5c25b60
[  620.763635] EntryControls=0000d1ff ExitControls=002fefff
[  620.767940] EPT pointer = 0x00000001d4a3101e
[  620.774312] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  620.787060] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  620.793808] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  620.800489]         reason=80000021 qualification=0000000000000000
[  620.806879] IDTVectoring: info=00000000 errcode=00000000
[  620.812434] TSC Offset = 0xfffffeb21f4f03ab
[  620.816839] EPT pointer = 0x000000017d4db01e
10:10:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000080)='trusted.overlay.nlink\x00', &(0x7f00000000c0)={'L-', 0x9bfb}, 0x28, 0x1)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000200)={0x80000000})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000340)=<r4=>0x0)
sched_getattr(r4, &(0x7f00000001c0), 0x30, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_TRY_FMT(r3, 0xc0d05640, &(0x7f0000000400)={0xb, @pix_mp={0x112, 0x9, 0x51424752, 0x8, 0x6, [{0x7, 0x7fffffff}, {0x2, 0x5}, {0x8000, 0x7}, {0x1, 0xffffffff}, {}, {0xffffffffffff0001, 0x5}, {0xffffffff, 0xffffffffffffffff}, {0x1000, 0x4}], 0x1, 0xffff, 0x3, 0x2}})
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
r5 = msgget$private(0x0, 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000180), 0x4)
msgctl$MSG_STAT(r5, 0xb, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:06 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/dlm_plock\x00', 0x9373aefce207a29d, 0x0)
accept$packet(0xffffffffffffffff, &(0x7f0000000440)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000480)=0x14)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f00000004c0)={@ipv4, 0x51, r1})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup\x00', 0x200002, 0x0)
fchdir(r2)
mount$9p_xen(&(0x7f0000000240)='\x00', &(0x7f0000000280)='./file1\x00', &(0x7f00000002c0)='9p\x00', 0x80000, &(0x7f0000000300)={'trans=xen,', {[], [{@permit_directio='permit_directio'}]}})
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x2000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r3, 0x40345410, &(0x7f0000000200)={{0xffffffffffffffff, 0x0, 0x3, 0x3, 0x1}})
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000080)='cgroup.procs\x00', 0x2, 0x0)
setxattr$trusted_overlay_nlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f00000000c0)={'U+'}, 0x28, 0x1)
ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000340))

10:10:06 executing program 2:
r0 = socket$inet6(0xa, 0x2100000000000003, 0x2)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@ipv4={[], [], @rand_addr}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6, 0x0, 0x2b}, 0x0, @in, 0x0, 0x4, 0x0, 0x80}}, 0xe8)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={<r1=>0x0, 0xffffffffffffffff, 0x0, 0x19, &(0x7f0000000000)='/*posix_acl_accessppp1&.\x00'}, 0x30)
r2 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x8, 0x900)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={0xffffffffffffffff, 0x50, &(0x7f0000000240)={0x0, <r3=>0x0}}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={r1, r2, 0x0, 0x1, &(0x7f0000000200)='\x00', r3}, 0x30)

10:10:06 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
sysinfo(&(0x7f0000000200)=""/165)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000440)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000580))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
rt_sigprocmask(0x0, &(0x7f00000000c0)={0xfffffffffffffffa}, 0x0, 0x8)
r3 = gettid()
tkill(r3, 0x12)
pselect6(0x40, &(0x7f0000000080), &(0x7f0000000fc0), &(0x7f0000013fc0), &(0x7f0000000100), &(0x7f0000000ff0)={&(0x7f00000001c0), 0x8})
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x32, 0xffffffffffffffff, 0x0)
dup2(r1, r2)

10:10:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x11000000)

10:10:06 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x801, 0x0)
io_setup(0xc01, &(0x7f0000000480)=<r2=>0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000040))
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x402c5342, &(0x7f0000000140)={0x1ff, 0x8, 0x0, {0x0, 0x989680}})
io_submit(r2, 0x1400, &(0x7f0000000240)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r0, &(0x7f0000000140), 0x2}])
r3 = syz_open_dev$sndpcmc(0x0, 0x7f, 0x0)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f0000000040)="45d021cc2023c97435c2e7d28270e6ee", 0x10)

[  620.999643] *** Guest State ***
[  621.005136] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
10:10:06 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0)
r0 = syz_open_dev$amidi(0x0, 0x7, 0x0)
ioctl$KVM_SET_PIT2(r0, 0x4070aea0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='net/ip6_mr_cache\x00')
fsync(r0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
preadv(r1, &(0x7f0000000480), 0x10000000000001e5, 0x0)

[  621.040358] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  621.058802] CR3 = 0x0000000000000000
[  621.064690] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  621.083559] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:07 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$nl_route(0x10, 0x3, 0x0)
chmod(&(0x7f00000001c0)='./file0\x00', 0xac)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f00000018c0)={'team0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={&(0x7f0000000040)={0x10, 0x900}, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@ipv6_newroute={0x38, 0x18, 0x311, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, [@RTA_OIF={0x8, 0x4, r3}, @RTA_GATEWAY={0x14, 0x5, @loopback={0x0, 0x7200}}]}, 0x38}}, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000080), &(0x7f00000000c0)=0xc)

[  621.101341] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  621.123494] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.163950] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.186990] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:07 executing program 0:
r0 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x202, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendto(r0, &(0x7f0000000040)="45ded4b605b0be84175fdaf1bcea578e0f339e1f12a3f4797e02be4688c512722d444fd8edd2f5d5f61e498af78fb439d0e41593e1f5056b6abd", 0x3a, 0x20000000, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000001680)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000018c0)={&(0x7f00000002c0), 0xc, &(0x7f0000000000)={&(0x7f00000004c0)=@setlink={0x30, 0x13, 0x105, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_XDP={0x10, 0x2b, [@nested={0xc, 0x1, [@typed={0x8, 0x0, @fd}]}]}]}, 0x30}}, 0x0)

10:10:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x2900)

[  621.211282] IPv6: NLM_F_REPLACE set, but no existing node found!
[  621.225419] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.240614] IPv6: NLM_F_REPLACE set, but no existing node found!
[  621.253068] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.273332] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.297533] GDTR:                           limit=0x00000002, base=0x0000000000000000
10:10:07 executing program 3:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x6, &(0x7f0000000100)=0xffffffffffffffff, 0xfffffffffffffdbe)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000240)=""/134, &(0x7f0000000140)=0x86)

[  621.319955] netlink: 'syz-executor0': attribute type 1 has an invalid length.
[  621.331982] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.340410] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  621.349593] netlink: 'syz-executor0': attribute type 1 has an invalid length.
[  621.396344] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  621.416772] IPVS: length: 134 != 8
[  621.421307] IPVS: length: 134 != 8
[  621.439199] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  621.458650] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  621.479076] *** Guest State ***
[  621.482371] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  621.494814] Interruptibility = 00000000  ActivityState = 00000000
[  621.508064] *** Host State ***
[  621.512166] RIP = 0xffffffff8120262c  RSP = 0xffff8801c5fcf390
[  621.518366] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  621.525354] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  621.533421] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  621.534231] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  621.542870] CR3 = 0x0000000000000000
[  621.548524] CR0=0000000080050033 CR3=00000001c1cca000 CR4=00000000001426f0
[  621.553138] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  621.559326] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  621.565673] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  621.572111] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  621.578491] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  621.584232] *** Control State ***
[  621.591052] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.594429] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  621.609197] EntryControls=0000d1ff ExitControls=002fefff
[  621.609212] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  621.621839] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  621.628704] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  621.628782] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.635389]         reason=80000021 qualification=0000000000000000
[  621.649817] IDTVectoring: info=00000000 errcode=00000000
[  621.650723] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.655357] TSC Offset = 0xfffffeb158ccfc7a
[  621.666681] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.668546] EPT pointer = 0x00000001b1e5601e
[  621.676000] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.688105] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.688117] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  621.688133] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  621.704131] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  621.720130] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  621.728081] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  621.734574] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  621.742155] Interruptibility = 00000000  ActivityState = 00000000
[  621.748365] *** Host State ***
[  621.748384] RIP = 0xffffffff8120262c  RSP = 0xffff8801bfe1f390
[  621.748467] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  621.748481] FSBase=00007fecb7d33700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  621.757611] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  621.757628] CR0=0000000080050033 CR3=00000001c3315000 CR4=00000000001426f0
[  621.757644] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  621.757660] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  621.764907] *** Guest State ***
[  621.771913] *** Control State ***
[  621.771925] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  621.771944] EntryControls=0000d1ff ExitControls=002fefff
[  621.771957] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  621.771969] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  621.771980] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  621.772000]         reason=80000021 qualification=0000000000000000
[  621.772013] IDTVectoring: info=00000000 errcode=00000000
[  621.778142] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  621.786346] TSC Offset = 0xfffffeb11f74310b
[  621.786356] EPT pointer = 0x00000001d1dbe01e
[  621.808588] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  621.828588] CR3 = 0x0000000000000000
[  621.879300] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  621.887790] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  621.894078] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  621.901762] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.910820] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.918917] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.927052] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.935141] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.943227] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  621.951903] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  621.960077] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  621.968094] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  621.976218] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  621.984320] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  621.990845] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  621.998330] Interruptibility = 00000008  ActivityState = 00000000
[  622.004682] *** Host State ***
[  622.007926] RIP = 0xffffffff8120262c  RSP = 0xffff8801c12cf390
[  622.014034] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  622.020546] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  622.028405] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  622.034365] CR0=0000000080050033 CR3=00000001c1cca000 CR4=00000000001426f0
[  622.041472] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  622.048180] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  622.054333] *** Control State ***
[  622.057852] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  622.064624] EntryControls=0000d1ff ExitControls=002fefff
[  622.070185] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  622.077168] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  622.084582] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  622.091275]         reason=80000021 qualification=0000000000000000
[  622.097626] IDTVectoring: info=00000000 errcode=00000000
[  622.103176] TSC Offset = 0xfffffeb158ccfc7a
[  622.107533] EPT pointer = 0x00000001d855001e
10:10:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x8, 0x0, [{0x4000097b, 0x0, 0x4}, {0x400001b1, 0x0, 0x4}, {0xaef, 0x0, 0x9907}, {0x2f3, 0x0, 0x1}, {0xf7f, 0x0, 0x8}, {0x97f, 0x0, 0x9}, {0x284, 0x0, 0xfffffffffffffffa}, {0x8a, 0x0, 0x10001}]})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
setsockopt$inet6_MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000b80)={{0xa, 0x4e22, 0x2, @remote, 0x100000001}, {0xa, 0x4e24, 0x9, @mcast1, 0x80000000}, 0x20000, [0x0, 0x4, 0x36, 0x1f, 0x401, 0x3, 0x9d2b00000000, 0x9]}, 0x5c)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
r4 = syz_open_dev$sg(&(0x7f0000000c00)='/dev/sg#\x00', 0xce, 0x212040)
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000a40)={{{@in=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@remote}, 0x0, @in=@dev}}, &(0x7f0000000b40)=0xe8)
syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x1052, 0xa, &(0x7f0000000940)=[{&(0x7f0000000180)="ae7e7666c36f559711a9dfd710d6d62357c1df52f6783d62ad948eba4423f2c95432f1f047feecef93fdbeca80d46a20ec76ebcd947fa1be8b1ea79d3c573f15f459d949210994dcb30e11af9e48d75d8ee6b6d761df5c5fc010677bf33a37563ff358453de0ebcbbdd452e2f5d2b6df955d0b8b41c68b00e2ee", 0x7a, 0x9}, {&(0x7f0000000200)="6eb882549d3cd2a42053c954", 0xc, 0x8}, {&(0x7f0000000400)="2068ca72b9e9aafabf33136464255e65e28b0ef4d709a6109e4cb6880053024aa3a7745b148037b659e5596e92e6b0affa6ff4a60f3f23db841cd72a737c6b63c0a908e7461e9ca08bc29987868355177052d3b6f9ceddc7870b8bad440dd3c81d6f4d8b563c62304282087a0c5b56718f34d29d70bd3d56b97e8ce29ad4fab785652d9c0a12da48a99e1e497cb7cb8268355ee67b9763c5eb6baf3105ef34f849d42957c954156edbbc868c924c7f6b14c0a89d97f44ce01e3657fb8fc01344a7b65b1b3db5aeb347b602", 0xcb, 0x3ff}, {&(0x7f0000000300)="1dde546c8e2edf013aeaaa58ede9570263fb137acaabfb16911b689ecafced184e4962071e9bbaed2f1af16c4bb1091f2dccf819a238b344ebf4421c5ac2b036bbaaa141c5673177dfc1b20c08ba0cca0f27af8b901606bb167511b7dfc3c5cc80d83bad3a762af95f6bd9ea9d6b4fc7269a67deb6f429e9a5217e048e76cd6fae08fcda2628646a9fe3a7b9ee8bcd40", 0x90, 0xac}, {&(0x7f0000000500)="0d6b2fae706ae67cf99f4c1b372409863e29b27b735748e6e1f42b483090b349f1b29f81332b6deb0d2a8ba6f876fed96e976ec3f90a727020aac7a9cd0abdeca8e7b3650e070b0b1edbbe68c36dcdad362f8219304e6d37b697485acdb5cd61533069dbb85f3af34e8b84d79e77e2a7252b02de9a03044b61024736e361d1f281e9964780e716cce3cf7d9bb721e7e3259a0a5c551a94b68ba1a21c13f5933650238648febf1acfcc15cf77311e691b4cd49e7c1ad317b1aee4d998055b89bc1ca29dd8c58e5ead04f9656b26731247583b9cb8c2b2099cc7153bbe46e5e27bb30916bd428ba2917b1a90428967fdfcd9ec9f", 0xf3}, {&(0x7f0000000600)="bb0d39", 0x3, 0xfffffffffffffff7}, {&(0x7f0000000640)="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", 0xfd, 0x6}, {&(0x7f0000000740)="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", 0xfa, 0xfffffffffffffff9}, {&(0x7f0000000840)="eee65ee99fc6dd7261353341", 0xc, 0x7ff}, {&(0x7f0000000880)="2ddee217d3b07494c55f0c90e4cbfdd0a20e65f985a68b146ddd2030553deab82ce0dfcd1b12c8bb1c7f2afdd56f05d9124e253dd29d52207e446f0e6c7b3a1c29b32d7013332236a55665276bb4a363b345c641420c00cb06e0ebdffb1d6bfaa778d7924b76bbbe5d98e975dd5bcbae97c74315026c02c9252da77eae9677efe73aa3023e46f13e88", 0x89, 0x9}], 0x2000000, &(0x7f0000000c40)=ANY=[@ANYBLOB="c50a6e6f737569646469722c6c6f636b746162cb653d75736572002c7569643d", @ANYRESDEC=r5, @ANYBLOB=',obj_user=^system$,appraise,func=CREDS_CHECK,smackfshat=ppp1[em1&mime_type,\x00'])
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x7fffffff)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r6 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000cc0)={r3, r1, 0xf, 0x2}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
dup2(r4, r6)

10:10:08 executing program 0:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x80, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000080)={0x3f, 0x7, 0x80, 0x1a1700000, 0x0, 0x7ff})
ppoll(&(0x7f0000000040)=[{}, {0xffffffffffffffff, 0x100}], 0x2, 0x0, 0x0, 0x0)

10:10:08 executing program 3:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x111)
sched_setaffinity(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x767741f40e8734bb, 0x0)
ioctl$NBD_SET_SIZE(r1, 0xab02, 0x84e)
epoll_create1(0x80000)
openat$null(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/null\x00', 0x80, 0x0)
restart_syscall()
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)="db04", 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
sendto$inet(r0, &(0x7f0000000000), 0x0, 0xc0, 0x0, 0x0)
syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x8, 0x2)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r1, 0x12, 0x2, &(0x7f0000000180), &(0x7f0000000200))

10:10:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1200000000000000)

[  622.160972] Unknown ioctl 1079530316
10:10:08 executing program 3:
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x80002, 0x100000002532, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0xc812, r0, 0x0)
futex(&(0x7f0000000100), 0x85, 0x0, &(0x7f0000000040), &(0x7f0000000140), 0x34000000)

[  622.230857] *** Guest State ***
[  622.248989] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  622.263667] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  622.266231] gfs2: invalid mount option: Å
[  622.266231] nosuiddir
[  622.282794] CR3 = 0x0000000000000000
[  622.286709] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  622.292914] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  622.299271] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  622.311145] *** Guest State ***
[  622.315530] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.319645] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  622.335923] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.337726] gfs2: can't parse mount arguments
[  622.349543] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  622.355276] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.359117] CR3 = 0x0000000000000000
[  622.368877] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.370809] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  622.383711] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.387260] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  622.398776] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.398976] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  622.413725] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  622.421937] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.430565] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.442594] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  622.446647] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.475118] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  622.479645] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.485153] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  622.499047] gfs2: invalid mount option: Å
[  622.499047] nosuiddir
[  622.504574] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  622.505617] gfs2: can't parse mount arguments
[  622.514932] Interruptibility = 00000000  ActivityState = 00000000
[  622.518151] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.533250] *** Host State ***
[  622.534159] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.544975] RIP = 0xffffffff8120262c  RSP = 0xffff8801b91cf390
[  622.545171] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.559200] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  622.559573] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  622.566349] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  622.574490] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  622.590154] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  622.598988] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  622.599915] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  622.607218] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  622.619950] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  622.627657] Interruptibility = 00000000  ActivityState = 00000000
[  622.634493] *** Host State ***
[  622.637969] RIP = 0xffffffff8120262c  RSP = 0xffff8801823bf390
[  622.639946] CR0=0000000080050033 CR3=00000001d378d000 CR4=00000000001426f0
[  622.644493] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  622.657923] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  622.661166] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  622.673011] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  622.673389] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  622.679389] CR0=0000000080050033 CR3=0000000185950000 CR4=00000000001426e0
[  622.692604] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  622.692606] *** Control State ***
[  622.692617] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  622.699722] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  622.702967] EntryControls=0000d1ff ExitControls=002fefff
[  622.709870] *** Control State ***
[  622.715825] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  622.721590] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  622.724840] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  622.732001] EntryControls=0000d1ff ExitControls=002fefff
[  622.739604] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  622.750945]         reason=80000021 qualification=0000000000000000
[  622.764222] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  622.764240] IDTVectoring: info=00000000 errcode=00000000
[  622.773587] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  622.776980] TSC Offset = 0xfffffeb0acc670de
[  622.787174] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  622.798345]         reason=80000021 qualification=0000000000000000
[  622.800941] EPT pointer = 0x00000001c5e0b01e
[  622.806247] IDTVectoring: info=00000000 errcode=00000000
[  622.815194] TSC Offset = 0xfffffeb0afa4b70c
[  622.820010] EPT pointer = 0x00000001b82d201e
[  622.909162] *** Guest State ***
[  622.912556] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  622.921576] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  622.930539] CR3 = 0x0000000000000000
[  622.934333] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  622.940455] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  622.946480] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  622.955563] Unknown ioctl 1079530316
[  622.968497] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  622.988921] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  622.996974] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  623.016746] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  623.024873] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  623.032978] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  623.045019] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  623.053176] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  623.061601] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  623.069704] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  623.077722] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  623.084308] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  623.091892] Interruptibility = 00000008  ActivityState = 00000000
[  623.098160] *** Host State ***
[  623.101469] RIP = 0xffffffff8120262c  RSP = 0xffff88017ee17390
[  623.107488] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  623.114004] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  623.121941] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  623.127886] CR0=0000000080050033 CR3=00000001d378d000 CR4=00000000001426f0
[  623.135022] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  623.142473] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  623.148645] *** Control State ***
[  623.152158] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  623.159000] EntryControls=0000d1ff ExitControls=002fefff
[  623.164505] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  623.171542] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  623.178250] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  623.184914]         reason=80000021 qualification=0000000000000000
[  623.191311] IDTVectoring: info=00000000 errcode=00000000
[  623.196802] TSC Offset = 0xfffffeb0acc670de
[  623.201199] EPT pointer = 0x000000017841701e
10:10:17 executing program 2:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x4, 0x0)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000600)='/dev/dlm-control\x00', 0x800, 0x0)
io_setup(0x800000000000003, &(0x7f0000000080)=<r1=>0x0)
io_submit(r1, 0xce, &(0x7f0000000480)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x5, r0, 0x0}])
r2 = open(&(0x7f0000000040)='./file0\x00', 0x10400, 0x1)
ioctl$TUNSETFILTEREBPF(r2, 0x800454e1, &(0x7f0000000440)=r2)
io_cancel(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7, 0x3, r0, &(0x7f0000000300)="5b153b3379aac0957d5a27cb843f93d77b4b971cb0693d50676d1077ffe8fca9c685eac16cf5f001519fafdcbba5212257b686d3803ded95189c6b4bbdfce5e67db809cc5b16f0f2208ccd31a270d3fb682553c7d1a4bad70126ec53f97c1ac41f1b3b72d8b0c6ef0bdb30d8a0a3d06bf1706075abcd85930cc0ae77584e60b75096186a8389d8ce084718a3253bec8faf374c6a9149e496d851", 0x9a, 0x1, 0x0, 0x2, 0xffffffffffffff9c}, &(0x7f00000000c0))
ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000200)="4abdaf063b235deb55d292b42e1cf301314b769193bc389735e72092c6de49515fe4aa9fdbd0fe36ebf10f357ea48d39dee171de29231b2646bd962d0db70ee1d05029f96ec530398b36df85bc1f85fff329e7caff25518b7304b6e7929fe627e9c20222fa81a7743721e9d48becfb1193fb6770fb367f1f70df80f099e2868142169088f4e32dfb97a5d245bed687c43119d7e974e8079156cc5388ccd7019df350273e9f108b4b4dde8a852d1417156adb2fc0999d59dee8fea2af6e5bca1427f120e34bd9b738a805ec5b76fb81f3ca7754efa9c7df04b881761b06a2f17bfb21036a2b67050813e671edd429")
write$sndseq(r2, &(0x7f00000004c0)=[{0x7f, 0x4, 0x0, 0x8843, @time, {0xffffffffffffff84, 0xff}, {0xff, 0x6}, @ext={0x25, &(0x7f0000000140)="956252d0f73cf32c9684ebadf7cd3c59591f63935b9338af4447ede8f599fe038d70f45727"}}, {0x0, 0x101, 0x401, 0x42, @tick=0x4, {0x3ff, 0x7}, {0x30b, 0x5}, @queue={0x401, {0x0, 0xd1}}}, {0x8, 0x2, 0x81, 0x1, @time={0x77359400}, {0x1, 0x6}, {0x5, 0x5}, @time=@tick=0x3f}, {0xffffffff, 0x81, 0xffffffff80000001, 0x7fffffff, @tick=0x6, {0xefe, 0x6}, {0x20, 0x5}, @raw32={[0xfffffffffffffffa, 0x3, 0xec]}}, {0x1ff, 0x7, 0xfffffffffffffff8, 0x7ff, @tick=0x8, {0x5, 0x8}, {0x7, 0x20}, @ext={0x7c, &(0x7f00000003c0)="268068976e97cd3c09e03c0a089f42df870d7f6ca0c245904803e643981314afca4be9de64f0ba016eb8d7f95f3bb959890800ca69cb1ba854e5402d8aff959d1867aeba59be4eee7e28ce2222348fb9efe52117f1deb319208b654b3727a7f2aeadd41aab0f26a3ce8cb56c6b4cc2d7b4dddfca5a5e245e95be6e56"}}, {0x10001, 0x7cd, 0x2, 0x100000001, @time={0x77359400}, {0x5, 0x9}, {0x1000, 0x100000001}, @connect={{0xfffffffffffffff8, 0x351}, {0x1f, 0x5}}}], 0x120)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r2, 0x114, 0xa, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x3)

10:10:17 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000013000/0x1000)=nil, 0x1000, 0x4, 0x14, 0xffffffffffffffff, 0xfffffffffffffffd)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000003fe8))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r3, 0x84, 0x8, &(0x7f0000013e95), 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'lo\x00', &(0x7f0000000000)=@ethtool_rxfh_indir={0x1c}})
close(r3)
close(r2)
r4 = dup3(r2, r0, 0x80000)
ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000040)=0x243)

10:10:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x4000000)

10:10:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={<r4=>0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f00000000c0)=0x8c00, 0x4)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
msync(&(0x7f0000021000/0xf000)=nil, 0xf000, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSWINSZ(r3, 0x5414, &(0x7f0000000180)={0x8, 0xbe95, 0x8001, 0x6})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000400)={r4, @in6={{0xa, 0x4e23, 0x6, @remote, 0xb066}}, [0xb6, 0x7fff, 0x14, 0x7, 0x5, 0x2, 0xff, 0x3, 0x2, 0xde, 0x3, 0xf59, 0x31, 0x7, 0x2]}, &(0x7f0000000080)=0x100)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:17 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x167, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000009300)=[{{&(0x7f0000003b40)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000009540)=[{&(0x7f0000004f00)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, &(0x7f0000001380)={0x77359400})
r2 = dup(r0)
write$P9_RCLUNK(r2, &(0x7f0000000040)={0x7, 0x79, 0x1}, 0x7)

10:10:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x3, {0x6, 0xffffffffffffffff, 0x8000, 0xb4, 0xcd5, 0x9}, 0xffffffffffffffad, 0xfa}, 0xe)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  631.854277] *** Guest State ***
[  631.857696] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  631.866898] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:10:17 executing program 3:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$kcm(0x2, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000400)=@in={0x2, 0x4e21, @local}, 0x80, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000070000008907040000160000f8af375556f23c4d0f03a94dcdf3786c09f10df83d9a10c177"], 0x18}, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x4801, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r2, 0x0, 0x1000, 0x1f, &(0x7f0000000480)="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", &(0x7f0000000080)=""/31, 0x25}, 0x28)

[  631.904317] CR3 = 0x0000000000000000
10:10:17 executing program 2:
r0 = socket(0xb, 0x880f, 0x2)
write(r0, &(0x7f0000000000)="2400000052001f0014f9f407002c04000a00071008000100ffffffff0800000000000000", 0x24)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x2000, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000080)=0x6000)

[  631.958694] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  632.000108] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  632.032570] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xd00000000000000)

[  632.068714] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.078875] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.093850] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:18 executing program 2:
socketpair$unix(0x1, 0x10001, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x1)
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prctl$PR_GET_THP_DISABLE(0x29)

[  632.122254] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.159709] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:18 executing program 3:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'vlan0\x00', 0x1000000802})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={"766c616e300000f6ffffffffffffff00", {0x2, 0x0, @loopback}})
r3 = socket$inet(0x2, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000140)={@dev={0xfe, 0x80, [], 0x19}, @empty, @empty, 0xe52f, 0x200, 0x10000, 0x500, 0x3, 0x800000, r4})
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
dup3(r0, r3, 0x0)
dup3(r1, r2, 0x0)

[  632.184346] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.220189] GDTR:                           limit=0x00000002, base=0x0000000000000000
10:10:18 executing program 0:
r0 = socket$packet(0x11, 0x100000000000002, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x6000000, 0x3, 0x6000000, 0x3}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0x20000000009, &(0x7f0000000000), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000080)="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")

[  632.257696] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1e000000)

10:10:18 executing program 2:
open$dir(&(0x7f0000000000)='./file0\x00', 0x2040, 0x0)
mount$fuse(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x17cd, &(0x7f0000000180)=ANY=[])
mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000580)='fuse\x00', 0x79fd, &(0x7f0000000240)=ANY=[])
socket$pppoe(0x18, 0x1, 0x0)
syz_open_dev$vbi(&(0x7f0000000100)='/dev/vbi#\x00', 0x2, 0x2)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x40086607, &(0x7f0000000080))

[  632.320195] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  632.343061] *** Guest State ***
[  632.346375] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  632.346390] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  632.346397] CR3 = 0x0000000000000000
[  632.346408] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  632.388723] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  632.409592] EFER =     0x0000000000000000  PAT = 0x0007040600070406
10:10:18 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'salsa20\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="ab553fec947a1333177e24b5ebadf404", 0x7)
r1 = accept$alg(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000000)={'bond_slave_0\x00', {0x2, 0x4e22, @loopback}})
write$binfmt_script(r1, &(0x7f0000000300)=ANY=[], 0xffffffaa)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r1, &(0x7f0000004740)=[{{&(0x7f00000007c0)=@pptp={0x18, 0x2, {0x0, @rand_addr}}, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000840)=""/82, 0x52}, {&(0x7f0000000b40)=""/166, 0xa6}, {&(0x7f0000000c00)=""/197, 0xc5}], 0x3, &(0x7f0000000ec0)=""/210, 0xd2}}], 0x1, 0x0, &(0x7f0000004840))

[  632.428817] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  632.444327] Interruptibility = 00000000  ActivityState = 00000000
[  632.458806] *** Host State ***
[  632.468934] RIP = 0xffffffff8120262c  RSP = 0xffff880181aff390
[  632.481081] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  632.491901] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  632.499830] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  632.507803] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  632.514038] CR0=0000000080050033 CR3=00000001bee61000 CR4=00000000001426f0
[  632.518844] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  632.522048] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  632.535101] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  632.541494] *** Control State ***
[  632.541680] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.545094] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  632.562586] EntryControls=0000d1ff ExitControls=002fefff
[  632.568226] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
10:10:18 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000000)={0x7fff, 0x6, 0x3, 0x42}, 0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in={{0xa, 0x0, @dev}}, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x9c)
sendto$inet6(r0, &(0x7f0000000100)="b9", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x400000, 0x0)
ioctl$ASHMEM_GET_NAME(r1, 0x81007702, &(0x7f0000000080)=""/56)

[  632.575475] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  632.585806] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  632.602507] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.615901]         reason=80000021 qualification=0000000000000000
[  632.650816] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.675308] IDTVectoring: info=00000000 errcode=00000000
[  632.688547] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.693612] TSC Offset = 0xfffffeab873993eb
[  632.701512] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.721377] EPT pointer = 0x00000001bb91501e
[  632.739833] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.756901] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  632.759086] *** Guest State ***
[  632.772876] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  632.777784] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  632.782962] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  632.782967] CR3 = 0x0000000000000000
[  632.782972] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  632.782978] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  632.782992] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  632.783000] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.783013] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.790225] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.847473] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  632.856586] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  632.866196] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  632.874184] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  632.881854] Interruptibility = 00000000  ActivityState = 00000000
[  632.888186] *** Host State ***
[  632.898565] RIP = 0xffffffff8120262c  RSP = 0xffff8801d2c47390
[  632.900940] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.904841] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  632.919644] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.929065] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  632.932660] FSBase=00007f88e60be700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  632.937173] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  632.953814] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  632.955945] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  632.961983] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  632.972339] CR0=0000000080050033 CR3=00000001ce492000 CR4=00000000001426f0
[  632.975945] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  632.991109] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  632.991855] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  633.004489] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  633.010767] *** Control State ***
[  633.014370] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  633.022198] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  633.029107] Interruptibility = 00000008  ActivityState = 00000000
[  633.035462] *** Host State ***
[  633.038889] EntryControls=0000d1ff ExitControls=002fefff
[  633.044481] RIP = 0xffffffff8120262c  RSP = 0xffff8801b7457390
[  633.050696] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  633.057779] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  633.064431] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  633.072467] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  633.079387] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  633.085376] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  633.092180] CR0=0000000080050033 CR3=00000001bee61000 CR4=00000000001426f0
[  633.099404]         reason=80000021 qualification=0000000000000000
[  633.105855] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  633.112747] IDTVectoring: info=00000000 errcode=00000000
[  633.118326] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  633.125369] TSC Offset = 0xfffffeab523acf35
[  633.129919] *** Control State ***
[  633.133461] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  633.140347] EPT pointer = 0x00000001b7c6b01e
[  633.158626] EntryControls=0000d1ff ExitControls=002fefff
[  633.168678] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  633.187030] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  633.193856] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  633.216916]         reason=80000021 qualification=0000000000000000
[  633.223478] IDTVectoring: info=00000000 errcode=00000000
[  633.238522] TSC Offset = 0xfffffeab873993eb
[  633.242926] EPT pointer = 0x0000000180ccd01e
10:10:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
write$FUSE_NOTIFY_POLL(r3, &(0x7f0000000040)={0x18, 0x1, 0x0, {0x80}}, 0x18)

10:10:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1800)

10:10:19 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000))
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f00000000c0)={@my=0x0})
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000080)={<r3=>0x0, 0x2}, &(0x7f0000000100)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r2, 0x84, 0x66, &(0x7f0000000140)={r3, 0x2}, &(0x7f0000000180)=0x8)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_dgram(r4, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x0}, 0x10)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000))
tkill(r0, 0x1004000000016)

10:10:19 executing program 3:
r0 = getpid()
r1 = memfd_create(&(0x7f0000000040)='\x00', 0x1)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r0, r1, 0x0, 0x6, &(0x7f0000000080)="657468318900"}, 0x30)
r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f0000000000)={r3}, 0x14)

10:10:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
write$P9_RCLUNK(r3, &(0x7f0000000080)={0x7, 0x79, 0x1}, 0x7)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:19 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='trusted.overlay.opaque\x00', &(0x7f0000000100)='y\x00', 0x2, 0x1)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)='fusectl\x00', 0x11, 0x0)

[  633.410078] *** Guest State ***
[  633.412336] *** Guest State ***
[  633.413469] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  633.418307] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  633.448959] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:10:19 executing program 2:
r0 = socket$inet6(0xa, 0x80003, 0x10000000fa)
clone(0x4002102001ffd, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000140))
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x29, 0x16, &(0x7f00000000c0)={0xfffffffffffffffd}, 0xfffffffffffffe65)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000002c0), 0xc)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc)
add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240), 0x0, 0x0, 0xfffffffffffffffe)
seccomp(0x0, 0x0, &(0x7f0000000100))
ioprio_set$uid(0x0, 0x0, 0x0)

[  633.476203] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  633.500546] CR3 = 0x0000000000000000
[  633.508214] CR3 = 0x0000000000000000
[  633.508581] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  633.520090] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  633.537432] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  633.548739] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  633.557793] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  633.564958] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.578642] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  633.589269] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.595169] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.618559] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.628193] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.631859] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.649307] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.659490] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.675739] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.688883] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.702380] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  633.710967] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.714302] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.727322] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  633.728478] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.738501] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  633.758030] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  633.758759] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  633.772555] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  633.777052] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  633.789262] Interruptibility = 00000000  ActivityState = 00000000
[  633.795664] *** Host State ***
[  633.796943] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  633.807400] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  633.808783] RIP = 0xffffffff8120262c  RSP = 0xffff88011ea7f390
[  633.816336] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  633.822633] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  633.828141] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  633.840238] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  633.843999] Interruptibility = 00000000  ActivityState = 00000000
[  633.850287] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  633.862513] CR0=0000000080050033 CR3=00000001c9dc2000 CR4=00000000001426f0
[  633.868505] *** Host State ***
[  633.873049] RIP = 0xffffffff8120262c  RSP = 0xffff88011ef07390
[  633.878531] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  633.887309] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  633.888505] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  633.897157] *** Control State ***
[  633.903400] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  633.908493] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  633.917164] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  633.917959] EntryControls=0000d1ff ExitControls=002fefff
[  633.930331] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  633.932938] CR0=0000000080050033 CR3=000000011ec28000 CR4=00000000001426e0
[  633.937402] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  633.955428] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  633.958543] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  633.967604] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  633.971183]         reason=80000021 qualification=0000000000000000
[  633.975097] *** Control State ***
[  633.985854] IDTVectoring: info=00000000 errcode=00000000
[  633.992953] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  633.993770] TSC Offset = 0xfffffeaab06265a2
[  634.005028] EntryControls=0000d1ff ExitControls=002fefff
[  634.008636] EPT pointer = 0x000000011e55501e
[  634.015258] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  634.028768] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  634.041243] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  634.054912]         reason=80000021 qualification=0000000000000000
[  634.065491] IDTVectoring: info=00000000 errcode=00000000
[  634.073349] *** Guest State ***
[  634.076046] TSC Offset = 0xfffffeaab4947a45
[  634.076720] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  634.084720] EPT pointer = 0x00000001cda9701e
[  634.094627] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  634.123398] CR3 = 0x0000000000000000
[  634.127423] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  634.133595] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  634.140005] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  634.158890] *** Guest State ***
[  634.168605] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.181008] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  634.199298] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.207367] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.216121] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  634.226063] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.234513] CR3 = 0x0000000000000000
[  634.238307] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  634.244449] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.252572] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  634.258740] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.266783] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  634.275165] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  634.282018] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.290137] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  634.298216] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.306366] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  634.314482] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.323417] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  634.331418] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.331448] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.331471] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  634.339777] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  634.362274] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  634.370165] Interruptibility = 00000008  ActivityState = 00000000
[  634.375080] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  634.376495] *** Host State ***
[  634.388015] RIP = 0xffffffff8120262c  RSP = 0xffff880112237390
[  634.394342] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  634.398535] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  634.408624] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  634.416874] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  634.417722] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  634.426264] CR0=0000000080050033 CR3=00000001c9dc2000 CR4=00000000001426f0
[  634.443131] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  634.448472] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  634.457876] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  634.457965] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  634.469869] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  634.472106] *** Control State ***
[  634.483653] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  634.488096] Interruptibility = 00000008  ActivityState = 00000000
[  634.493794] EntryControls=0000d1ff ExitControls=002fefff
[  634.496598] *** Host State ***
[  634.496611] RIP = 0xffffffff8120262c  RSP = 0xffff880110a47390
[  634.496632] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  634.496645] FSBase=00007f88e60be700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  634.505507] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  634.533693] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  634.534600] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  634.540655] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  634.553187]         reason=80000021 qualification=0000000000000000
[  634.559842] IDTVectoring: info=00000000 errcode=00000000
[  634.565104] CR0=0000000080050033 CR3=000000011ec28000 CR4=00000000001426f0
[  634.565385] TSC Offset = 0xfffffeaab06265a2
[  634.576983] EPT pointer = 0x000000011e55901e
[  634.583469] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  634.598588] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  634.611464] *** Control State ***
[  634.615014] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  634.621945] EntryControls=0000d1ff ExitControls=002fefff
[  634.629397] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  634.637733] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  634.644836] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  634.651804]         reason=80000021 qualification=0000000000000000
[  634.658261] IDTVectoring: info=00000000 errcode=00000000
[  634.664234] TSC Offset = 0xfffffeaab4947a45
[  634.678574] EPT pointer = 0x000000013c2fc01e
10:10:20 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xaefb)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x20000006, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty={[0xe00000000000000, 0xfe80000000000000, 0x0, 0xe603000000000000]}}, 0x1c)

10:10:20 executing program 3:
r0 = accept4$unix(0xffffffffffffff9c, &(0x7f0000000480)=@abs, &(0x7f0000000000)=0x6e, 0x800)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00'})
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000440)='/dev/hwrng\x00', 0x20101, 0x0)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000040)={<r3=>0x0, 0x2}, &(0x7f0000000080)=0x8)
connect$llc(r2, &(0x7f0000000400)={0x1a, 0x33f, 0x1, 0x8, 0x400, 0x2, @broadcast}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f00000000c0)=ANY=[@ANYBLOB="e5000000", @ANYRES32=<r4=>0x0, @ANYRES32=0x0], &(0x7f0000000100)=0xc)
getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f00000001c0)={r3, 0x80000000, 0x1, 0x5997, 0xfff, 0x1, 0xead3, 0x1, {r4, @in={{0x2, 0x4e20, @loopback}}, 0x1, 0x100000000, 0xcf, 0x9, 0x2}}, &(0x7f0000000380)=0xb0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f00000003c0)=[@in={0x2, 0x4e23, @remote}], 0x10)
sendmmsg(r1, &(0x7f0000000540)=[{{&(0x7f0000000300)=@nfc={0x27, 0x1}, 0x80, &(0x7f0000000080), 0x0, &(0x7f0000000000)}}, {{&(0x7f0000000280)=@ethernet={0x306, @local}, 0x80, &(0x7f0000000080), 0x0, &(0x7f00000005c0)}}], 0x2, 0x0)

10:10:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xe00)

10:10:20 executing program 2:
r0 = socket$inet6(0xa, 0x1000000000002, 0x0)
ioctl(r0, 0x8912, &(0x7f00000001c0)="0a5cc80700315f85715070")
socketpair(0x8, 0x4, 0x2000000000, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f00000000c0)={0x9, 0xfffffffffffff001, 0x8, {0x77359400}, 0x9, 0xffffffffffffff80})
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@local, @random="a29ab0893fde", [], {@ipv6={0x86dd, {0x0, 0x6, '?:T', 0x38, 0x6, 0x0, @remote, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x8}}}}}}}, &(0x7f00000004c0)={0x0, 0x4, [0x0, 0x6b8]})

10:10:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000000040)={0x0, 0x8, 0x4, 0x9, 0x0, 0x54f6, 0x3, 0x1ff, {<r4=>0x0, @in6={{0xa, 0x4e20, 0x5, @remote, 0x1}}, 0x0, 0x6, 0x2, 0x3, 0xfffffffffffff20c}}, &(0x7f0000000140)=0xb0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f00000002c0)={r4, 0xf7, "78f2aead32efbcf64887529d882baf9a7deaaba7da0d9415e1f2bfbad330d026af07fe09626208dad61714f13a407341af6bb89af7caab3d2076eda48cc5a33b548c79fe49d90b3b0882c18c9ef31a8c7ce42f1d7d2096d3ea52b2912ced21c5cf8090879b58b2847d8a71679d804544da5708e31369cfd7ac60a15bab4ad6caaffa4194e6b2a5ebee5a3e3de0f309f2a453fda16e5874fa20897b81fc88b79d1e5bc32291f1341a93a9d1570c62fe3ca41bb59eca9ebf361d5e8dce4b2437c3365578ea44b43164224637c1effd30915ec2d2b0e21168fc924de1e97a79cf3195713b06b8f13d56f03409415fed6cb32eff43dda55132"}, &(0x7f0000000180)=0xff)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$BLKROGET(r1, 0x125e, &(0x7f0000000080))
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@ipv4={[], [], @multicast1}, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@loopback}, 0x0, @in6}}, &(0x7f0000000200)=0xe8)
getsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000500)={{{@in6=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6=@remote}, 0x0, @in6=@mcast2}}, &(0x7f0000000300)=0xe8)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000600)={{{@in6=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in=@dev}, 0x0, @in=@multicast1}}, &(0x7f0000000340)=0xe8)
mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='9p\x00', 0x1000000, &(0x7f0000000700)={'trans=unix,', {[{@privport='privport'}, {@msize={'msize', 0x3d, 0x7fffffff}}, {@cache_loose='cache=loose'}, {@version_L='version=9p2000.L'}, {@aname={'aname', 0x3d, 'user\x00'}}], [{@uid_lt={'uid<', r4}}, {@uid_lt={'uid<', r5}}, {@hash='hash'}, {@euid_gt={'euid>', r6}}, {@obj_type={'obj_type', 0x3d, '/&vboxnet0wlan0]posix_acl_access\'eth1selinux'}}]}})
fcntl$addseals(r1, 0x409, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:21 executing program 2:
r0 = socket$inet6(0xa, 0x803, 0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")
unshare(0x400)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0xf, &(0x7f0000000000)={@multicast2, @multicast1, @multicast1}, 0x9)

[  635.127435] *** Guest State ***
[  635.132284] *** Guest State ***
[  635.136219] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  635.146586] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  635.155617] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  635.164914] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  635.173965] CR3 = 0x0000000000000000
10:10:21 executing program 0:
socketpair$unix(0x1, 0x100000000005, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x1c, 0x2f, 0x119, 0x0, 0x0, {0x4}, [@nested={0x8, 0x0, [@typed={0x4, 0x1, @binary}]}]}, 0x1c}}, 0x0)

10:10:21 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000100)={0x0, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @remote}}}, 0x108)

[  635.177850] CR3 = 0x0000000000000000
[  635.181784] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  635.198278] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  635.205865] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  635.216571] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  635.223555] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  635.230936] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  635.251148] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  635.259103] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.279502] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.292219] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.301154] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:21 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sndpcmp(0x0, 0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x130)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="18000000030000dc00000000000000819500000000000000"], 0x0, 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48)
r2 = socket$kcm(0x29, 0x1000000000002, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000002c0)={r0, r1})
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000040)={r0})

10:10:21 executing program 0:
r0 = memfd_create(&(0x7f0000000100)="0b656d31c1f8a68d4ec0a35ce2cba2bae5f497ac232aff", 0x0)
write(r0, &(0x7f0000000040)="0600", 0x2)
write$FUSE_NOTIFY_STORE(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="4800070003000100000000000000000000000000000025000000000000000000000000000000200000000000"], 0x2c)
sendfile(r0, r0, &(0x7f0000001000), 0xffff)
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f000002eff0)={0x4db, &(0x7f0000000000)=[{}]}, 0x10)

10:10:21 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000e33fe0)='X', 0x1, 0x0, 0x0, 0x0)

[  635.322146] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.330337] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.348834] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.358816] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1a)

[  635.378776] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.378822] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.445593] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.452164] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.476330] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  635.499792] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.523333] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  635.535547] GDTR:                           limit=0x00000002, base=0x0000000000000000
10:10:21 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$packet(0x11, 0x800000000002, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f000095bffc)={0x0, 0x0, 0xfffffffffffffffc}, 0x4)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
sendto$inet(r2, &(0x7f0000762fff), 0x0, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000762fff), 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="cd3901030f00aaaaaaaaaabb88ca98fad54e92dc4537095454816c4716d5"], 0x0)

10:10:21 executing program 2:
mkdir(&(0x7f0000000600)='./file1\x00', 0x0)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1'])
removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='trusted.overlay.opaque\x00')

[  635.548047] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  635.581345] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  635.599985] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  635.611067] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  635.627114] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  635.640243] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  635.648596] Interruptibility = 00000000  ActivityState = 00000000
[  635.657277] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  635.666810] *** Host State ***
[  635.677617] RIP = 0xffffffff8120262c  RSP = 0xffff8801c200f390
[  635.695452] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  635.709195] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  635.711259] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  635.726025] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  635.736040] Interruptibility = 00000000  ActivityState = 00000000
[  635.743198] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426f0
[  635.750506] *** Host State ***
[  635.753893] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  635.760800] RIP = 0xffffffff8120262c  RSP = 0xffff8801b3a9f390
[  635.767001] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  635.773313] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  635.780039] *** Control State ***
[  635.783721] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  635.790634] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  635.798784] EntryControls=0000d1ff ExitControls=002fefff
[  635.804397] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  635.812462] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  635.818556] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  635.826419] CR0=0000000080050033 CR3=0000000123c3d000 CR4=00000000001426f0
[  635.833679] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  635.840475] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
10:10:21 executing program 0:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000040)={0x1, 'ip_vti0\x00'}, 0x18)

[  635.847321]         reason=80000021 qualification=0000000000000000
[  635.858035] IDTVectoring: info=00000000 errcode=00000000
[  635.863755] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  635.873196] TSC Offset = 0xfffffea9c5b0a615
[  635.906618] *** Control State ***
[  635.911777] EPT pointer = 0x000000011686b01e
[  635.918541] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  635.921735] IPVS: sync thread started: state = MASTER, mcast_ifn = ip_vti0, syncid = 0, id = 0
[  635.938733] EntryControls=0000d1ff ExitControls=002fefff
[  635.944389] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  635.952614] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  635.952776] overlayfs: filesystem on './file0' not supported as upperdir
[  635.959900] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  635.985345]         reason=80000021 qualification=0000000000000000
[  635.993254] *** Guest State ***
[  635.996559] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  636.018619] IDTVectoring: info=00000000 errcode=00000000
[  636.024371] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  636.033614] TSC Offset = 0xfffffea9c75e2d90
[  636.038056] EPT pointer = 0x000000011689301e
[  636.042734] CR3 = 0x0000000000000000
[  636.046567] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  636.088724] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  636.096426] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  636.108956] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.118224] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.127559] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.135733] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.143929] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.152034] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  636.160124] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  636.168148] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  636.176228] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  636.184322] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  636.192406] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  636.199479] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  636.206955] Interruptibility = 00000008  ActivityState = 00000000
[  636.213291] *** Host State ***
[  636.216522] RIP = 0xffffffff8120262c  RSP = 0xffff8801801df390
[  636.222581] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  636.229062] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  636.236900] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  636.242867] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426f0
[  636.249958] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  636.256652] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  636.262776] *** Control State ***
[  636.266272] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  636.273017] EntryControls=0000d1ff ExitControls=002fefff
[  636.278561] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
10:10:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x87, 0x80000)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r1, 0x40045542, &(0x7f00000000c0))
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x100, 0x0)
r4 = msgget$private(0x0, 0x10)
msgctl$IPC_RMID(r4, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
msgctl$IPC_STAT(r4, 0x2, &(0x7f0000000140)=""/219)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:10:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x1c00000000000000)

10:10:22 executing program 0:
clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
pipe2(&(0x7f0000000000), 0x0)
wait4(0x0, 0x0, 0x80000000, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x1b)
ptrace$cont(0x18, r0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x18, r0, 0x0, 0x0)

10:10:22 executing program 3:
r0 = socket(0x10, 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff})
ioctl$EVIOCGABS20(r1, 0x80184560, &(0x7f0000000140)=""/60)
sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_getnetconf={0x1c, 0x52, 0x10b, 0x70bd27, 0x25dfdbff, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x9}]}, 0x1c}}, 0x0)

10:10:22 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

10:10:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0])
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  636.285525] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  636.292259] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  636.298911]         reason=80000021 qualification=0000000000000000
[  636.305254] IDTVectoring: info=00000000 errcode=00000000
[  636.310773] TSC Offset = 0xfffffea9c5b0a615
[  636.315154] EPT pointer = 0x000000011686701e
10:10:22 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffd2e, &(0x7f00000001c0)=0x57d)
clone(0x2902001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
rt_sigtimedwait(&(0x7f0000000040), 0x0, 0x0, 0x8)
openat$vsock(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$9p_virtio(0x0, 0x0, &(0x7f0000000140)='9p\x00', 0x0, 0x0)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f0000000100))
ptrace(0x10, r0)
ptrace$pokeuser(0x8, r0, 0x0, 0xffffffffffffffff)

10:10:22 executing program 0:
r0 = socket(0x10, 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000100))
sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_getnetconf={0x14, 0x52, 0x10b, 0x70bd27, 0x25dfdbff}, 0x14}}, 0x0)

[  636.456020] *** Guest State ***
[  636.474406] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  636.496625] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  636.513261] CR3 = 0x0000000000000000
[  636.519230] *** Guest State ***
[  636.523002] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  636.523854] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  636.539440] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  636.542750] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:10:22 executing program 0:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x800000000001, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002b40)={{{@in=@broadcast, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2}}, {{@in6=@ipv4={[], [], @broadcast}, 0x0, 0x33}, 0x0, @in=@remote}}, 0xe8)
close(r0)

[  636.559206] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  636.564261] CR3 = 0x0000000000000000
[  636.580793] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  636.588629] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.590358] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  636.603003] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={<r4=>0x0, r3, 0x0, 0xa, &(0x7f00000000c0)='%vboxnet1\x00'}, 0x30)
perf_event_open(&(0x7f0000000180)={0x7, 0x70, 0x100000001, 0x6, 0x10, 0x100000001, 0x0, 0xffffffff7fffffff, 0x24002, 0x2, 0x10000, 0x6, 0x9, 0x40, 0x1000, 0x80, 0x0, 0x0, 0x9, 0x8, 0x1, 0xcc6e7fa, 0x1, 0xbeb, 0xfffffffffffffff7, 0x0, 0x0, 0x3, 0x7ff, 0x3, 0x7, 0x8001, 0xffffffff7fffffff, 0x6, 0x0, 0x101, 0x80, 0x9, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000080), 0x3}, 0x2080, 0x25e, 0x3, 0x7, 0x8000, 0x0, 0x9ae2}, r4, 0x2, r3, 0x2)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  636.604474] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.619909] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.628289] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.646928] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.655445] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.674681] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.705371] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.712513] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:22 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[  636.715947] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  636.727103] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.761215] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:22 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0xffffffc7, 0x0, 0x0, 0xff000000}}, &(0x7f0000000180)="4550d4001f91eb2f57b73224433025039c3096b20c6b439348bf689c08608537d6223e63adc0624fbae2e109359dce6922324ccc13160b68cae6430697259dd52d1f73e16adc3592d02925dffae85e9cd2398c6c67c87fb5b12602f145b484be45912966e8b7e2f66069c56dd76c1dc112013c3a6b4de999cdcdc8855aee3437dcc87580cfbe546fbbfbc0eb56d8bbbea2904a7c73c2"}, 0x48)

[  636.765657] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.778569] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.784153] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  636.803459] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  636.809307] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  636.818921] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  636.836406] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  636.837470] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  636.843690] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  636.861922] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  636.868170] Interruptibility = 00000000  ActivityState = 00000000
[  636.878005] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  636.883153] *** Host State ***
[  636.888925] RIP = 0xffffffff8120262c  RSP = 0xffff8801b8207390
[  636.889217] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  636.897824] *** Guest State ***
[  636.903479] Interruptibility = 00000000  ActivityState = 00000000
[  636.905915] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  636.912484] *** Host State ***
[  636.918957] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  636.922208] RIP = 0xffffffff8120262c  RSP = 0xffff8801bec67390
[  636.931218] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  636.937280] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  636.944991] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  636.957247] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  636.957381] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426f0
[  636.966416] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  636.973355] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  636.981305] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  636.987935] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  636.993985] CR3 = 0x0000000000000000
[  637.000068] *** Control State ***
[  637.003891] CR0=0000000080050033 CR3=0000000123c32000 CR4=00000000001426e0
[  637.007253] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  637.014472] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  637.021859] EntryControls=0000d1ff ExitControls=002fefff
[  637.027301] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  637.032724] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  637.039495] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  637.046370] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  637.052519] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  637.065275] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  637.065398] *** Control State ***
[  637.072096] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.075908] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  637.083591] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  637.090563] EntryControls=0000d1ff ExitControls=002fefff
[  637.096927]         reason=80000021 qualification=0000000000000000
[  637.102579] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  637.108816] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.115939] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  637.123775] IDTVectoring: info=00000000 errcode=00000000
[  637.130585] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  637.135943] TSC Offset = 0xfffffea91294735b
[  637.142784]         reason=80000021 qualification=0000000000000000
[  637.147004] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.153523] IDTVectoring: info=00000000 errcode=00000000
[  637.164134] EPT pointer = 0x00000001d816901e
[  637.167258] TSC Offset = 0xfffffea912d07f67
[  637.171412] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.175995] EPT pointer = 0x0000000126e1801e
[  637.209370] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.218841] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.226927] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  637.235064] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.243210] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  637.251788] *** Guest State ***
[  637.255226] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  637.263361] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  637.263850] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  637.279968] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  637.282816] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  637.296581] Interruptibility = 00000000  ActivityState = 00000000
[  637.298542] CR3 = 0x0000000000000000
[  637.303358] *** Host State ***
[  637.309649] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  637.310222] RIP = 0xffffffff8120262c  RSP = 0xffff8801bc8cf390
[  637.317435] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  637.322008] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  637.327967] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  637.334668] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  637.341179] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.349140] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  637.357018] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.363072] CR0=0000000080050033 CR3=0000000116861000 CR4=00000000001426f0
[  637.371109] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.378100] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  637.386287] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.393308] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  637.400920] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.406962] *** Control State ***
[  637.415057] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.419049] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  637.427445] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  637.433395] EntryControls=0000d1ff ExitControls=002fefff
[  637.441401] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  637.447200] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  637.454915] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  637.462065] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  637.469940] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  637.478332] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  637.484852] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  637.491663]         reason=80000021 qualification=0000000000000000
[  637.498291] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  637.505017] IDTVectoring: info=00000000 errcode=00000000
[  637.517256] Interruptibility = 00000008  ActivityState = 00000000
[  637.517531] TSC Offset = 0xfffffea8e0c74563
[  637.523970] *** Host State ***
[  637.529036] EPT pointer = 0x00000001c690801e
[  637.546236] RIP = 0xffffffff8120262c  RSP = 0xffff880176de7390
[  637.553130] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  637.560489] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  637.569537] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  637.575532] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426f0
[  637.582719] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  637.589505] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  637.595602] *** Control State ***
[  637.599151] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  637.599154] *** Guest State ***
[  637.599167] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  637.605889] EntryControls=0000d1ff ExitControls=002fefff
[  637.609481] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  637.618028] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  637.624045] CR3 = 0x0000000000000000
[  637.632404] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  637.639574] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  637.643108] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  637.650008] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  637.655782]         reason=80000021 qualification=0000000000000000
10:10:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x1, 0x2)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000180)={<r3=>0x0, 0x3, 0x20, 0xfffffffffffffffb, 0x3f}, &(0x7f00000001c0)=0x18)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r2, 0x84, 0x5, &(0x7f00000002c0)={r3, @in6={{0xa, 0x4e24, 0x4, @local, 0x80}}}, 0x84)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r5 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$EVIOCGUNIQ(r5, 0x80404508, &(0x7f0000000080)=""/89)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$SG_SET_DEBUG(r5, 0x227e, &(0x7f0000000040))

10:10:23 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

10:10:23 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet_int(r0, 0x0, 0x3, 0x0, &(0x7f0000000280))

10:10:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB="c85680a5a7157312"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:23 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
ioctl$KDSETLED(0xffffffffffffffff, 0x4b32, 0x9)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000000500)={0x2, 0x4e22}, 0x10)

[  637.662698] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  637.668548] IDTVectoring: info=00000000 errcode=00000000
[  637.682402] TSC Offset = 0xfffffea91294735b
[  637.691389] EPT pointer = 0x0000000126dfc01e
[  637.700280] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.708331] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.718078] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.738158] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.775574] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
10:10:23 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000240)={@broadcast, @multicast1}, 0xc)

10:10:23 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

[  637.831718] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  637.837478] *** Guest State ***
[  637.843003] *** Guest State ***
[  637.844341] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  637.855825] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  637.857373] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
10:10:23 executing program 3:
r0 = socket(0x10, 0x802, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_getnetconf={0x1c, 0x52, 0x10b, 0x70bd27, 0x0, {}, [@IGNORE_ROUTES_WITH_LINKDOWN={0x8, 0x6, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004)

[  637.874499] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  637.882331] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  637.891452] CR3 = 0x0000000000000000
[  637.891463] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  637.910243] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  637.924544] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:23 executing program 0:
r0 = socket$inet6(0xa, 0x803, 0x4)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")
unshare(0x400)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x2f, 0x0, 0x0)

[  637.931508] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  637.941609] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  637.942221] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  637.965621] CR3 = 0x0000000000000000
[  637.971996] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.974777] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  637.980564] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  637.993664] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  638.009863] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.012725] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  638.026693] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  638.030855] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.035889] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  638.051956] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.061697] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.068804] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.070581] Interruptibility = 00000008  ActivityState = 00000000
[  638.085750] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.088843] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.094812] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  638.102145] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.110067] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.117833] *** Host State ***
[  638.126539] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  638.129127] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.137349] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  638.145124] RIP = 0xffffffff8120262c  RSP = 0xffff8801cc1df390
[  638.153387] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  638.159454] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.165838] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  638.173598] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  638.173610] FSBase=00007f88e60be700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  638.173620] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  638.173632] CR0=0000000080050033 CR3=0000000116861000 CR4=00000000001426e0
[  638.173652] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  638.181439] Interruptibility = 00000000  ActivityState = 00000000
[  638.187571] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  638.195604] *** Host State ***
[  638.202292] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  638.208792] RIP = 0xffffffff8120262c  RSP = 0xffff8801b3a9f390
[  638.215211] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  638.221720] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  638.229521] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  638.232946] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  638.240793] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  638.246962] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  638.252861] *** Control State ***
[  638.252871] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  638.252877] EntryControls=0000d1ff ExitControls=002fefff
[  638.252889] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  638.259621] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426e0
[  638.267334] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  638.275517] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  638.283183] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  638.283191] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  638.283201]         reason=80000021 qualification=0000000000000000
[  638.289487] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  638.292627] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  638.299539] *** Control State ***
[  638.304876] IDTVectoring: info=00000000 errcode=00000000
[  638.312119] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  638.318926] Interruptibility = 00000000  ActivityState = 00000000
[  638.325529] EntryControls=0000d1ff ExitControls=002fefff
[  638.332815] *** Host State ***
[  638.338976] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  638.345322] TSC Offset = 0xfffffea8e0c74563
[  638.345331] EPT pointer = 0x00000001d26f801e
[  638.352015] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  638.357836] RIP = 0xffffffff8120262c  RSP = 0xffff8801bc8cf390
[  638.365625] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
10:10:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0xaaaaaaaaaaaac90, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:24 executing program 2:
mknod(&(0x7f0000000000)='./file0\x00', 0x103e, 0x0)
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
read(r0, &(0x7f0000000180)=""/11, 0x5)
r1 = epoll_create1(0x0)
execve(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r2, &(0x7f0000000140)=""/11, 0xfd30)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200))
r3 = fcntl$dupfd(r2, 0x0, r2)
open$dir(&(0x7f0000000080)='./file0\x00', 0x401, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, 0x0)
r4 = syz_open_pts(r0, 0x0)
dup2(r1, r4)

10:10:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x80040, 0x0)
getuid()
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$minix(&(0x7f0000000000)='minix\x00', &(0x7f0000000080)='./file0\x00', 0x7ffffffffffff, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000140)="078cffff29006000000cda40fff9d4c97f13", 0x12, 0x400}], 0x0, 0x0)

[  638.368860] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  638.374558]         reason=80000021 qualification=0000000000000000
[  638.381088] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  638.387542] IDTVectoring: info=00000000 errcode=00000000
[  638.396483] TSC Offset = 0xfffffea856136e29
[  638.403039] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  638.407615] EPT pointer = 0x00000001168c401e
[  638.428511] CR0=0000000080050033 CR3=0000000178c1d000 CR4=00000000001426f0
[  638.458356] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  638.486406] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  638.502370] *** Control State ***
[  638.520787] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  638.552016] EntryControls=0000d1ff ExitControls=002fefff
[  638.569505] *** Guest State ***
[  638.572786] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  638.612383] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  638.628573] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  638.637751] CR3 = 0x0000000000000000
[  638.640483] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  638.642115] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  638.661699] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  638.700357] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  638.711875]         reason=80000021 qualification=0000000000000000
[  638.737712] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  638.751270] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.751307] IDTVectoring: info=00000000 errcode=00000000
[  638.773612] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.781885] TSC Offset = 0xfffffea850ffca77
[  638.785409] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.797738] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.798264] EPT pointer = 0x00000001d292701e
[  638.806186] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.819337] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  638.831671] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  638.840713] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  638.849062] IDTR:                           limit=0x00000000, base=0x0000000000000000
10:10:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x4)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x7, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
fstatfs(r1, &(0x7f0000000040)=""/76)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:24 executing program 0:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
syz_open_pts(r0, 0x0)

10:10:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
recvmmsg(r3, &(0x7f0000000a80)=[{{&(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000400)=""/230, 0xe6}, {&(0x7f0000000500)=""/202, 0xca}, {&(0x7f0000000180)=""/155, 0x9b}], 0x3, 0x0, 0x0, 0x4}, 0x6}, {{&(0x7f0000000340)=@can={0x1d, <r4=>0x0}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000600)=""/159, 0x9f}], 0x1, &(0x7f0000000700)=""/235, 0xeb}, 0x1}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000800)=""/16, 0x10}, {&(0x7f0000000840)=""/132, 0x84}, {&(0x7f0000000900)=""/239, 0xef}], 0x3, &(0x7f0000000a40), 0x0, 0x8}, 0xff}], 0x3, 0x40, 0x0)
connect$can_bcm(r3, &(0x7f0000000b40)={0x1d, r4}, 0x10)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  638.849345] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  638.857190] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  638.873246] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  638.888987] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  638.924792] Interruptibility = 00000008  ActivityState = 00000000
[  638.932739] *** Host State ***
[  638.936142] RIP = 0xffffffff8120262c  RSP = 0xffff8801ba2cf390
[  638.942677] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  638.949534] FSBase=00007fecb7d12700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  638.957498] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  638.978705] CR0=0000000080050033 CR3=0000000123c58000 CR4=00000000001426f0
[  638.985885] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  638.994065] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  638.998673] *** Guest State ***
[  639.000680] *** Control State ***
[  639.005870] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  639.007032] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  639.022997] EntryControls=0000d1ff ExitControls=002fefff
[  639.038754] minix_free_inode: bit 1 already cleared
[  639.046330] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  639.053419] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  639.054787] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  639.074900] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  639.082128]         reason=80000021 qualification=0000000000000000
[  639.088892] IDTVectoring: info=00000000 errcode=00000000
[  639.094485] TSC Offset = 0xfffffea856136e29
[  639.098569] CR3 = 0x0000000000000000
[  639.106999] EPT pointer = 0x00000001172d201e
[  639.112795] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:10:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$VIDIOC_S_MODULATOR(r2, 0x40445637, &(0x7f00000001c0)={0x6, "c88db8d23f45077559913342261129636dab3b7de23fe9d2ea2cdcb96e79fae6", 0x12c0, 0x7f, 0x100000001, 0x0, 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:25 executing program 3:

10:10:25 executing program 0:

10:10:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
write(r1, &(0x7f0000000140)="8600cff9f246862375dd7d4bf6abf9cecc201bb16929487db736569d0c043b8d55834959958255a800d09782bacfea05874f8f7c93743f226cc5b0f6ef54d63ed647b24e8ebf893c72126b271bd851a5d138456badc27e24f836b2277fc2329bbb1b892a3071ffa2f7f28a86f68e38b7dcb94f3311bdb40934c440cba9f55dc08a657c9f93603d09d728e747162c7d63877c6277ff805eb831e844540dd439d9d9fa3f9f2eddc9f4cc174a78c40eb4b088ff6722752aa1f38829199e110592e98e7d8287ea96", 0xc6)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  639.140266] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  639.150664] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  639.157534] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:25 executing program 3:

10:10:25 executing program 0:

[  639.215466] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.250250] *** Guest State ***
[  639.254860] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.264313] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  639.285976] *** Guest State ***
[  639.288353] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.289809] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  639.298704] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:10:25 executing program 3:

[  639.311873] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  639.324333] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.336022] CR3 = 0x0000000000000000
[  639.340005] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  639.346142] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  639.352344] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:25 executing program 2:
mknod(&(0x7f0000000000)='./file0\x00', 0x103e, 0x0)
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
read(r0, &(0x7f0000000180)=""/11, 0x5)
r1 = epoll_create1(0x0)
execve(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r2, &(0x7f0000000140)=""/11, 0xfd30)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200))
r3 = fcntl$dupfd(r2, 0x0, r2)
open$dir(&(0x7f0000000080)='./file0\x00', 0x401, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, 0x0)
r4 = syz_open_pts(r0, 0x0)
dup2(r1, r4)

10:10:25 executing program 0:

[  639.358843] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.367430] CR3 = 0x0000000000000000
[  639.368668] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.378564] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  639.389531] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  639.395531] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  639.405860] GDTR:                           limit=0x00000002, base=0x0000000000000000
10:10:25 executing program 3:

10:10:25 executing program 0:

[  639.420169] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.429452] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.443579] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  639.453450] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.472190] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  639.480552] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.488747] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.499176] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  639.506929] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.519986] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  639.528995] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.531688] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.543294] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.552770] Interruptibility = 00000000  ActivityState = 00000000
[  639.564053] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  639.565252] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.572242] *** Host State ***
[  639.580627] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.583489] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.591851] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.599569] RIP = 0xffffffff8120262c  RSP = 0xffff8801cceef390
[  639.608746] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  639.621341] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  639.621933] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  639.636151] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  639.638318] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  639.645035] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  639.652502] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  639.660537] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  639.668551] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  639.680243] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  639.689066] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  639.696609] Interruptibility = 00000000  ActivityState = 00000000
[  639.702695] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  639.702979] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  639.710889] Interruptibility = 00000000  ActivityState = 00000000
[  639.717265] *** Host State ***
[  639.727620] CR0=0000000080050033 CR3=00000001168e7000 CR4=00000000001426f0
[  639.727644] *** Host State ***
[  639.738091] RIP = 0xffffffff8120262c  RSP = 0xffff8801b3a9f390
[  639.744621] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  639.749984] RIP = 0xffffffff8120262c  RSP = 0xffff8801802bf390
[  639.751285] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  639.763860] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  639.763941] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  639.779278] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  639.785291] CR0=0000000080050033 CR3=0000000123c2b000 CR4=00000000001426f0
[  639.792563] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  639.792649] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  639.799840] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  639.813339] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  639.818473] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  639.820493] *** Control State ***
[  639.826635] CR0=0000000080050033 CR3=0000000116872000 CR4=00000000001426e0
[  639.829868] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  639.837162] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  639.843942] *** Control State ***
[  639.854154] EntryControls=0000d1ff ExitControls=002fefff
[  639.860324] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  639.867182] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  639.868332] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  639.874309] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  639.887228] EntryControls=0000d1ff ExitControls=002fefff
[  639.892998] *** Control State ***
[  639.896633] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  639.898498] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  639.903609] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  639.911106]         reason=80000021 qualification=0000000000000000
[  639.917139] EntryControls=0000d1ff ExitControls=002fefff
[  639.928811] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  639.929301] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  639.935650] IDTVectoring: info=00000000 errcode=00000000
[  639.942774] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  639.948078] TSC Offset = 0xfffffea7927a3c61
[  639.959336] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  639.959488] EPT pointer = 0x00000001bfbea01e
[  639.966065]         reason=80000021 qualification=0000000000000000
[  639.977435] IDTVectoring: info=00000000 errcode=00000000
[  639.982967] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  639.983309] TSC Offset = 0xfffffea7b8e9db9d
[  639.994318] EPT pointer = 0x00000001770ba01e
[  639.995461]         reason=80000021 qualification=0000000000000000
[  640.005239] IDTVectoring: info=00000000 errcode=00000000
[  640.010837] TSC Offset = 0xfffffea78c6202b3
[  640.017207] EPT pointer = 0x00000001172c601e
[  640.038732] *** Guest State ***
[  640.042475] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  640.052513] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  640.061533] CR3 = 0x0000000000000000
[  640.065318] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  640.076631] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000380)='/dev/dsp\x00', 0x40, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(r3, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)=@newae={0x8c, 0x1e, 0x400, 0x70bd2d, 0x25dfdbfe, {{@in, 0x4d3, 0x2, 0xff}, @in6=@loopback, 0x8}, [@sec_ctx={0x44, 0x8, {0x3e, 0x8, 0x1, 0x7f, 0x36, "8afaf46595217a0a35c3c901970f87984fde2decdb1a2d4b188263b386570d4b5c7c9777246e794a71d3060fc26554e8f36bc3915421"}}, @extra_flags={0x8}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8000}, 0x20044085)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RREMOVE(r3, &(0x7f0000000080)={0x7, 0x7b, 0x1}, 0x7)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  640.082912] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  640.089676] *** Guest State ***
[  640.092952] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  640.092965] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  640.092974] CR3 = 0x0000000000000000
[  640.101962] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.112599] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  640.122902] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  640.135626] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  640.143767] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.152894] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.157564] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.164213] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.177218] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.186877] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.195217] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.198622] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.203635] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.222583] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  640.228610] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.231134] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.247623] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  640.255939] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  640.260269] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  640.266009] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  640.272062] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  640.281736] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  640.288277] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  640.309313] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  640.310671] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  640.325106] Interruptibility = 00000000  ActivityState = 00000000
[  640.331502] *** Host State ***
[  640.334695] RIP = 0xffffffff8120262c  RSP = 0xffff880186b77390
[  640.340889] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  640.347352] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  640.354944] Interruptibility = 00000008  ActivityState = 00000000
[  640.355186] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  640.361549] *** Host State ***
[  640.368502] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  640.371234] RIP = 0xffffffff8120262c  RSP = 0xffff8801ba2cf390
[  640.385018] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  640.392563] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  640.408548] CR0=0000000080050033 CR3=0000000116872000 CR4=00000000001426e0
[  640.415680] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  640.418575] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  640.422793] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  640.430403] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  640.443659] CR0=0000000080050033 CR3=0000000123c2b000 CR4=00000000001426f0
[  640.450490] *** Control State ***
[  640.451569] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  640.454764] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  640.467885] EntryControls=0000d1ff ExitControls=002fefff
[  640.469856] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  640.474014] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  640.483806] *** Control State ***
[  640.490069] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  640.495523] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  640.496812] EntryControls=0000d1ff ExitControls=002fefff
[  640.504203] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  640.510156] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  640.522891]         reason=80000021 qualification=0000000000000000
[  640.523636] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
10:10:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x41, &(0x7f00000001c0)={'security\x00', 0x4, [{}, {}, {}, {}]}, 0x68)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000040))
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:26 executing program 3:

10:10:26 executing program 0:

[  640.529691] IDTVectoring: info=00000000 errcode=00000000
[  640.536397] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  640.542039] TSC Offset = 0xfffffea78c6202b3
[  640.548494]         reason=80000021 qualification=0000000000000000
[  640.555730] EPT pointer = 0x00000001172c601e
[  640.559165] IDTVectoring: info=00000000 errcode=00000000
[  640.570075] TSC Offset = 0xfffffea7927a3c61
[  640.574510] EPT pointer = 0x00000001bf5ff01e
10:10:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getpid()
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
setsockopt$sock_void(r3, 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x1000000000010004, 0x2, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
recvmsg$kcm(r3, &(0x7f0000001840)={&(0x7f0000000340)=@hci={0x1f, <r5=>0x0}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/161, 0xa1}, {&(0x7f00000014c0)=""/220, 0xdc}, {&(0x7f00000015c0)=""/1, 0x1}, {&(0x7f0000001600)=""/156, 0x9c}, {&(0x7f0000001940)=""/128, 0x80}, {&(0x7f0000001740)=""/98, 0x62}], 0x7, 0x0, 0x0, 0xa0}, 0x40000003)
sendto$packet(r3, &(0x7f0000000180)="38af6dd9c5504e34960f73279df8647de096c65179877a84a0b468614a8c74b8f00c80d14da07d7dc6dc0d9b54c333ab6a70928a9e530d28ef389afb723af2a4dcf66813b0713bbfcb35be8da70bd25feb81c910c62bf4e3089a6c19d8c1fcdc896f9c36ac146f9b59d1c80f4b7d5ae41dffd16ff75d01d2f4b36c30ec07f6ca7512a99bb3645efa434f3911a917524a0e5e9d7a28951eaaae273a8011b872e87c85540328a2f66c6acb148bba1d979cd3e1e9085652273eaac2dfa11c872f", 0xbf, 0x8010, &(0x7f0000001880)={0x11, 0x17, r5, 0x1, 0x7, 0x6, @dev={[], 0x19}}, 0x14)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000)=<r6=>0x0)
perf_event_open(&(0x7f00000018c0)={0x0, 0x70, 0xffff, 0xfffffffffffffffa, 0x80, 0x3ff, 0x0, 0xfffffffffffffffc, 0x8000, 0xd, 0x8000, 0xffff, 0x1ff, 0x401, 0xfffffffffffff48a, 0x800, 0x9, 0x2, 0x2, 0x8, 0x6, 0xefd, 0x9, 0x1, 0x3916, 0x82, 0x2, 0x5, 0x0, 0x9, 0x6, 0x4, 0x0, 0x800, 0x4f2, 0x5, 0x0, 0x5, 0x0, 0x0, 0x7, @perf_config_ext={0x80000000, 0xff}, 0x200, 0xfffffffffffffd51, 0x7, 0x9, 0xffff, 0xfffffffffffffff9}, r6, 0x4, r4, 0x8)

10:10:26 executing program 2:
mknod(&(0x7f0000000000)='./file0\x00', 0x103e, 0x0)
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
read(r0, &(0x7f0000000180)=""/11, 0x5)
r1 = epoll_create1(0x0)
execve(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r2, &(0x7f0000000140)=""/11, 0xfd30)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200))
r3 = fcntl$dupfd(r2, 0x0, r2)
open$dir(&(0x7f0000000080)='./file0\x00', 0x401, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, 0x0)
r4 = syz_open_pts(r0, 0x0)
dup2(r1, r4)

10:10:26 executing program 0:

10:10:26 executing program 3:

10:10:26 executing program 3:

10:10:26 executing program 0:

[  640.830786] *** Guest State ***
[  640.834207] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  640.870501] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
10:10:26 executing program 0:

[  640.887832] CR3 = 0x0000000000000000
[  640.895001] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  640.903370] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:26 executing program 3:

[  640.928697] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  640.951906] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  640.998794] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.024648] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.033415] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.041762] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.050391] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.058387] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  641.067714] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.076099] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  641.084311] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  641.093187] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  641.099664] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  641.107107] Interruptibility = 00000000  ActivityState = 00000000
[  641.113379] *** Host State ***
[  641.116582] RIP = 0xffffffff8120262c  RSP = 0xffff88017df5f390
[  641.122603] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  641.129029] FSBase=00007fecb7d54700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  641.136828] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  641.142772] CR0=0000000080050033 CR3=00000001172d1000 CR4=00000000001426f0
[  641.149822] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  641.156473] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  641.162642] *** Control State ***
[  641.166087] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  641.172805] EntryControls=0000d1ff ExitControls=002fefff
[  641.178251] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  641.185230] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  641.191915] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
10:10:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x1000000000010004, 0x0, 0x4000000000d000, 0x1000, &(0x7f0000020000/0x1000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
socketpair$inet_sctp(0x2, 0x1, 0x84, &(0x7f0000000040))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={<r4=>0x0}, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f00000000c0)={r4, 0x2, 0x10}, 0xc)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:27 executing program 5:
syz_open_dev$sndctrl(&(0x7f0000000180)='/dev/snd/controlC#\x00', 0x5, 0x1000000000800)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x21fe, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000040)={0x3, 0x1, 0x5, 0x7, 0x2, [{0x4, 0x7, 0x87c, 0x0, 0x0, 0x1000}, {0x3, 0x0, 0x6}]})
r4 = geteuid()
r5 = fcntl$getown(r2, 0x9)
ptrace$pokeuser(0x6, r5, 0x5, 0x3)
getresgid(&(0x7f0000000300)=<r6=>0x0, &(0x7f0000000340), &(0x7f0000000380))
fstat(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
mount$fuseblk(&(0x7f0000000100)='/dev/loop0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)='fuseblk\x00', 0x3000000, &(0x7f0000000540)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x6000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r6}, 0x2c, {[{@allow_other='allow_other'}], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/kvm\x00'}}, {@fowner_eq={'fowner', 0x3d, r7}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/kvm\x00'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@context={'context', 0x3d, 'root'}}, {@subj_role={'subj_role', 0x3d, 'eth1'}}, {@seclabel='seclabel'}, {@func={'func', 0x3d, 'MODULE_CHECK'}}]}})
ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000140))
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  641.198525]         reason=80000021 qualification=0000000000000000
[  641.204832] IDTVectoring: info=00000000 errcode=00000000
[  641.210304] TSC Offset = 0xfffffea6c4ec4dc9
[  641.214633] EPT pointer = 0x00000001168d601e
10:10:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x5, 0x2000000004400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
r4 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000380)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
fgetxattr(r0, &(0x7f0000000200)=@known='trusted.overlay.impure\x00', &(0x7f0000000300)=""/66, 0x42)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
signalfd4(r2, &(0x7f0000000400)={0xffffffff}, 0x8, 0x80000)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$ASHMEM_GET_PIN_STATUS(r3, 0x7709, 0x0)
eventfd(0xc8)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000000)=ANY=[@ANYRES64=r3], 0x1)
r5 = dup2(r4, r1)
ioctl$TUNSETPERSIST(r5, 0x400454cb, 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000180)=0x44)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:27 executing program 0:

10:10:27 executing program 3:

[  641.349652] *** Guest State ***
[  641.355774] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  641.366001] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  641.379842] CR3 = 0x0000000000000000
[  641.388267] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  641.396789] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  641.403131] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  641.410074] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.418523] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.426708] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.434993] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:27 executing program 2:
mknod(&(0x7f0000000000)='./file0\x00', 0x103e, 0x0)
clone(0x3102001fff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc))
read(r0, &(0x7f0000000180)=""/11, 0x5)
r1 = epoll_create1(0x0)
execve(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ptmx\x00', 0x0, 0x0)
read(r2, &(0x7f0000000140)=""/11, 0xfd30)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200))
r3 = fcntl$dupfd(r2, 0x0, r2)
open$dir(&(0x7f0000000080)='./file0\x00', 0x401, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, 0x0)
r4 = syz_open_pts(r0, 0x0)
dup2(r1, r4)

10:10:27 executing program 0:

10:10:27 executing program 3:

10:10:27 executing program 5:
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
signalfd(r2, &(0x7f0000000040)={0xfffffffffffffffd}, 0x8)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  641.443305] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.451419] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.459953] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  641.467918] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.476113] IDTR:                           limit=0x00000000, base=0x0000000060000011
10:10:27 executing program 3:

10:10:27 executing program 0:

[  641.521873] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
10:10:27 executing program 2:

10:10:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$BLKIOMIN(r3, 0x1278, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:27 executing program 3:

[  641.573034] *** Guest State ***
[  641.582414] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  641.590591] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  641.602926] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  641.612141] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  641.643116] CR3 = 0x0000000000000000
[  641.646975] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  641.648821] Interruptibility = 00000000  ActivityState = 00000000
[  641.683134] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  641.684935] *** Host State ***
[  641.704801] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  641.711794] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.712074] RIP = 0xffffffff8120262c  RSP = 0xffff8801bc8cf390
[  641.741251] *** Guest State ***
[  641.742748] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  641.744533] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  641.744545] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  641.744551] CR3 = 0x0000000000000000
[  641.744559] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  641.744569] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  641.744583] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  641.763438] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  641.774555] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  641.779396] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.785604] CR0=0000000080050033 CR3=00000001d9114000 CR4=00000000001426f0
[  641.798006] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.817037] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  641.825387] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.844276] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  641.847501] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.853344] *** Control State ***
[  641.861124] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.861144] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.861158] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  641.861177] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.865042] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  641.872829] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.872851] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.881175] EntryControls=0000d1ff ExitControls=002fefff
[  641.888924] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  641.888942] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  641.888953] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  641.888964] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  641.888973] Interruptibility = 00000000  ActivityState = 00000000
[  641.888978] *** Host State ***
[  641.888989] RIP = 0xffffffff8120262c  RSP = 0xffff880185a17390
[  641.889010] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  641.897589] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  641.903773] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  641.912065] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  641.920673] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.925583] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  641.933359] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  641.941640]         reason=80000021 qualification=0000000000000000
[  641.947809] CR0=0000000080050033 CR3=0000000123c1b000 CR4=00000000001426f0
[  641.955625] IDTVectoring: info=00000000 errcode=00000000
[  641.961583] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.961602] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.961614] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  641.961631] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  641.961644] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  641.965174] TSC Offset = 0xfffffea6741a1bb3
[  641.970933] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  641.977587] EPT pointer = 0x0000000123c5001e
[  641.984290] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  641.998974] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  642.013539] *** Control State ***
[  642.046332] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  642.055293] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  642.063405] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  642.070676] EntryControls=0000d1ff ExitControls=002fefff
[  642.078767] *** Guest State ***
[  642.082940] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  642.089961] Interruptibility = 00000000  ActivityState = 00000000
[  642.094055] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  642.102407] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  642.108149] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  642.111963] *** Host State ***
[  642.132525] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  642.137725]         reason=80000021 qualification=0000000000000000
[  642.141227] CR3 = 0x0000000000000000
[  642.147989] IDTVectoring: info=00000000 errcode=00000000
[  642.154549] RIP = 0xffffffff8120262c  RSP = 0xffff8801cbb17390
[  642.161078] TSC Offset = 0xfffffea654cce58f
[  642.170112] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  642.176478] EPT pointer = 0x000000011681f01e
[  642.179986] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  642.195401] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  642.204875] CR0=0000000080050033 CR3=0000000123c30000 CR4=00000000001426f0
[  642.215013] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  642.221224] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  642.226084] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  642.250518] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  642.261268] *** Control State ***
[  642.271566] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  642.281755] EntryControls=0000d1ff ExitControls=002fefff
[  642.287364] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  642.296140] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  642.299816] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  642.310216] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  642.310224] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.310243] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.316988]         reason=80000021 qualification=0000000000000000
[  642.333408] IDTVectoring: info=00000000 errcode=00000000
[  642.345388] TSC Offset = 0xfffffea63a430baf
[  642.352754] EPT pointer = 0x00000001bf45301e
[  642.368807] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.388553] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.398074] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.415240] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  642.423578] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  642.431721] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  642.439782] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  642.447784] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  642.456720] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  642.463302] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  642.472122] Interruptibility = 00000008  ActivityState = 00000000
[  642.478533] *** Host State ***
[  642.481823] RIP = 0xffffffff8120262c  RSP = 0xffff880176ec7390
[  642.487889] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  642.494446] FSBase=00007f88e609d700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  642.502414] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  642.508293] CR0=0000000080050033 CR3=00000001d9114000 CR4=00000000001426e0
[  642.515371] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  642.523256] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  642.529399] *** Control State ***
[  642.532860] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  642.539572] EntryControls=0000d1ff ExitControls=002fefff
[  642.545018] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  642.551984] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  642.558669] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004
10:10:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
restart_syscall()
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f0000000180)={0x0, r3})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={<r5=>0xffffffffffffffff, r4, 0x0, 0x9, &(0x7f0000000080)='/dev/kvm\x00'}, 0x30)
ptrace$pokeuser(0x6, r5, 0xff, 0x92)

10:10:28 executing program 0:

10:10:28 executing program 2:

10:10:28 executing program 3:

10:10:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000080)={0x34, 0x0, &(0x7f0000000040)})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r4 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f00000000c0)={<r5=>0x0, @in={{0x2, 0x4e22, @local}}}, &(0x7f00000001c0)=0x84)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f0000000200)={r5, 0xff, 0x3fe000000}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="0000d459accd74db173f649e"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  642.565236]         reason=80000021 qualification=0000000000000000
[  642.571569] IDTVectoring: info=00000000 errcode=00000000
[  642.577021] TSC Offset = 0xfffffea6741a1bb3
[  642.582129] EPT pointer = 0x00000001bc47c01e
10:10:28 executing program 0:

10:10:28 executing program 3:

10:10:28 executing program 2:

[  642.718495] *** Guest State ***
[  642.722003] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  642.732361] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  642.741443] CR3 = 0x0000000000000000
[  642.745274] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  642.775339] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:28 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x3, &(0x7f00009ff000)=ANY=[@ANYBLOB="18000000030000dc00000000000000819500000000000000"], 0x0, 0x1, 0xb7, &(0x7f0000000440)=""/183}, 0x48)
r2 = socket$kcm(0x29, 0x1000000000002, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f00000002c0)={r0, r1})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000003c40)={&(0x7f0000000180), 0xc, &(0x7f0000000400)={&(0x7f0000000680)=ANY=[]}}, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000040)={r0})
ioctl$TIOCSWINSZ(0xffffffffffffffff, 0x5414, &(0x7f0000000300)={0x0, 0xa8, 0x6, 0x80})

10:10:28 executing program 0:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x800000000001, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002b40)={{{@in=@broadcast, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={[], [], @broadcast}, 0x0, 0x33}, 0x0, @in=@remote}}, 0xe8)
close(r0)

10:10:28 executing program 2:
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f00000000c0)={0x0, 0x0}, 0x10)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
syz_open_pts(r0, 0x0)

[  642.820978] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  642.878683] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  642.913382] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={<r4=>0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f0000000180)={r4, @in6={{0xa, 0x4e23, 0x9, @loopback, 0x4}}}, 0x84)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000003c0)=<r3=>0x0)
perf_event_open(&(0x7f0000000340)={0x0, 0x70, 0x0, 0x6b9, 0x6, 0x3, 0x0, 0xb8, 0x20000, 0x0, 0x1, 0x8, 0x100000000, 0x4, 0xd8, 0x6a, 0x0, 0xfffffffffffffffc, 0xfc71, 0xfff, 0x400080000000, 0xffff, 0x7, 0xfff, 0x8001, 0x800, 0x2, 0x3, 0x800, 0x3, 0x1f, 0x3f, 0x1, 0x100, 0x0, 0x4, 0x6, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x7a3b, 0x20}, 0x4, 0x2, 0x3f, 0x8, 0x4, 0x4, 0x4}, r3, 0xa, r0, 0x2)
accept$unix(r1, &(0x7f00000001c0)=@abs, &(0x7f0000000040)=0x6e)
r4 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r5 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
bind$vsock_stream(r5, &(0x7f00000000c0)={0x28, 0x0, 0x2711}, 0x10)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f00000002c0)={0x4, 0x0, [{0xaff, 0x0, 0x3}, {0xa7b, 0x0, 0x60e}, {0x0, 0x0, 0xfeafa5b}, {0x0, 0x0, 0x3}]})
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
unlinkat(r4, &(0x7f0000000140)='./file0\x00', 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  642.939601] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  642.976195] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:28 executing program 0:
syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f0000002740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="08631040"], 0x0, 0x0, 0x0})

10:10:28 executing program 2:
recvmsg$kcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000200)=@nfc, 0x80, &(0x7f0000000000)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1, &(0x7f0000000280)=""/240, 0xd932}, 0x0)
r0 = socket$kcm(0xa, 0x2, 0x11)
sendmsg$kcm(r0, &(0x7f0000000480)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2={0xff, 0x2, [0xe803, 0xee6e0000, 0x2a0, 0x3e7a0000]}, 0xf}, 0x80, &(0x7f0000000340), 0x2b, &(0x7f0000000180)}, 0x0)

[  642.999718] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.050344] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.077749] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  643.092747] *** Guest State ***
[  643.103008] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  643.112677] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.119489] *** Guest State ***
[  643.128572] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  643.130683] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  643.140561] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  643.149474] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  643.158706] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  643.164200] binder: 21893:21901 BC_INCREFS_DONE node 7 has no pending increfs request
[  643.176099] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  643.186444] CR3 = 0x0000000000000000
[  643.191003] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  643.198850] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  643.205039] Interruptibility = 00000000  ActivityState = 00000000
[  643.205724] CR3 = 0x0000000000000000
[  643.212881] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  643.221517] *** Host State ***
[  643.224114] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  643.224861] RIP = 0xffffffff8120262c  RSP = 0xffff8801821c7390
[  643.230879] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  643.237976] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  643.246625] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  643.250048] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  643.256546] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.263210] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.271307] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.279468] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  643.287284] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.295442] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  643.303525] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.309598] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.317405] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.325590] CR0=0000000080050033 CR3=00000001be57f000 CR4=00000000001426f0
[  643.333544] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.340833] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.348701] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  643.356955] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  643.364794] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.372515] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  643.385572] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.385905] *** Control State ***
[  643.393716] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  643.397449] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  643.405386] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.412216] EntryControls=0000d1ff ExitControls=002fefff
[  643.419972] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  643.425615] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  643.433555] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.440696] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  643.448615] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  643.457292] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  643.461823] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  643.476124]         reason=80000021 qualification=0000000000000000
[  643.476458] Interruptibility = 00000000  ActivityState = 00000000
[  643.489006] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  643.489309] *** Host State ***
[  643.500400] RIP = 0xffffffff8120262c  RSP = 0xffff8801cc01f390
[  643.501506] IDTVectoring: info=00000000 errcode=00000000
[  643.511063] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  643.512198] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  643.518519] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  643.534397] TSC Offset = 0xfffffea5b4e56afe
[  643.534439] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  643.539207] EPT pointer = 0x000000011686701e
[  643.544882] CR0=0000000080050033 CR3=00000001d1de0000 CR4=00000000001426e0
[  643.550251] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  643.556425] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  643.564579] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  643.571276] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  643.579574] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  643.585532] *** Control State ***
[  643.592404] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  643.595493] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  643.603328] Interruptibility = 00000000  ActivityState = 00000000
[  643.609748] EntryControls=0000d1ff ExitControls=002fefff
[  643.616134] *** Guest State ***
[  643.621575] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  643.625429] *** Host State ***
[  643.631896] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  643.636167] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  643.641898] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  643.650906] RIP = 0xffffffff8120262c  RSP = 0xffff8801771cf390
[  643.657446]         reason=80000021 qualification=0000000000000000
[  643.669873] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  643.669914] IDTVectoring: info=00000000 errcode=00000000
[  643.681994] TSC Offset = 0xfffffea58130e672
[  643.691108] EPT pointer = 0x00000001d7e8b01e
[  643.698689] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  643.706611] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  643.715748] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  643.715998] CR3 = 0x0000000000000000
[  643.727343] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  643.728449] CR0=0000000080050033 CR3=0000000184e74000 CR4=00000000001426f0
[  643.733755] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  643.740708] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  643.746706] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  643.753352] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  643.761106] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.766186] *** Control State ***
[  643.774510] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.778071] *** Guest State ***
[  643.786073] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.791015] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  643.807690] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.811123] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  643.824873] EntryControls=0000d1ff ExitControls=002fefff
[  643.830720] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.838875] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  643.848844] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  643.858028] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  643.867385] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  643.867708] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  643.875631] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  643.891549] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  643.893417] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  643.907139] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  643.913020] CR3 = 0x0000000000000000
[  643.914672] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  643.918167] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  643.925010] Interruptibility = 00000008  ActivityState = 00000000
[  643.930875] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  643.937236] *** Host State ***
[  643.943803] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  643.947559] RIP = 0xffffffff8120262c  RSP = 0xffff88017e03f390
[  643.953625]         reason=80000021 qualification=0000000000000000
[  643.965333] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  643.965469] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  643.972506] IDTVectoring: info=00000000 errcode=00000000
[  643.978773] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  643.984056] TSC Offset = 0xfffffea586ac016c
[  643.992070] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  643.996259] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.002436] CR0=0000000080050033 CR3=00000001be57f000 CR4=00000000001426f0
[  644.017387] EPT pointer = 0x00000001bce6701e
[  644.017431] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  644.021920] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.030255] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.042823] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.043150] *** Control State ***
[  644.055361] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  644.062427] EntryControls=0000d1ff ExitControls=002fefff
[  644.068089] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.068517] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.075484] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.090231] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  644.090683] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.096947]         reason=80000021 qualification=0000000000000000
[  644.105544] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.119343] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  644.119635] IDTVectoring: info=00000000 errcode=00000000
[  644.127388] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  644.141032] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  644.142134] TSC Offset = 0xfffffea5b4e56afe
[  644.153147] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  644.161651] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  644.168146] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  644.169087] EPT pointer = 0x00000001b207e01e
[  644.175734] Interruptibility = 00000008  ActivityState = 00000000
[  644.188904] *** Host State ***
[  644.192121] RIP = 0xffffffff8120262c  RSP = 0xffff8801ccec7390
[  644.198096] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
10:10:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = shmat(0xffffffffffffffff, &(0x7f0000029000/0x1000)=nil, 0x4000)
shmdt(r4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$cgroup_subtree(r3, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0)

10:10:30 executing program 3:
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000180)={0x3})

10:10:30 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000000240)={0x0, 0x7, 0xfffffffffffffff9})
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000006c0)=0x200, 0x20)
ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000140))
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000000c0))
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(r1, &(0x7f00000005c0)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0xd400}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000003fe8))
socket$inet6_sctp(0xa, 0x0, 0x84)
move_pages(0x0, 0x0, &(0x7f0000000540), &(0x7f0000000580)=[0x0], &(0x7f0000000600)=[0x0, 0x0], 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0xfffffe4f)
write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd)

10:10:30 executing program 0:
r0 = gettid()
r1 = inotify_init1(0x2003fffffe)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12}, &(0x7f0000044000))
readv(r1, &(0x7f0000000340)=[{&(0x7f0000000580)=""/238, 0xee}], 0x1)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
close(r1)
openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mknod(&(0x7f0000000080)='./file0\x00', 0x200, 0xfffffff8)
tkill(r0, 0x1000000000016)

10:10:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_G_EDID(r3, 0xc0285628, &(0x7f0000000180)={0x1, 0x2, 0x1d, [], &(0x7f00000000c0)=0x9})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/exec\x00', 0x2, 0x0)

[  644.212934] FSBase=00007fecb7d75700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  644.258589] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  644.264588] CR0=0000000080050033 CR3=00000001d1de0000 CR4=00000000001426e0
[  644.298759] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
10:10:30 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00')
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x80000, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000180)=<r3=>0x0)
syz_open_procfs(r3, &(0x7f00000001c0)='environ\x00')
ioctl$EVIOCGBITKEY(r2, 0x80404521, &(0x7f00000000c0)=""/150)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f000000dc40)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f000000e640)={&(0x7f0000000000), 0xc, &(0x7f000000e600)={&(0x7f000000dd40)={0x60, r1, 0x103, 0x0, 0x0, {}, [{{0x8, 0x1, r4}, {0x44, 0x2, [{0x33, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8}}, {0x8}}}]}}]}, 0x60}}, 0x0)

[  644.332758] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.333587] *** Guest State ***
[  644.348660] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  644.360785] *** Control State ***
[  644.376025] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
10:10:30 executing program 2:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x100040031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0xbcda34450b800b7a, 0x40000000000a132, 0xffffffffffffffff, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r1, 0xc0305615, &(0x7f0000000180)={0x9, {0x180000000, 0x48f3}})
getsockopt$bt_hci(r0, 0x65, 0x1, &(0x7f0000000040)=""/244, &(0x7f0000000140)=0xf4)

10:10:30 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
read(r1, &(0x7f0000000240)=""/11, 0xfffffe09)
ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000000080))
r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2)
ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f00000000c0)={0x0, @reserved})
syz_execute_func(&(0x7f0000000180)="3666440f9bf56664400f9f3241c3c4e2c9975842c4c27d794e003e0f11581010198c7f7fcd04af6e0f01db")

[  644.385108] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  644.394269] EntryControls=0000d1ff ExitControls=002fefff
[  644.409221] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.416340] CR3 = 0x0000000000000000
[  644.416968] RSP = 0x0000000000000000  RIP = 0x0000000000000000
10:10:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000080)={0x0, <r4=>0x0}, &(0x7f0000000140)=0xc)
lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = geteuid()
write$P9_RSTATu(r3, &(0x7f0000000340)={0x6c, 0x7d, 0x2, {{0x0, 0x56, 0x9, 0x10001, {0x9c, 0x4, 0x4}, 0x1040000, 0x6, 0x53ec, 0x5, 0x11, "8c275e707070317e766d6e6574302e287b", 0x0, "", 0x9, '/dev/kvm\x00', 0x9, '/dev/kvm\x00'}, 0x1, '%', r4, r5, r6}}, 0x6c)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x40, 0x0)
r7 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="1274aa9002c3b92def4b66c6dab556d877cf4fd5c8df"], 0x0)
munlockall()
setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r7, 0x111, 0x2, 0x1, 0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  644.416981] RFLAGS=0x00000002         DR7 = 0x0000000000000400
10:10:30 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
r1 = socket(0x1000000000000a, 0x80000000001, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f0000000280)=@ipv4_newaddr={0x28, 0x14, 0x389e63cafcc39927, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r2}, [@IFA_ADDRESS={0x8, 0x9}, @IFA_LOCAL={0x8, 0x2, @broadcast}]}, 0x28}}, 0x0)

[  644.416996] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  644.417013] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.417036] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.417058] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$VHOST_SET_VRING_ERR(r3, 0x4008af22, &(0x7f0000000040)={0x2, r3})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)="f89d9cb9db6576477410e67b982f54c4a358fbe525e9da03f09ff6653d8032f0e57473fae9fcbe8f466345e1e5ff1225e6e6db8831001766e500e945fe7b2a4afd89b0ebbfe3761abdc32a08bc25493477d29796056931fff6d5abdbd059bc69d9da890e036c91bf4d01ef29ca3f6389201e346cdbed5c131200eb9d9e884af5980667cf5828648e1da3da49e38e76bd4bc51ac8629183e27a19209e66fde546f97ad71b1d37a4252e91ef97dab039efa02487b643df4e139067fa8550c5849c45a8cd5c6b841a8d08ab8465d3", 0xcd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  644.417074] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:30 executing program 3:
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video2\x00', 0x2, 0x0)
fcntl$setflags(r0, 0x2, 0x1)
r1 = socket(0xb, 0x2, 0x0)
setsockopt$inet6_opts(r1, 0x29, 0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="8476ad2c6251dd42"], 0x8)
setsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000400f7ca0000"], 0x8)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000040)={<r2=>0x0, 0xb, "c94460c17789570c9cf940"}, &(0x7f0000000080)=0x13)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f00000000c0)={r2, 0x6d, "d7f5b9e27d59bab6ab4ceef52a94bb260baa58921403d93c5990b4b708c2c0cd435b041df99efeacc73bc2d3115ef3027943f81fcdd7762d98d194167fa5c0bbded6313b6d9694ae4a0c2dababd1715cf97622ed37b79cd0f91fb521374285bd9ac05f49ae8d2cd14dc41df771"}, &(0x7f0000000180)=0x75)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x0)

[  644.417095] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.417118] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
10:10:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x44})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f000002b000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000027000/0x18000)=nil, &(0x7f00000002c0)=[@text64={0x40, &(0x7f0000000380)="66450fd1354e58000066baa100ed0f20d835200000000f22d848b800a00000000000000f23c80f21f8350800d0000f23f866ba4000b89a1c0000ef66baf80cb8fe6e2b8def66bafc0c66ed0f320f20c035040000000f22c06741d9f4470f01b502000000", 0x64}], 0x1, 0x0, &(0x7f0000000280), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10:10:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKSECTGET(r4, 0x1267, &(0x7f0000000080))
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000000c0)={0x4, 0xffffffffffffff9c, 0x1})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  644.417130] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  644.417149] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.417170] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  644.417197] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  644.417208] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  644.417221] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  644.417233] Interruptibility = 00000000  ActivityState = 00000000
[  644.417241] *** Host State ***
[  644.417253] RIP = 0xffffffff8120262c  RSP = 0xffff8801cb8cf390
[  644.417277] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  644.417294] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  644.417542] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  644.417560] CR0=0000000080050033 CR3=00000001b60b8000 CR4=00000000001426e0
[  644.417577] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  644.417592] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.417597] *** Control State ***
[  644.417606] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  644.417613] EntryControls=0000d1ff ExitControls=002fefff
[  644.417627] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.417636] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.417645] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  644.417654]         reason=80000021 qualification=0000000000000000
[  644.417662] IDTVectoring: info=00000000 errcode=00000000
[  644.417669] TSC Offset = 0xfffffea4d7a6675e
[  644.417677] EPT pointer = 0x00000001b872501e
[  644.446131] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.446140] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  644.446148]         reason=80000021 qualification=0000000000000000
[  644.446171] IDTVectoring: info=00000000 errcode=00000000
[  644.446178] TSC Offset = 0xfffffea58130e672
[  644.446186] EPT pointer = 0x00000001b325a01e
[  644.501672] *** Guest State ***
10:10:30 executing program 3:
creat(&(0x7f0000000240)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='fuse\x00', 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="666435fc", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000000000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f757000d9643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])

[  644.501685] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  644.501697] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  644.501703] CR3 = 0x0000000000000000
[  644.501711] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  644.501720] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  644.501733] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  644.501743] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
10:10:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r3, 0xc040564b, &(0x7f0000000040)={0x2, 0x8, 0x201a, 0x5, 0x6, {0x6, 0x80000001}, 0x1})
add_key$user(0x0, 0x0, 0x0, 0xffffffffffffff9d, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  644.501758] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.501775] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.501806] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.501822] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.501837] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  644.501850] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  644.501867] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  644.501879] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  644.501895] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  644.501904] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  644.501914] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  644.501924] Interruptibility = 00000008  ActivityState = 00000000
[  644.501928] *** Host State ***
[  644.501940] RIP = 0xffffffff8120262c  RSP = 0xffff8801b8cef390
10:10:30 executing program 3:
syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xe004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000080)=0x1, 0x4)
open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
fchdir(r0)
ppoll(&(0x7f00000000c0)=[{r0, 0x1}, {r0, 0x208}], 0x2, &(0x7f0000000100), &(0x7f0000000180)={0x3}, 0x8)
r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x4004)
ftruncate(r1, 0x56c)
fchmodat(r1, &(0x7f00000001c0)='./bus/file0\x00', 0x2b)
lseek(r1, 0x0, 0x2)
write$P9_RATTACH(r1, &(0x7f0000000040)={0x14}, 0x14)

[  644.501961] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  644.501971] FSBase=00007f88e60be700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  644.501981] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  644.501995] CR0=0000000080050033 CR3=00000001b60b8000 CR4=00000000001426f0
[  644.502010] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  644.502021] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.502025] *** Control State ***
[  644.502033] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  644.502040] EntryControls=0000d1ff ExitControls=002fefff
[  644.502050] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.502058] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.502067] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001
[  644.502074]         reason=80000021 qualification=0000000000000000
[  644.502082] IDTVectoring: info=00000000 errcode=00000000
[  644.502089] TSC Offset = 0xfffffea4d7a6675e
[  644.502097] EPT pointer = 0x000000011684f01e
[  644.545274] netlink: 'syz-executor0': attribute type 3 has an invalid length.
[  644.545317] netlink: 3 bytes leftover after parsing attributes in process `syz-executor0'.
[  644.642159] *** Guest State ***
[  644.642172] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  644.642183] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  644.642190] CR3 = 0x0000000000000000
[  644.642197] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  644.642207] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  644.642221] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  644.642244] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642260] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642277] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642292] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642308] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642325] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642336] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  644.642353] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.642364] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  644.642381] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  644.642391] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  644.642401] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  644.642410] Interruptibility = 00000000  ActivityState = 00000000
[  644.642415] *** Host State ***
[  644.642427] RIP = 0xffffffff8120262c  RSP = 0xffff8801c0e8f390
[  644.642447] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  644.642459] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  644.642471] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  644.642484] CR0=0000000080050033 CR3=00000001d7e14000 CR4=00000000001426f0
[  644.642498] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  644.642510] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.642514] *** Control State ***
[  644.642523] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  644.642530] EntryControls=0000d1ff ExitControls=002fefff
[  644.642542] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.642550] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.642558] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  644.642566]         reason=80000021 qualification=0000000000000000
[  644.642573] IDTVectoring: info=00000000 errcode=00000000
[  644.642579] TSC Offset = 0xfffffea4ae7270df
[  644.642587] EPT pointer = 0x00000001bfb0701e
[  644.715224] *** Guest State ***
[  644.715237] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  644.715249] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  644.715254] CR3 = 0x0000000000000000
[  644.715261] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  644.715269] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  644.715283] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  644.715293] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715310] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715326] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715345] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715362] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715381] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715393] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  644.715410] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  644.715422] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  644.715438] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  644.715447] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  644.715458] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  644.715467] Interruptibility = 00000000  ActivityState = 00000000
[  644.715471] *** Host State ***
[  644.715481] RIP = 0xffffffff8120262c  RSP = 0xffff8801792a7390
[  644.715504] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  644.715515] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  644.715526] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  644.715542] CR0=0000000080050033 CR3=00000001bf1d0000 CR4=00000000001426f0
[  644.715556] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  644.715567] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  644.715571] *** Control State ***
[  644.715579] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  644.715586] EntryControls=0000d1ff ExitControls=002fefff
[  644.715599] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  644.715606] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  644.715618] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  644.804715]         reason=80000021 qualification=0000000000000000
[  644.856093] IDTVectoring: info=00000000 errcode=00000000
[  644.964625] TSC Offset = 0xfffffea4a6bdf17b
[  645.018013] EPT pointer = 0x000000011686001e
[  645.166516] *** Guest State ***
[  645.195878] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  645.205556] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  645.218161] CR3 = 0x0000000000000000
[  645.298803] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  645.395118] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  645.405393] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
10:10:31 executing program 0:
r0 = socket$alg(0x26, 0x5, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000006580)=[{{&(0x7f0000001c40)=@sco, 0x80, &(0x7f0000002000)=[{&(0x7f0000001f40)=""/26, 0x1a}, {&(0x7f0000001f80)=""/68, 0x44}], 0x2, &(0x7f0000002080)=""/77, 0x4d}}], 0x1, 0x0, &(0x7f00000067c0))
bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-des3_ede-asm\x00'}, 0x58)
sendmmsg(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="5dc7e568e302baab635b0a4d879823961bde76a6b8b1d053227a6d110578629b466b07bec1e1ed801726", 0x2a}, {&(0x7f00000000c0)="00764c8abf879ea8cc45bb80ea77251c96127ec20f6f47be6901a9e82c924d9d982d0dd5b735379012a11d0d2bddc368e7a4901e04342d5f123f945eafc51974b6b5d6074753b8b372f158ecd4fc7c71aeb0866e97f1c55df8a2874fb4170b72f4ef0ae720a962450f16d7a1c87a343e5f0921dd28dd9eb19ce4bb097cb9af499979632a7f37760fa6ed4e58aad68954b2dd61f6480b00b3a805f20bc113cd361d761bb07e83ab066b1a23c78ffb1ae50c12863ea8c4fde458d77390a04b6a3aea99e11cc036c49e97695daefff62dd46e031d94c0ff967e5a546b2f12ca029a0e3974b9582765f47ee016d520dcb6d5", 0xf0}, {&(0x7f00000002c0)="919d491fa0faacb9c9e79bb389f5bfaa0b291b1a6eea582cc7b1ba09669b80f2804b1294d64e889c6785716dda6aa3a171ef6d988bad91e705302d647acc0c5f79252cbe944ba2323ecb25d7c49bf2cab90810106921a54e819cae09a569b1652a07d00e5b7b7a5dcd54aa0ac9ddff92b2667c6df3110bd8fb53c7b8a9cb8fd65a091dda0e5db1d7f773f9f755b7689f48a02b5f8acb367401994b57313c2de0142055518f2286c47ff54f86561b149fc01a351d9c6178cf", 0xb8}, {&(0x7f0000000400)="3debb7174698c86b491668de2d5e7f8c97d37edae1cab88d06e5520174337b8cc688e90fd15508974f0d20280f2f311f149b28cdf945ab9187b1d2256956fef4723eeeb07e1a9aa59ae3d3c1dbd0152efdf26e87394d6747e3e3ff8b4350f6f7c6915beab023b97a700497a0b47b537c29738d619cb8fc", 0x77}, {&(0x7f0000000480)="b3e67264dea59d25909400695757509b4559f542107eb4fd9d63273defcce470659fc5adacdc2a5026373835c1c6d1f257a2bd74cdb49f0a1cb63b25b1a579daa037fa47457ac7a0db5cc2a122ad3bd6f4bbf4058da16450d6d8658d8f40aeecb07abf03d43661dff94787a37dce8a72c9609523c6b3bf0de613352868d908c3807b73987b71c03507a18236b1df93163ee8c883f48de931dac2ff67412bb1582c3f7ff5d9b4caf7dda0b70aa7573ea3c90e0af1ed2ad55f024c3a508d7ea7f6fb6f80b905bb74c6788ac44150ac4530b7c5302a69cc2a8fb50961fc9d46ac06fdf6896bcb2f1409", 0xe8}, {&(0x7f0000000580)="e112652b3cbb731ce39b6131b12b3d0771597e19086df44fb47181519777abf55cb793506f3c1e16852fe140ac5e044e5991bd4ccf7b5c2f161fc75331d556f5c5870f6cdf1d1e68ac485f65200fd0436250db35bb4a84696e2fd61a3b8a0e368637467cc8623d9e80b9b25431437dceb10eba38e968dcc02532f21b315c35518ab94ed5fa8fe3b98a29abfbfdd1c3018fb48d38ac1718e131d2d05829bf4c3d3df97634843dde48c843853b9e349954e9b31ed3a42216e41c4aac36b4c1b01d08851b3a0f0a", 0xc6}], 0x6, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x148, 0x20000000}, 0xfffffffffffffffe}, {{&(0x7f0000000880)=@pppol2tp={0x18, 0x1, {0x0, r0, {0x2, 0x4e24}, 0x1, 0x4, 0x3}}, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000900)="ec66fb4d208eb09f87a8b236293c484c940429b1424d336efce7c6d1dee1a531d638bed9bc2fab319e1619c3f7745925beb77ff0b6c237a8aedf87440bc0d5c01cff12304d7bf5ca4dc2abb3703e3cf0c15491837ec6a8bc6c4ec55ad25e670335e9159e78e2552ed1da72743e98f718c50f8949fa50c47edc590201d9c4cd740bf2786c499d8c41ca13b843bb8500ad65841682a9355f3ab31259b9df3f973d6994c8a84931cfd85da4203c4e65d8e05a41deb1f7fb1f2e97ce435430b7244e81", 0xc1}, {&(0x7f0000000a00)="d4f35e6d90c34ba134a6b026118f620004406933e06d8db89cef2368f6b28447021a92aea79d738c544275409941c2afe9ff9028498e8a550fffc645b95d1bf4266eb6b797529bed5ed91f574fcfc756f3ff9c791c4796283fb54ed727ac4f0828b195da1782897873859987d8d2dae841a28cc015ca", 0x76}, {&(0x7f0000000a80)="5a78ec09a577fd5fcf0db5e5de8620b46daaf08019922139f6072efbc9e62c88f65bb65532453271bd0bca5112c3dad4747f95601208fe9da38374bf2907b7b85a52b9d2d4b3e655654330e93cc861a4e8b68e7ecae675480b7c599ec913752e14d0a9498c4b49daf6648ee988b5d6e036177c03ae7beeb1a9874d1bbbc3f2df35559175deb41f0896ba5ac7ec5fa8bb84b345838bbf8ccd5a73eebb6550fb87a68126060c0051e376903eee19931bfba7143a63ededfbddf10f5b", 0xbb}, {&(0x7f0000000b40)="e54a034082cdbf7f6ff91e077bb21395957e60afc90ea07d811be7e7612107b371445b2b627c12da918aa2a22bbe0da0ff110877670885fb4bc732361c6a878c1fb8fe5d2a2c7f36bd3e5ae2161479eb99df7eb4591fa596ded30d8c21412e001ae3f92f96577b66b3b0e9968fd6ad001069d042f0ba7fe3877fa52b07b118e4a1bc79a555ce1eebc42e49d5228ad9ecff2b1180117152c469a98d0df2107180d3217aa8d28d90fb34f03dd5ca1b497d84b36b0492fdda0fca", 0xb9}, {&(0x7f0000000c00)="d1ddafe2873547394c66194df3d106d758288d2f018bd74e1ba0ff27af70cc1496b3c9ed386d88f8be38fbf7092a599b3e0274a90c818853e6aa1c8faa8743b1445148d2725b93e57ecf2c96362cacca6d002ffb084a22e49ac3ab71766a184c9f4af667c64ca2ae308fd91752757a5478246da8e718f5813df1df12ded1f4d582984bc53cef35716e1a8dccfe655ae0debade14e0612e3ef76cee2f20bdce832ca49fcefa98a5c36eb63b9abd4c89c42473", 0xb2}, {&(0x7f0000000d80)="f302507e661fd25ab34c62b2d66dd63fc6b8a7699d0a880b38147f43893a91572755017d27a8072c67bb09ebecf5fba759a3fe8ab6e94f2439b642f3d096913541cc6a29ec20b2342af76bd1940276057a0f2159c4430d81871b4c04e4a089", 0x5f}], 0x6, &(0x7f0000000e80)=[{0x10, 0x88, 0x1}, {0x90, 0x11b, 0xffff, "14b4fdfed37c2b9121231777891f703f15a6b2390715e9d82051319d72f66669a0ecd29bcc061fb2a87210e82d4a1a47e0b3fae629c421da3ea0b4597878cb790c2573148ba99e234a00e831bc4f66e4ace86810de7568308e991b884af231f6556233c49b2b67c1e4036fd45c0788aaf075b6ef9d73c35fe3a2b00b"}], 0xa0, 0x10}, 0x9}, {{0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x11}, 0x6}], 0x3, 0x810)
r1 = accept4(r0, 0x0, &(0x7f0000000080)=0x15b, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820faeb995298992ea54c7beef915d56534c90c2", 0x18)
sendmsg$nl_route_sched(r1, &(0x7f0000000d40)={&(0x7f00000003c0), 0xc, &(0x7f0000000d00)={&(0x7f0000000200)=@deltclass={0x24}, 0x24}}, 0x0)
recvmmsg(r1, &(0x7f0000001bc0), 0xfe, 0x0, &(0x7f0000001d00)={0x77359400})

10:10:31 executing program 2:
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f00000000c0), 0xfffffffffffffde5)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000080), 0x4)

10:10:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0x2, 0x0)
ioctl$UI_SET_SWBIT(r1, 0x4004556d, 0xd)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000200)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
fsetxattr$trusted_overlay_origin(r3, &(0x7f0000000080)='trusted.overlay.origin\x00', &(0x7f00000000c0)='y\x00', 0x2, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/net/pfkey\x00', 0x40000, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10:10:31 executing program 3:
r0 = timerfd_create(0x0, 0x0)
fcntl$notify(r0, 0x402, 0x80000020)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}}, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000100)='/dev/media#\x00', 0x7, 0x1)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20080000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="79699b03c66b72ca75591b9bca98c3b6d7cf0b802c7e2fc397d5405d53d79847e97e79dc0d77bd4bb2b7d614bbce6e51509c7c98571618d612339003200a5d89f5edfaa2f92b9f2bee8c7362d8805a9d96979b89b85187f9eb531704492f994b0b2d3b92a824dbec22053592", @ANYRES16=r2, @ANYBLOB="000128bd7000fcdbdf250700000008000400090000002c0003000800040003000000080003000100000008000500e0000001080007004e23000008000400ffff00004c000300080007004e22000014000600fe800000000000000000000000000011080004000600000014000600ff020000000000000000000000000001080007004e2200000800030004000000080004000600000008000400ff7f00002c000200080002004e220000080002004e230000080005004d08000008000800008000000800040000007024"], 0xd0}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
clock_settime(0x0, &(0x7f0000000000)={0x77359400})
r3 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x80)
getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000340)={<r4=>0x0, 0x0, 0x80000001}, &(0x7f0000000380)=0x10)
getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000003c0)={0x2de, 0x3, 0x0, 0x0, 0x45d5, 0x1, 0xffffffff, 0x5, r4}, &(0x7f0000000400)=0x20)
ioctl$EVIOCGABS0(r3, 0x80184540, &(0x7f00000000c0)=""/42)

10:10:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r4 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f000001d000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f00000001c0)=[@cstype0, @cstype3={0x5, 0x8}], 0x2)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000200)={0x11, @dev={0xac, 0x14, 0x14, 0xc}, 0x4e23, 0x0, 'fo\x00', 0x8, 0x5, 0x52}, 0x2c)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r2)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={<r5=>0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f00000000c0)={r5}, &(0x7f0000000140)=0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x2, 0x2)

[  645.416100] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.441553] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.450112] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.631166] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.751882] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.759993] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  645.782291] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  645.804210] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  645.838529] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  645.849564] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  645.859723] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  645.871987] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  645.888743] Interruptibility = 00000008  ActivityState = 00000000
[  645.901835] *** Guest State ***
[  645.903460] *** Host State ***
[  645.913054] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  645.914229] RIP = 0xffffffff8120262c  RSP = 0xffff8801b46cf390
[  645.927822] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  645.928306] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  645.937497] CR3 = 0x0000000000000000
[  645.947718] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  645.958892] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  645.960117] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  645.967352] CR0=0000000080050033 CR3=00000001bf1d0000 CR4=00000000001426f0
[  645.978565] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  645.982297] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  645.985365] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  645.996697] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  646.004291] *** Control State ***
[  646.004302] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  646.004310] EntryControls=0000d1ff ExitControls=002fefff
[  646.004323] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  646.010195] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.019168] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  646.035293] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  646.047115] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.048187]         reason=80000021 qualification=0000000000000000
[  646.048198] IDTVectoring: info=00000000 errcode=00000000
[  646.056625] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.062775] TSC Offset = 0xfffffea4a6bdf17b
[  646.062785] EPT pointer = 0x00000001d26f801e
[  646.080900] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.099484] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.107715] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.124007] GDTR:                           limit=0x00000002, base=0x0000000000000000
03:33:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0xbee, 0x0, 0xffffffff}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:20 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000040), &(0x7f0000000080)=0x4)
syz_mount_image$msdos(&(0x7f00000000c0)='msdos\x00', &(0x7f0000000200)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
r1 = socket(0x11, 0x2, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0)
ioctl$NBD_SET_SOCK(r2, 0xab00, r1)
ioctl$NBD_CLEAR_SOCK(r2, 0xab03)
ioctl$NBD_SET_BLKSIZE(r2, 0xab01, 0x400)
r3 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r3, 0x40047211, &(0x7f0000000000)={0x0, 0x0, 0x0, @broadcast, "71616d3000001b5500"})

03:33:20 executing program 0:
clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x1b)
ptrace$cont(0x18, r0, 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x402040, 0x0)
ioctl$KVM_SET_XSAVE(r1, 0x5000aea5, &(0x7f00000011c0)={"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"})
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000000c0)={@mcast2, @empty, @ipv4={[], [], @dev}, 0x0, 0x0, 0x0, 0x1e})
r2 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000140)="9c8c9b0a82a8b639237a2613e7881fbbc26d5dcaf42eecfd094de3feb7e83c4514e75927c1f41c9d6c826928bb091e3ea2efd666b92b4ae13dd8b05ee9e5a0af9285347ff16f2930d0465746c43588a17ebbfb919fb8ab6b4a6f18a89bfb7f0086", 0x61, 0xfffffffffffffff9)
keyctl$get_security(0x11, r2, &(0x7f00000001c0)=""/4096, 0x1000)
ptrace$setregs(0xd, r0, 0x9, &(0x7f0000000080))
ptrace$cont(0x21, r0, 0x0, 0x0)

03:33:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x5, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$VIDIOC_G_PARM(r3, 0xc0cc5615, &(0x7f00000002c0)={0x3, @output={0x1000, 0x1, {0x1f, 0x1}, 0x143, 0x918}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={<r4=>0x0}, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000040)={r4, 0x7c42, 0x3, 0x40}, &(0x7f00000000c0)=0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  646.137912] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.146431] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  646.183801] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  646.192645] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  646.199604] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  646.220594] Interruptibility = 00000000  ActivityState = 00000000
03:33:20 executing program 3:
setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000000040)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}}, 0x5c)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x20000, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00')
write$P9_RXATTRWALK(r1, &(0x7f0000000180)={0xf, 0x1f, 0x1, 0x6}, 0xf)
sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r2, @ANYBLOB="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"], 0xc0}, 0x1, 0x0, 0x0, 0x20000000}, 0x2400c004)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000000040)=0x1fffffff0007fffc)

03:33:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_extract_tcp_res(&(0x7f0000000000), 0x10000, 0x2bbf20de)
exit_group(0x40)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0)
r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r3, 0xaf01, 0x0)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
fstat(0xffffffffffffffff, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)

[  646.235766] *** Host State ***
[  646.249295] block nbd0: Receive control failed (result -22)
[  646.274139] block nbd0: Device being setup by another task
[  646.279238] RIP = 0xffffffff8120262c  RSP = 0xffff8801bf0d7390
[  646.299863] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  646.332908] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  646.341812] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  646.343316] EXT4-fs warning (device sda1): ext4_group_extend:1791: can't read last block, resize aborted
[  646.357833] CR0=0000000080050033 CR3=00000001172c6000 CR4=00000000001426e0
[  646.367096] block nbd0: shutting down sockets
[  646.368219] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  646.378639] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  646.385728] *** Control State ***
[  646.389983] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
03:33:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r3, 0x28, 0x1, &(0x7f0000000040)=0x1ff, 0x8)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  646.396904] EntryControls=0000d1ff ExitControls=002fefff
[  646.403111] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  646.410805] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  646.417710] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  646.424948]         reason=80000021 qualification=0000000000000000
[  646.431778] IDTVectoring: info=00000000 errcode=00000000
[  646.437505] TSC Offset = 0xfffffea40729e106
[  646.443607] EPT pointer = 0x00000001168c301e
03:33:20 executing program 2:
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x200, 0x0)
write$P9_RSYMLINK(r0, &(0x7f00000000c0)={0x14, 0x11, 0x1, {0x40, 0x3, 0x4}}, 0x14)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xfffffffffffffffc)
write$P9_RWSTAT(r1, &(0x7f0000000140)={0x7}, 0x7)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
truncate(&(0x7f0000000180)='./file0/bus\x00', 0x0)
write$P9_RSETATTR(r1, &(0x7f0000000000)={0x7}, 0x20000007)

03:33:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
getsockopt$bt_BT_SNDMTU(r3, 0x112, 0xc, &(0x7f0000000040)=0x8, &(0x7f00000000c0)=0x2)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0xfffffffffffffffc, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  646.538824] *** Guest State ***
[  646.558936] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  646.559490] *** Guest State ***
[  646.585695] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  646.618775] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  646.638578] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  646.641035] CR3 = 0x0000000000000000
[  646.655443] CR3 = 0x0000000000000000
[  646.661218] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  646.672223] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  646.672546] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  646.689681] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  646.694391] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  646.703477] *** Guest State ***
[  646.706928] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  646.708076] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.714108] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  646.730939] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.733828] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.739309] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.747100] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.755391] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  646.772425] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.772910] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.784030] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.800128] CR3 = 0x0000000000000000
[  646.804007] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  646.808494] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.810395] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  646.820795] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.824361] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.840944] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  646.847813] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  646.848527] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  646.856248] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.872240] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.874325] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  646.883175] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.888501] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.896711] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.904497] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  646.912750] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.921414] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  646.929377] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.936802] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  646.944996] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  646.952789] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  646.952806] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  646.952816] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  646.952828] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  646.952840] Interruptibility = 00000008  ActivityState = 00000000
[  646.961420] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  646.968935] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  646.977149] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  646.983376] *** Host State ***
[  646.983390] RIP = 0xffffffff8120262c  RSP = 0xffff8801792a7390
[  646.991166] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  646.997197] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  647.020903] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  647.022828] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  647.022840] FSBase=00007f88e60be700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  647.036775] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  647.036804] Interruptibility = 00000000  ActivityState = 00000000
[  647.044362] Interruptibility = 00000000  ActivityState = 00000000
[  647.064900] *** Host State ***
[  647.072836] RIP = 0xffffffff8120262c  RSP = 0xffff8801d81bf390
[  647.083442] *** Host State ***
[  647.086621] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  647.096647] RIP = 0xffffffff8120262c  RSP = 0xffff8801d16ef390
[  647.097828] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  647.104194] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  647.110687] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  647.120685] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  647.124119] CR0=0000000080050033 CR3=00000001cc453000 CR4=00000000001426e0
[  647.129857] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  647.136456] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  647.143396] CR0=0000000080050033 CR3=00000001172c6000 CR4=00000000001426e0
[  647.151419] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  647.157835] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  647.165140] *** Control State ***
[  647.171288] CR0=0000000080050033 CR3=00000001b223b000 CR4=00000000001426f0
[  647.177352] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  647.180604] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  647.180615] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  647.187868] EntryControls=0000d1ff ExitControls=002fefff
[  647.195253] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  647.201920] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  647.207214] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  647.212943] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  647.219429] *** Control State ***
[  647.219440] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  647.219448] EntryControls=0000d1ff ExitControls=002fefff
[  647.219461] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  647.219472] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  647.226703] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  647.232569] *** Control State ***
[  647.239516]         reason=80000021 qualification=0000000000000000
[  647.242827] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  647.249699] IDTVectoring: info=00000000 errcode=00000000
[  647.254911] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  647.254920]         reason=80000021 qualification=0000000000000000
[  647.254927] IDTVectoring: info=00000000 errcode=00000000
[  647.254944] TSC Offset = 0xfffffea40729e106
[  647.262213] TSC Offset = 0xfffffea394ac0d63
[  647.268718] EntryControls=0000d1ff ExitControls=002fefff
[  647.275525] EPT pointer = 0x00000001bc99401e
[  647.278835] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
03:33:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000180)="72b514138eb36ce424f4607d9d0f29df39cea489f540df1c6bb74a116a51d259f8375d53843628e96fc957205e06e5e4911cf44c73df049b2ec3cded56a2f4605d850b55937629d17c537787040bfd4fc590d0309caffd4eccdd03241c92522199c5b28ff639154d6ff04174930552fdb29b36711984a29b2e49f702c731e4dd158043ab244f332d5c47a26a7733300bfc4d890b932d1edee4")
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:21 executing program 3:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000180)="24c38cac13a4cf25f32bb620a4a8bf4f", 0x10)
r1 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x22200}, 0xc, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="5400efff", @ANYRES16=r2, @ANYBLOB="000129bd7000ffdbdf250800000024f8030008000400030043f6f922ffc3979a0002080007004e210000080004000400000014000100080002003b000004900008000500020000000800040001800000"], 0x54}}, 0x4004000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000138000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="0f21e00f6592a9fd65660feec5baf80c66b878ebd18f66efbafc0cb800a0ef0f234a2057610f323e360f017ee9f40fc718", 0x31}], 0x1, 0x40, &(0x7f0000000140)=[@cr0={0x0, 0x20}], 0x1)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x88000, 0x0)
setxattr$security_smack_entry(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='security.SMACK64IPIN\x00', &(0x7f00000002c0)='\\md5sumuserselinux\x00', 0x13, 0x3)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffffffffffff)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)={0x7fffffff, 0x80000001, 0xffff, 0x0, 0x4, 0x4, 0x10000, 0x800, 0x80000000, 0x2, 0x401, 0x3, 0x0, 0x80000000, 0x5, 0x9, 0x3, 0x3ff, 0x9})
ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000300)={{0x2, 0x0, 0x44e9, 0x3, 0x4}, 0xd690, 0xfff})
unlink(&(0x7f0000000440)='./file0\x00')
syz_kvm_setup_cpu$x86(r6, r5, &(0x7f0000209000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r1, &(0x7f0000000200)='./file0\x00', 0xc00)

03:33:21 executing program 0:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x10, 0x3, 0x0)
r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x5ed, 0x8000)
ioctl$VIDIOC_ENUMOUTPUT(r1, 0xc0485630, &(0x7f0000000080)={0xf36, "b0447d3e1d72e088f32da40e55cf064d6d81f605249f07156d01c1f6e473f7f1", 0x2, 0x5, 0x7fffffff, 0x1f200e0, 0x8})
sendmsg(r0, &(0x7f0000004fc8)={0x0, 0x0, &(0x7f000000eff0)=[{&(0x7f0000010000)="240000001900030007ff0907000083be8020000000040005031d85680138a3a2d188737e", 0x24}], 0x1}, 0x0)
read(0xffffffffffffffff, &(0x7f0000000000), 0x0)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x4e24, @local}, 0x10)

03:33:21 executing program 2:
io_setup(0x0, &(0x7f0000000080)=<r0=>0x0)
r1 = openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/attr/current\x00', 0x2, 0x0)
pipe2(&(0x7f0000000200)={<r2=>0xffffffffffffffff}, 0x80000)
io_cancel(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x1, r1, &(0x7f0000000100)="4606a51c15dbaa21577b29ad2391fbccf1a6ac6bc775512c513f7c67ca8c203923afb223db57cac63eae2d3f31e5ba2cf20cd920dda5141100bb6b5def7e3f151c229ffb83caf594d626a94dd4e9cc395e0409c5b4273c7d34bce322939105c3c4611158223382633d5e3b98d042ff8d9cce18c0f8de297c4018a6a6593f35737bdf5a0c9a407fab9ba5cd67365f3483be476fbbfdc73425feb05703bb9c92c596c1c65c5d84a67fe0179cf1fc9b5991021454915ba1d08ea256abecdfff41906210b7cc265edbc3", 0xc8, 0xffffffffffffff93, 0x0, 0x1, r2}, &(0x7f0000000280))
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_S_CROP(r4, 0xc038563c, &(0x7f0000000040)={0x0, 0x20, {0x8001, 0x90, 0x5, 0x5}})
setsockopt$sock_void(r3, 0x29, 0x100000000000020, 0x0, 0x300)

[  647.291901] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  647.304186] EPT pointer = 0x00000001c48d101e
[  647.310352] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  647.324996]         reason=80000021 qualification=0000000000000000
[  647.379129] IDTVectoring: info=00000000 errcode=00000000
[  647.408199] TSC Offset = 0xfffffea3a6352cdc
03:33:21 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x6)
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")
r1 = socket$inet6(0xa, 0x6, 0x7)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r1, 0x6)
socket$inet6_sctp(0xa, 0x5, 0x84)
accept4$inet6(r1, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x0)
connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
r3 = accept(r1, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000005700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
recvfrom$inet6(r3, 0x0, 0x0, 0x20, 0x0, 0x0)
membarrier(0x0, 0x0)

[  647.448962] EPT pointer = 0x00000001c203501e
03:33:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
write$FUSE_IOCTL(r3, &(0x7f0000000040)={0x20, 0x0, 0x7, {0x11d2, 0x4, 0x200, 0x3}}, 0x20)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  647.498940] *** Guest State ***
[  647.502247] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  647.522143] *** Guest State ***
[  647.537524] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
03:33:21 executing program 0:
r0 = semget(0x0, 0x7, 0x200)
semtimedop(r0, &(0x7f0000000000)=[{0x3, 0xffff, 0x1000}, {0x3, 0x0, 0x1000}, {0x5, 0x8, 0x1800}], 0x3, &(0x7f0000000040)={0x0, 0x1c9c380})
r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x624c, 0x109000)
ioctl$UI_DEV_DESTROY(r1, 0x5502)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
clock_gettime(0x0, &(0x7f00000000c0)={<r3=>0x0, <r4=>0x0})
ioctl$VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000140)={0x69f, 0xb, 0x4, 0x20002000, {r3, r4/1000+10000}, {0x4, 0xb, 0x200, 0x72, 0x7fff, 0x4, "e995f2fa"}, 0x848, 0x3, @planes=0x0, 0x4})
clock_gettime(0x6, &(0x7f00000001c0))
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000200)=0xffff, 0x4)
connect$rds(r1, &(0x7f0000000240)={0x2, 0x4e23, @multicast2}, 0x10)
ioctl$int_in(r2, 0x5473, &(0x7f0000000280)=0x7f8c)
r5 = openat$full(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/full\x00', 0x80000, 0x0)
socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000300)={<r6=>0xffffffffffffffff})
r7 = shmget(0x2, 0x2000, 0x410, &(0x7f0000ffd000/0x2000)=nil)
shmctl$IPC_STAT(r7, 0x2, &(0x7f0000000340)=""/34)
r8 = dup2(r6, r6)
fanotify_mark(r5, 0x4a, 0x8000020, r1, &(0x7f0000000380)='./file0\x00')
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r8, 0x84, 0x21, &(0x7f00000003c0)=0x19, 0x4)
ioctl$TIOCSWINSZ(r5, 0x5414, &(0x7f0000000400)={0xfffffffffffffffa, 0x8, 0x0, 0x3f})
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000440)={'ipvs\x00'}, &(0x7f0000000480)=0x1e)
socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f00000004c0)={<r9=>0xffffffffffffffff})
r10 = accept$unix(r8, &(0x7f0000000500), &(0x7f0000000580)=0x6e)
semctl$GETVAL(r0, 0x3, 0xc, &(0x7f00000005c0)=""/4096)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x1031, r9, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f00000015c0))
preadv(r10, &(0x7f00000016c0)=[{&(0x7f0000001600)=""/113, 0x71}, {&(0x7f0000001680)=""/19, 0x13}], 0x2, 0x0)
ioctl$GIO_UNISCRNMAP(r5, 0x4b69, &(0x7f0000001700)=""/69)
semctl$GETNCNT(r0, 0x3, 0xe, &(0x7f0000001780)=""/12)
mmap$binder(&(0x7f0000ffa000/0x6000)=nil, 0x6000, 0x2000006, 0x10, r8, 0x0)

[  647.547115] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  647.579495] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  647.618750] CR3 = 0x0000000000000000
[  647.630864] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  647.643219] CR3 = 0x0000000000000000
[  647.654745] *** Guest State ***
[  647.661185] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  647.667770] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  647.678579] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  647.688302] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  647.702601] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:33:21 executing program 2:
r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)
socket$kcm(0x2, 0x3, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x5411, 0x70effd)

[  647.728857] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  647.737915] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  647.746173] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.754338] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  647.763602] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
03:33:21 executing program 0:
r0 = socket$inet6(0xa, 0x803, 0x8)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000100))
ioctl(r0, 0x1000008912, &(0x7f0000000140)="0a5c2d023c126285718070")
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000000240)=0x1)
mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000280)="7379736673002a864f4bc00bce1bdb20637213b1e894d120715f9dc1125b042c7226eb0136d9624ea1d23374a660fe5ac173722fd367ad22e8553025a2e8be0bc5514379af7213d32b8d5d06dc8fbf2c849ed9cdefc74b03dfa9cb5a90b28b4b24d7862c3d66fca53167d5424235435a3dbb76bc7d3c42fc2e9c696114a6f888f0da85277683cfc1c4d2bf71c255a3134d64cc3fed8e97798deb8631cbf7682c9fa2ed031465aa191df922f764297cba22a8499d177f49fba940f55bbc8b723fd374f1fed78c8aeec6811d9b5879487387d56594a14c2588274de84fa27610302b3fb54172a8c910a07e7c76ea465aa68402", 0x0, 0x0)
chroot(&(0x7f0000000500)='./file0\x00')
r1 = syz_open_dev$swradio(&(0x7f0000000200)='/dev/swradio#\x00', 0x0, 0x2)
ioctl$VT_RELDISP(r1, 0x5605)
r2 = syz_open_dev$adsp(&(0x7f00000001c0)='/dev/adsp#\x00', 0x0, 0x0)
umount2(&(0x7f00000000c0)='./file0\x00', 0x1)
ioctl$VIDIOC_G_CROP(r2, 0xc014563b, &(0x7f0000000180)={0xc, {0x80000001, 0x1, 0x6, 0xb9}})
recvfrom$inet6(r0, &(0x7f0000000000)=""/186, 0xba, 0x0, 0x0, 0x0)

[  647.780774] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.798493] CR3 = 0x0000000000000000
[  647.802817] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  647.811167] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  647.831833] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.844259] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  647.852639] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  647.867233] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.878548] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  647.889453] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  647.903126] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.916170] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  647.924511] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.936973] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.947585] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  647.969473] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  647.977583] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  647.985969] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  647.999094] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.007204] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.018798] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  648.058633] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  648.066896] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.078496] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  648.090169] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  648.098225] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.107525] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  648.114494] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  648.122639] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  648.130873] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  648.138802] Interruptibility = 00000008  ActivityState = 00000000
[  648.150824] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.159326] Interruptibility = 00000000  ActivityState = 00000000
[  648.165687] *** Host State ***
[  648.169220] RIP = 0xffffffff8120262c  RSP = 0xffff8801b4bbf390
[  648.175299] *** Host State ***
[  648.178951] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb8f390
[  648.185045] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  648.191794] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  648.208557] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  648.218708] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  648.232056] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  648.248509] LDTR: sel=0x0000, attr=0x000ff, limit=0x00000000, base=0x0000000000000000
[  648.256640] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  648.264820] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  648.270849] CR0=0000000080050033 CR3=00000001b223b000 CR4=00000000001426f0
[  648.278323] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  648.288540] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  648.296511] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  648.303036] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  648.315285] CR0=0000000080050033 CR3=00000001172c6000 CR4=00000000001426f0
[  648.315702] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  648.333911] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  648.350990] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  648.359308] *** Control State ***
[  648.362849] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  648.370485] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  648.371240] *** Control State ***
[  648.377227] EntryControls=0000d1ff ExitControls=002fefff
[  648.388645] Interruptibility = 00000000  ActivityState = 00000000
[  648.389388] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  648.394870] *** Host State ***
[  648.394884] RIP = 0xffffffff8120262c  RSP = 0xffff880120f07390
[  648.394906] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  648.394919] FSBase=00007fecb7d75700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  648.394930] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  648.409009] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  648.431256] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  648.445132] CR0=0000000080050033 CR3=00000001168e7000 CR4=00000000001426f0
[  648.446350] EntryControls=0000d1ff ExitControls=002fefff
[  648.452288] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  648.452297]         reason=80000021 qualification=0000000000000000
[  648.452306] IDTVectoring: info=00000000 errcode=00000000
[  648.452312] TSC Offset = 0xfffffea3a6352cdc
[  648.452321] EPT pointer = 0x00000001b831e01e
[  648.458312] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  648.471198] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  648.480996] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  648.491863] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  648.499364]         reason=80000021 qualification=0000000000000000
[  648.520398] IDTVectoring: info=00000000 errcode=00000000
[  648.526075] TSC Offset = 0xfffffea3261c3788
[  648.530847] EPT pointer = 0x000000011681c01e
[  648.533415] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  648.544964] *** Control State ***
[  648.550931] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  648.557693] EntryControls=0000d1ff ExitControls=002fefff
03:33:22 executing program 0:
mkdir(&(0x7f0000000040)='./control\x00', 0x0)
chmod(&(0x7f00000000c0)='./control\x00', 0x9c32f69e6caa24eb)
lstat(&(0x7f0000000240)='./control\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
capset(&(0x7f0000000580)={0x19980330}, &(0x7f00000005c0)={0x1, 0x89f})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_MPX_ENABLE_MANAGEMENT(0x2b)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setxattr$system_posix_acl(&(0x7f0000000180)='./control\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010000000000000004000000000000001000000000000000200000000000000006775fe1b42b5081f6af6f561d09426fb2270f81f89b92e713e34cc5579295007321eb14134e3617c612dff8adf8a00a255272cf89f65114b537d48edbe25ea7822e840764cdbf1db0c94d745b380a599da4a6cda750de10ebd19c974eb6f80e9d5e49c62b37d683d1cab6f913f14613ea16a5f2167517d7d7bf80e4e0f7f33d1e15ce3901da78559e0594cd0b8bad6c3a7e498b0d73469c944e079afd54f70a878e68bd248dc89af694c3dcfbc66e"], 0x24, 0x0)
chown(&(0x7f0000000080)='./control\x00', 0x0, r0)
r3 = open(&(0x7f0000000400)='./control\x00', 0x1, 0xf6ffffff)
pwrite64(r3, &(0x7f0000000600)="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", 0x200, 0x0)
getpeername$unix(r1, &(0x7f0000000100)=@abs, &(0x7f0000000200)=0x6e)

03:33:22 executing program 2:
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x400, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="15000008858f20892be59cb54fafb1850065ffff0234000008003950323030302e4c"], 0x15)
r1 = semget$private(0x0, 0x4, 0x28)
unshare(0x40000)
semtimedop(r1, &(0x7f0000000140)=[{0x0, 0xfffffffffffffff9, 0x1000}], 0x0, &(0x7f0000efe000)={0x2000})
semop(r1, &(0x7f0000000000)=[{0x0, 0x0, 0x1000}], 0x1)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000280)={<r2=>0x0, 0x0, 0x10, 0xffffffff, 0x3}, &(0x7f00000002c0)=0x18)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000300)={r2, @in={{0x2, 0x4e20, @broadcast}}, 0x5, 0x7}, &(0x7f00000003c0)=0x90)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000040)=[0x10000, 0x700000000000000, 0x2, 0x4f5e, 0xffffffff80000004, 0x8, 0x3, 0x0, 0x5])
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.upper\x00', &(0x7f0000000200)={0x0, 0xfb, 0x64, 0x4, 0xfffffffffffffffc, "c8e912f50d0c1e01257968462456163a", "5ca1b247807e476d8b954c35ea8fc1645d1d4b5d9c064baa816ad51f0e979c331a628dfbcce223ed19e31c7652fd65e8e46fde797b123d8bc33cc561e179f072ddfcf7c19f1f0f2b064ee0b9d7e75a"}, 0x64, 0x2)
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f00000000c0)=0x4, 0x4)

03:33:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000080)={&(0x7f0000000040)=[0x0, 0x0], 0x2})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={<r4=>0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$PERF_EVENT_IOC_ID(r3, 0x80082407, &(0x7f0000000180))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r5 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYPTR64=&(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRESOCT], @ANYBLOB="087da952bb827670a9e35ca44a1486aec99c932221df9977678931e149b8da3b48c1701cca59b06140d3ec4daad54707f7c896636ecf532798506bcd9675d9fe732d90a9f6feab41c78cc54e64880d409d33c118cec330dde671e09c9dee2333e716fcfd88edb31cfd36091c0f90a42bb7d9b7ba5f7f1c", @ANYRES16=r5, @ANYBLOB="8688989448f09e0bf33d2424f490317570cba3068b26535917b2676d4abe531c0bf610300c56c7ce12c312e5e6cd7d774b09a1", @ANYRES32=r4])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000003c0)={0x0, 0x5000})
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000001000)=ANY=[@ANYBLOB])
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x280, 0x0)
ioctl$TIOCCONS(r3, 0x541d)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r3, 0x40106614, &(0x7f0000000080)={0x0, @aes256})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil})
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_open_dev$video4linux(0x0, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(0xffffffffffffffff, 0xc0905664, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x4dc8, 0x7af7, 0x3ff, 0x7, 0x80000000, 0x100, 0x9, 0x401, 0x9})
ioctl$KVM_GET_CLOCK(r4, 0x8030ae7c, &(0x7f0000000040))

[  648.563476] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  648.572631] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  648.579676] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  648.589603]         reason=80000021 qualification=0000000000000000
[  648.657856] IDTVectoring: info=00000000 errcode=00000000
[  648.690633] TSC Offset = 0xfffffea31335f7c4
03:33:22 executing program 0:
syz_emit_ethernet(0x42, &(0x7f0000000200)={@link_local, @remote, [], {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0xa, @remote, @remote, @dev={[], 0xe}, @local}}}}, 0x0)

[  648.731240] EPT pointer = 0x0000000126dfc01e
03:33:22 executing program 2:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$setstatus(r1, 0x4, 0x44000)
io_setup(0x9e8, &(0x7f0000000200)=<r2=>0x0)
r3 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
ftruncate(r3, 0x8001)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000180))
write$FUSE_BMAP(r3, &(0x7f0000000140)={0x18}, 0x18)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x10000}])
creat(&(0x7f0000000040)='./bus\x00', 0x2)

[  648.765093] *** Guest State ***
[  648.796097] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
03:33:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r4 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000040)={0x2, 0x6})
ioctl$sock_inet_SIOCDARP(r3, 0x8953, &(0x7f00000001c0)={{0x2, 0x4e24}, {0x306, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10, {0x2, 0x4e21, @multicast1}, 'dummy0\x00'})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

03:33:22 executing program 0:
r0 = socket(0x11, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000000)=0x1, 0x4)
r1 = syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x28080, 0x0)
epoll_wait(r2, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}], 0x6, 0x1)
syz_open_dev$ndb(&(0x7f0000000140)='/dev/nbd#\x00', 0x0, 0x200000)
ioctl$NBD_SET_SOCK(r1, 0xab00, r0)
ioctl$NBD_CLEAR_SOCK(r1, 0xab03)
ioctl$NBD_SET_SIZE(r1, 0xab02, 0x0)

[  648.846290] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  648.885964] CR3 = 0x0000000000000000
[  648.898012] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  648.909905] RFLAGS=0x00000002         DR7 = 0x0000000000000400
03:33:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet6_opts(r3, 0x29, 0x3b, &(0x7f0000000080)=""/118, &(0x7f0000000300)=0x76)
r5 = getpgid(0x0)
getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f0000000340), &(0x7f0000000380)=0x4)
ptrace$getregs(0xe, r5, 0x6, &(0x7f0000000180)=""/133)
perf_event_open(0x0, r5, 0x0, r4, 0x2)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet6_dccp_int(r3, 0x21, 0x10, &(0x7f0000000400), &(0x7f0000000440)=0x4)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
lseek(r4, 0x0, 0x1)

[  648.953402] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  648.988779] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  648.999991] block nbd0: Receive control failed (result -22)
03:33:23 executing program 3:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r2, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000010407031dfffd946fa283000c200a00090001005f1d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  649.035049] block nbd0: Device being setup by another task
[  649.052435] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:23 executing program 2:
getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, &(0x7f00000002c0), &(0x7f0000000540)=0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000400)='/dev/urandom\x00', 0x82, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup(r0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
utime(&(0x7f00000001c0)='./bus\x00', &(0x7f0000000200))
ftruncate(r2, 0xee72)
sendfile(r1, r2, &(0x7f0000000000), 0x8000fffffffe)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_ENABLE_CAP(r4, 0x4068aea3, &(0x7f0000000240)={0x79})
ioctl$TIOCMGET(r2, 0x5415, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000180)="2e65f32efe0a6766c7442400008000006766c7442402000000006766c744240600000000670f011c24b866000f00d066b88044a2b20f23c80f21f866350400d0000f23f80f0766b80500000066b9080000000f01c10f0766b8010000000f01c10f01dfb835008ee0", 0x68}], 0x1, 0x0, &(0x7f00000000c0), 0x0)

[  649.094869] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.119445] block nbd0: shutting down sockets
[  649.127207] netlink: 20 bytes leftover after parsing attributes in process `syz-executor3'.
[  649.133363] *** Guest State ***
03:33:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$TUNGETVNETHDRSZ(r3, 0x800454d7, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  649.139700] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.147093] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  649.165835] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.174094] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  649.174767] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:23 executing program 0:
unshare(0x400)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x0)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x65)
r3 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x10000, 0x30000)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0xfff, 0x4, 0x5, 0x1000, <r4=>0x0}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000140)={r4, 0xffffffff, 0x1}, 0x8)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00')
sendmsg$IPVS_CMD_SET_DEST(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r5, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x80000001}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x200}, @IPVS_DEST_ATTR_INACT_CONNS={0x8}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x40)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r2, 0x4, 0x1, r2})

[  649.219388] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  649.233034] CR3 = 0x0000000000000000
[  649.249638] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.257628] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  649.257640] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  649.257654] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  649.264304] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  649.291526] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  649.316969] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  649.325950] *** Guest State ***
[  649.329994] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  649.337631] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  649.340787] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.354580] Interruptibility = 00000000  ActivityState = 00000000
[  649.361763] *** Host State ***
[  649.365134] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  649.374537] RIP = 0xffffffff8120262c  RSP = 0xffff88011cf67390
[  649.381037] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  649.387646] CR3 = 0x0000000000000000
[  649.391867] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  649.401310] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  649.407519] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  649.412711] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.418298] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  649.427813] CR0=0000000080050033 CR3=00000001b8316000 CR4=00000000001426f0
[  649.435278] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  649.437396] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.442344] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  649.450165] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.456995] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.464943] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.464960] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.464973] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  649.473330] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  649.481280] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.489385] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.497547] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  649.511525] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  649.519982] *** Control State ***
[  649.527504] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  649.536593] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.539107] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  649.545793] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.553734] Interruptibility = 00000000  ActivityState = 00000000
[  649.570016] *** Host State ***
[  649.576456] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  649.583234] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb8f390
[  649.585911] EntryControls=0000d1ff ExitControls=002fefff
[  649.597435] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.597482] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  649.605603] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.620571] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  649.620634] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  649.627324] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  649.635268] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  649.642029] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  649.650027] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  649.657823] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  649.672513] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  649.678596] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  649.678608] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  649.687777]         reason=80000021 qualification=0000000000000000
[  649.697187] CR0=0000000080050033 CR3=00000001d1dbe000 CR4=00000000001426e0
[  649.706539] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  649.708573] IDTVectoring: info=00000000 errcode=00000000
[  649.713401] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  649.726317] Interruptibility = 00000000  ActivityState = 00000000
[  649.728541] TSC Offset = 0xfffffea279a913b9
[  649.732720] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  649.738272] EPT pointer = 0x00000001168a501e
[  649.743196] *** Host State ***
[  649.750876] RIP = 0xffffffff8120262c  RSP = 0xffff88011a40f390
[  649.757087] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  649.763648] *** Control State ***
03:33:23 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x222801, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x1f, 0x1)
getsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000140)=0x800, &(0x7f0000000180)=0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000000)=0x8)
write$cgroup_type(r3, &(0x7f0000000240)='threaded\x00', 0xf96d)
fallocate(r3, 0x3, 0x0, 0x408001)
write$P9_RLERRORu(r3, &(0x7f0000000040)={0x13, 0x7, 0x0, {{0x6, 'nodev:'}}}, 0x13)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r5, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r6, r6, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000040)="0f090f00d50f00d1660f75d9b8c7008ee00f01cbf083213d0fae4c300f20c06635200000000f22c00f0134", 0x2b}], 0x1, 0x15, &(0x7f00000000c0), 0x0)

03:33:23 executing program 3:
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video37\x00', 0x2, 0x0)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000280)={0x2, @vbi})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x22000, 0x0)
ioctl$SIOCGIFHWADDR(r1, 0x8927, &(0x7f0000000040))

03:33:23 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'aead\x00', 0x0, 0x0, 'ccm_base(ecb(camellia),md5)\x00'}, 0x1e3)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x4000, 0x0)
ioctl$EVIOCGSND(r1, 0x8040451a, &(0x7f0000000140))
ioctl$TIOCCONS(r1, 0x541d)
pwrite64(r1, &(0x7f0000000140)="1c978ee738aba80235ac01940ab59cb105ceab0231938f7486552dbbe10c65e5e354bbb261b9ddacad452d80d31a616944aeb0477506fd013a96e9226a65c6d3fb3dd2d299968c01566e19e85f37923e6cc1ba423eb5aaa9908a93f980b4d265ac3545d246aebcd061ea4e9be437e841c6b65e7b48536e513e6632f20c8d67ee36fa61452e0c6d91160fd8318cfe4d0558b3cacb7d72ba1048ef95c6aac2a15f839615676f5f3fa3f8d4b793db0dfdf45978dd3f56d91cfc4b1b007c93d114", 0xbf, 0x0)
write$P9_RAUTH(r1, &(0x7f0000000040)={0x14, 0x67, 0x2, {0x0, 0x4, 0x5}}, 0x14)
setsockopt$RDS_RECVERR(r1, 0x114, 0x5, &(0x7f0000000080), 0x4)

03:33:23 executing program 0:
r0 = inotify_init()
fcntl$getown(r0, 0x9)
inotify_add_watch(r0, &(0x7f0000000080)='.\x00', 0xfe)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x141042, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000480)=ANY=[], 0x2e7)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write(0xffffffffffffffff, &(0x7f00000001c0), 0xffffffea)
getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000200)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@broadcast}, 0x0, @in=@dev}}, &(0x7f0000000000)=0xe8)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000000c0)={0x1d, r4}, 0x10, &(0x7f0000000180)={&(0x7f0000000340)={0x7, 0x804, 0x878, {}, {0x0, 0x2710}, {}, 0x1, @can={{0x3, 0x0, 0x8}, 0x1, 0x1, 0x0, 0x0, "307bd17407bbfcfe"}}, 0x48}}, 0x4000)
write$input_event(r1, &(0x7f00000004c0)={{}, 0x1, 0x2, 0xfffffffffffffffa}, 0x18)
syz_open_dev$midi(&(0x7f0000000480)='/dev/midi#\x00', 0x7ff, 0x82082)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000140), &(0x7f0000000300)=0x8)
ioctl$SCSI_IOCTL_STOP_UNIT(r2, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
fcntl$getown(r3, 0x9)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f0000000100), &(0x7f0000000440)=0x40)
madvise(&(0x7f00001a2000/0xc00000)=nil, 0xc00000, 0x4000000000000008)
clone(0x0, &(0x7f0000000240), 0x0, 0x0, &(0x7f0000000040))
sendfile(r1, r1, &(0x7f00000001c0), 0xa198)

[  649.767182] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  649.774143] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  649.786980] EntryControls=0000d1ff ExitControls=002fefff
[  649.788512] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  649.816509] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  649.831234] CR0=0000000080050033 CR3=00000001c9a13000 CR4=00000000001426f0
[  649.847850] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  649.855355] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  649.864681] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  649.872011] *** Control State ***
[  649.875762] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  649.875771] EntryControls=0000d1ff ExitControls=002fefff
[  649.875784] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  649.875794] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  649.875802] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  649.875811]         reason=80000021 qualification=0000000000000000
03:33:23 executing program 2:
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fallocate(r0, 0x0, 0x0, 0xa6ba0)
io_setup(0x40000100000003, &(0x7f0000000040)=<r1=>0x0)
io_submit(r1, 0x653, &(0x7f0000000540)=[&(0x7f00000000c0)={0x804000000000000, 0x0, 0x8, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7, 0xc00}])
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)

03:33:23 executing program 3:
ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000100)={0x0, 0x0, 0x5})
r0 = memfd_create(&(0x7f0000033ff3)='\x00', 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000080)={0x81, 0x7b7f5f5b, 0x7ff, 0x15a, 0xc5073bde472fe478, @discrete={0x9, 0x3}})
r1 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x20005)
r2 = dup2(r1, r0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48000000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000000)={0x0, 0x0, 0xce, 0x0, 0xf})
write$sndseq(r0, &(0x7f000000a000)=[{0x0, 0x3, 0x0, 0x0, @tick=0xfffffffffffffffd, {}, {}, @ext={0x0, 0x0}}], 0x30)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000100)={0x16, @time={0x0, 0x989680}})

[  649.875818] IDTVectoring: info=00000000 errcode=00000000
[  649.875825] TSC Offset = 0xfffffea2315d383f
[  649.875834] EPT pointer = 0x000000011682801e
[  649.875899] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  649.875907]         reason=80000021 qualification=0000000000000000
[  649.875914] IDTVectoring: info=00000000 errcode=00000000
[  649.875921] TSC Offset = 0xfffffea24ad35677
[  649.875929] EPT pointer = 0x00000001cb83201e
03:33:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
r4 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x7f, 0x200)
ioctl$VT_GETMODE(r4, 0x5601, &(0x7f00000000c0))
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f0000000040)={0x0, r3})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  650.018933] *** Guest State ***
[  650.022707] *** Guest State ***
[  650.026012] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  650.037007] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  650.052164] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  650.063753] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  650.093550] CR3 = 0x0000000000000000
[  650.106151] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  650.130441] CR3 = 0x0000000000000000
[  650.135761] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  650.152038] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  650.158572] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  650.173181] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  650.180601] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188619] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  650.188635] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188655] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188675] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188694] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188727] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.188746] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.208606] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.222596] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.236073] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.246222] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  650.255157] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.261892] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  650.268312] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  650.268327] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  650.268346] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  650.277235] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  650.285071] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  650.301118] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  650.317383] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  650.326015] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  650.333648] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  650.362217] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  650.363802] Interruptibility = 00000008  ActivityState = 00000000
[  650.376449] *** Host State ***
[  650.379981] RIP = 0xffffffff8120262c  RSP = 0xffff88011cf67390
[  650.386245] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  650.392953] FSBase=00007f88e609d700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  650.401083] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  650.407225] CR0=0000000080050033 CR3=00000001d1dbe000 CR4=00000000001426e0
[  650.413715] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  650.414597] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  650.428832] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  650.435113] *** Control State ***
[  650.441999] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  650.445185] Interruptibility = 00000008  ActivityState = 00000000
[  650.450346] EntryControls=0000d1ff ExitControls=002fefff
[  650.458816] *** Host State ***
[  650.460779] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  650.469338] RIP = 0xffffffff8120262c  RSP = 0xffff88011c857390
[  650.471164] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  650.477577] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  650.483930] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  650.497043]         reason=80000021 qualification=0000000000000000
[  650.499279] FSBase=00007fecb7d54700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  650.511532] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  650.512707] IDTVectoring: info=00000000 errcode=00000000
[  650.517443] CR0=0000000080050033 CR3=00000001c9a13000 CR4=00000000001426e0
[  650.517460] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  650.517473] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  650.527259] TSC Offset = 0xfffffea24ad35677
[  650.532540] *** Control State ***
[  650.538804] EPT pointer = 0x00000001d95e401e
[  650.544201] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  650.552377] EntryControls=0000d1ff ExitControls=002fefff
[  650.563828] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  650.581484] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  650.588240] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
03:33:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000080)=0x1332)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:24 executing program 3:
mkdir(&(0x7f0000f4eff8)='./file0\x00', 0x0)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f000000aff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000cd2ff8)='./file0\x00')
umount2(&(0x7f0000000100)='../file0\x00', 0x1)
syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000040)='./file0\x00', 0x6, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080), 0x0, 0xffffffff}], 0x800000, &(0x7f0000000400)=ANY=[@ANYBLOB="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"])
getpeername(r0, &(0x7f00000001c0)=@pppol2tp={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, {0x2, 0x0, @remote}}}, &(0x7f0000000080)=0x80)
ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000240)=0x2)

03:33:24 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x2, 0x400000)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
syz_open_procfs(0x0, &(0x7f0000000200)='..\x00')

[  650.602085]         reason=80000021 qualification=0000000000000000
[  650.637787] IDTVectoring: info=00000000 errcode=00000000
[  650.657719] TSC Offset = 0xfffffea2315d383f
[  650.670157] EPT pointer = 0x000000011682701e
[  650.679745] gfs2: not a GFS2 filesystem
03:33:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000040)={0x7}, 0x1)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(r3, 0xc008640a, &(0x7f0000000040)={0x0, <r4=>0x0})
ioctl$DRM_IOCTL_GEM_FLINK(r3, 0xc008640a, &(0x7f0000000080)={<r5=>0x0})
ioctl$DRM_IOCTL_GEM_OPEN(r2, 0xc010640b, &(0x7f00000000c0)={r4, r5, 0x471})
ioctl$SG_SCSI_RESET(r3, 0x2284, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r3, 0x81785501, &(0x7f0000000180)=""/127)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r1, &(0x7f0000000140)={0x40000010})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000200)={<r6=>0xffffffffffffffff}, 0x106, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000300)={0x15, 0x110, 0xfa00, {r6, 0xb199, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @local}, @in={0x2, 0x4e22}}}, 0x118)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getitimer(0x3, &(0x7f0000000440))

03:33:24 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
ioctl$sock_inet6_SIOCADDRT(r0, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback, 0xfffffffffffffffe})
ioctl$DRM_IOCTL_ADD_MAP(0xffffffffffffffff, 0xc0286415, &(0x7f0000000280)={&(0x7f0000ffc000/0x3000)=nil, 0x7fffffff, 0x0, 0x40, &(0x7f0000ffa000/0x4000)=nil, 0xe15})
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x8000)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000400))
r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x8002, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000000)={0x7fffffff, 0x1, 0x4, 0xffffffffffff2f9e, 0x40, 0x8})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000300)={0x0, @time={0x0, 0x989680}, 0x6, {0x5, 0x5}, 0x6})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$l2tp(0x18, 0x1, 0x1)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, &(0x7f0000000600)={0x1000, 0x2, 'client0\x00', 0x3, "f53f0094036c6c00", "63f91a3c787b91ec03f9fd428f0172e2c149b83499973de883ddba09a57dcc0e", 0x0, 0x33093e40})
sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x6, 0x6}, 0x0)
ioctl$UFFDIO_WAKE(r2, 0x8010aa02, &(0x7f00000003c0)={&(0x7f000066b000/0x1000)=nil, 0x1000})
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nullb0\x00', 0x8000, 0x0)
ioctl$BLKSECTGET(r3, 0x1267, &(0x7f0000000240))
userfaultfd(0x80000)
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
bind$inet(r4, &(0x7f0000000380)={0x2, 0x4e20, @rand_addr=0x100000001}, 0x10)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_kvm_setup_cpu$x86(r8, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000140)="360f009ada06f36d66b9f70b00000f32ea00001b000f013c2e653e2636260f322d9a009c0f01c99a0050db00", 0x2c}], 0x1, 0x0, &(0x7f0000000100), 0x0)

03:33:24 executing program 2:
r0 = socket(0x11, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={<r1=>0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
tkill(r1, 0x30)
setreuid(0x0, r2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000)={0x8}, 0x0)

[  650.785703] gfs2: not a GFS2 filesystem
03:33:24 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x14)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'ip6_vti0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000018c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001880)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="000000000000000010002b000c0001000800ffff", @ANYRES32], 0x4}}, 0x0)

[  650.888381] audit: type=1800 audit(2000000004.840:71): pid=22256 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor0" name="file0" dev="sda1" ino=16550 res=0
03:33:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000180)="b954090000b800000000ba000000000f30660ffd8000000000460f01d166b827008ed8460f08c74424008f000000c744240200000000ff2c2466430f38808805000000440f20c0350c000000440f22c0b98a0b00000f32c4817c2908"}], 0xaaaaac3, 0x10, 0x0, 0xf7)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:24 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f000080e000)={0x2, 0xe, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, @in=@remote={0xac, 0x14, 0xffffffffffffffff}, @in=@dev}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0xa0}}, 0x0)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x2, 0x18, 0x6, 0x6, 0x1a, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_x_nat_t_type={0x1, 0x14, 0x3}, @sadb_x_sa2={0x2, 0x13, 0xa388, 0x0, 0x0, 0x70bd27, 0x3507}, @sadb_address={0x5, 0x0, 0x3b, 0x80, 0x0, @in6={0xa, 0x4e23, 0x8001, @mcast2, 0x9}}, @sadb_x_policy={0x8, 0x12, 0x1, 0x1, 0x0, 0x0, 0x4, {0x6, 0x32, 0x4, 0x1, 0x0, 0x3, 0x0, @in6=@dev={0xfe, 0x80, [], 0x14}, @in6=@dev={0xfe, 0x80, [], 0xa}}}, @sadb_x_nat_t_type={0x1, 0x14, 0x4}, @sadb_address={0x5, 0x7, 0x6c, 0x20, 0x0, @in6={0xa, 0x4e23, 0x1, @empty, 0x1}}, @sadb_spirange={0x2, 0x10, 0x4d2, 0x4d6}]}, 0xd0}}, 0x8001)

[  650.988952] *** Guest State ***
[  650.992456] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
03:33:25 executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000040))
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000380)={0x13, 0x10, 0xfa00, {&(0x7f0000000180), r2, 0x1}}, 0x18)

[  651.037626] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  651.110614] CR3 = 0x0000000000000000
[  651.126852] RSP = 0x0000000000000000  RIP = 0x0000000000000000
03:33:25 executing program 3:
timer_create(0x7, &(0x7f0000000540)={0x0, 0x4, 0x4, @thr={&(0x7f00000003c0)="21abca49f672b1f85afd1d59607d3d6df389e4e3fd064f26715235321f834c23042fdb3111cf4f", &(0x7f0000000500)="bb750222899d5dcb5613075b59ea3974a0ba6ba149571a9bee9fc977f3be"}}, &(0x7f0000000580))
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vsock\x00', 0x10001, 0x0)
ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000380)=0x3)
r1 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0xc0000000, 0x0)
write$P9_RRENAMEAT(r1, &(0x7f0000000480)={0x7, 0x4b, 0x1}, 0x7)
linkat(r1, &(0x7f0000000400)='./file0\x00', r1, &(0x7f0000000600)='./file0\x00', 0x0)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000200), &(0x7f00000002c0)=0xc)
r2 = socket$inet(0x2b, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r2, &(0x7f00000001c0)={0x2, 0x4e23, @rand_addr}, 0x10)
setsockopt$inet_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4)
setsockopt$inet_mreqsrc(r2, 0x11a, 0x2, &(0x7f0000000140)={@rand_addr=0x3033300, @multicast2, @loopback}, 0x28)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000440)={0x0, 0x0, 0x400}, &(0x7f0000000080)=0xffffffffffffff89)
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0x8)
connect$rds(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10)
recvmmsg(r2, &(0x7f0000000f00)=[{{&(0x7f0000000dc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000e80), 0x0, &(0x7f0000000ec0)}}], 0x1, 0x100, &(0x7f0000001000)={0x77359400})
setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000180)={0x0, @broadcast, 0x0, 0x0, 'ovf\x00', 0x0, 0x0, 0x61}, 0x2c)
setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, &(0x7f00000004c0)={0x2, @local, 0x0, 0x0, 'wlc\x00', 0x10, 0x0, 0x72}, 0x2c)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000001080)=ANY=[], 0x0)
ftruncate(0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f00000000c0), 0x0)
ioctl$RNDGETENTCNT(r1, 0x80045200, &(0x7f00000006c0))

[  651.171213] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  651.204817] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:33:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  651.216546] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.232234] tls_set_device_offload_rx: netdev lo with no TLS offload
03:33:25 executing program 3:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x15, 0x4, &(0x7f0000346fc8)=@framed={{}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1, 0x18}]}, &(0x7f0000f6bffb)='GPL\x00'}, 0x48)
socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000000))
creat(&(0x7f0000000040)='./file0\x00', 0x20)

03:33:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000000080)={0xd7, 0x6b4})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000300)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  651.298840] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.329471] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:25 executing program 0:
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x440002, 0x0)
connect$bt_rfcomm(r0, &(0x7f0000000080)={0x1f, {0x5, 0x15e1, 0x10000, 0x3, 0x8, 0x3}, 0x3fe}, 0xa)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000040)=0x71811799, 0x4)
open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
mount(&(0x7f00000014c0)=ANY=[], &(0x7f00000003c0)='./bus\x00', &(0x7f0000000400)='cgroup\x00', 0x0, &(0x7f0000000440)='no\x00\x00s\x00')

[  651.353017] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.375638] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.420114] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.443266] cgroup1: Unknown subsys name 'no'
[  651.451533] *** Guest State ***
[  651.454936] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  651.464201] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  651.472722] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.475425] *** Guest State ***
[  651.482009] cgroup1: Unknown subsys name 'no'
[  651.496584] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  651.496633] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  651.506806] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  651.524395] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  651.532506] CR3 = 0x0000000000000000
[  651.532517] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  651.532528] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  651.532543] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  651.532556] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.532574] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.532593] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.532627] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.542844] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  651.563196] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  651.571654] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  651.587618] CR3 = 0x0000000000000000
[  651.605706] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.612078] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  651.614426] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.622501] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  651.642516] Interruptibility = 00000000  ActivityState = 00000000
[  651.642609] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  651.649132] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  651.655704] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.663876] *** Host State ***
[  651.671858] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.675145] RIP = 0xffffffff8120262c  RSP = 0xffff8801b6a3f390
[  651.689694] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.691569] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  651.704472] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  651.708662] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.712661] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  651.724069] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  651.726523] CR0=0000000080050033 CR3=00000001c9a13000 CR4=00000000001426f0
[  651.736526] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.751663] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  651.758777] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  651.764958] *** Control State ***
[  651.773036] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  651.782454] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  651.786293] EntryControls=0000d1ff ExitControls=002fefff
[  651.796411] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  651.796539] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.803698] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  651.811775] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  651.818853] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  651.825149] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.831584]         reason=80000021 qualification=0000000000000000
[  651.839851] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  651.846457] IDTVectoring: info=00000000 errcode=00000000
[  651.853714] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  651.859442] TSC Offset = 0xfffffea15d493920
[  651.867236] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  651.872675] EPT pointer = 0x00000001cd7db01e
[  651.879638] Interruptibility = 00000000  ActivityState = 00000000
[  651.890319] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  651.898476] *** Host State ***
[  651.904563] RIP = 0xffffffff8120262c  RSP = 0xffff88018178f390
[  651.910799] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
03:33:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4, 0x10, r1, 0x9)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:25 executing program 2:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000e86000)="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", 0x118)
fstat(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = getegid()
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
r4 = getegid()
getgroups(0x4, &(0x7f0000000400)=[r1, r2, r3, r4])
connect$inet6(r0, &(0x7f0000aacfe4), 0x1c)
fstat(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = dup(r0)
pread64(r6, &(0x7f0000000480)=""/4096, 0x1000, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r6, 0x80045700, &(0x7f0000000280))
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x50, r0, 0x0)
getresgid(&(0x7f00000000c0), &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140))
setsockopt$inet6_MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f0000000440)={0x6, 0x1, 0xd57, 0x1, 0x1}, 0xc)
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000180))
chown(&(0x7f00000002c0)='./file0\x00', r5, r7)

03:33:25 executing program 0:
clone(0x200000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uhid\x00', 0x0, 0x0)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x37)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x4, 0x36})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r0, 0x0, 0x0)

03:33:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$P9_RSTATFS(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="910200001d00010000000000000000007e000000"], 0x14}}, 0x0)
r1 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x2000000104, 0x80)
seccomp(0x1, 0x0, &(0x7f0000000240)={0x3, &(0x7f0000000200)=[{0x938e, 0x7fff, 0x8, 0x95}, {0xfffffffffffff001, 0x2bf, 0x126, 0x6}, {0x4, 0x0, 0x40, 0x9}]})
ioctl$VIDIOC_G_MODULATOR(r1, 0xc0445636, &(0x7f0000000140)={0x9, "a92003b955105dbf3458042049f74ee0c95824f66dfba9c239d1f567dabea31b", 0x400, 0x80000001, 0x70, 0x4, 0x3})
setsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f00000001c0)={0xffffffffffffff19, 0x1, 0x9, 0x3f, 0x1, 0x10001, 0xfff}, 0xc)
ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000080)={'ip_vti0\x00', {0x2, 0x4e23, @multicast2}})

[  651.918950] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  651.925398] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  651.925496] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
03:33:25 executing program 3:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x40080, 0x0)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000140)='trusted.overlay.upper\x00', &(0x7f0000000180)={0x0, 0xfb, 0x3e, 0x4, 0x20, "4fd862a1ad1552ab60c9a4a3e0a50915", "7d452c34f133265faacc6499678dd0ae1645bdda5f11b0cb2eae1235d6d2d1a29f80eab4f3da3655aa"}, 0x3e, 0x3)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000001c0), 0xd67398e5)
r3 = fcntl$getown(r2, 0x9)
r4 = perf_event_open(&(0x7f000025c000)={0x400000001, 0x70, 0x5, 0x4, 0x0, 0x0, 0x0, 0x1, 0x8090, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0xd6, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x5}, r3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f00000001c0)={0x2a, 0x0, 0x9})
ioctl$VIDIOC_ENUM_FREQ_BANDS(r2, 0xc0405665, &(0x7f0000000080)={0xc3f, 0x0, 0x8, 0x20, 0x5, 0x10000, 0x8})
r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r4, 0x0)
ioctl$IOC_PR_PREEMPT(r2, 0x401870cb, &(0x7f0000000040)={0x80000000, 0xc17c, 0xd3, 0xfff})
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2000000000008004, 0x110010, r5, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r5)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x0, 0x0)

[  651.976810] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  651.979682] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  651.999004] CR0=0000000080050033 CR3=00000001d2f23000 CR4=00000000001426f0
[  652.008664] Interruptibility = 00000000  ActivityState = 00000000
[  652.015546] *** Host State ***
03:33:26 executing program 2:
syz_emit_ethernet(0x1e, &(0x7f0000000240)=ANY=[@ANYBLOB="0180c2000000000000000000000c010e809bf80200001462d0a97f7a78c1"], &(0x7f0000000380)={0x1})
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x40, 0xc)
ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000080)={0x45, 0x20, &(0x7f0000000040)="89895588e16e8013327b8b7c7e8ed289f567fa33fbe64547", {0x9, 0x5, 0x41415270, 0x3, 0x7f, 0x40, 0x3, 0x400}})
bind$vsock_dgram(r0, &(0x7f00000000c0)={0x28, 0x0, 0x2710}, 0x10)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000002480)=ANY=[@ANYRES32=<r1=>0x0, @ANYBLOB="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"], &(0x7f0000000340)=0x1008)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000001400)={r1, 0x1000, "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"}, &(0x7f0000002440)=0x1008)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000140)={{{@in=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6}, 0x0, @in=@loopback}}, &(0x7f0000000280)=0xe8)
ioprio_get$uid(0x3, r2)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)={0x6})
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f00000002c0)={@loopback}, &(0x7f0000000300)=0x14)

[  652.028258] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb8f390
[  652.038574] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  652.044432] *** Guest State ***
[  652.045928] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  652.066338] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
03:33:26 executing program 0:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000080)='security.ima\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="e8e5"], 0x2, 0x0)
open(&(0x7f0000000780)='./bus\x00', 0x0, 0x20)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)={&(0x7f0000000000)='./bus\x00', r0}, 0x10)

[  652.069108] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  652.081760] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  652.101314] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  652.109030] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  652.118662] *** Control State ***
[  652.119253] CR0=0000000080050033 CR3=00000001c7094000 CR4=00000000001426e0
[  652.122385] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  652.137666] audit: type=1804 audit(2000000006.100:72): pid=22320 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277664585/syzkaller.ZsML1K/220/bus" dev="sda1" ino=16601 res=1
[  652.138083] CR3 = 0x0000000000000000
[  652.168929] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  652.176888] EntryControls=0000d1ff ExitControls=002fefff
[  652.194401] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  652.198688] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  652.205305] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  652.213841] *** Control State ***
03:33:26 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x8100}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000001900010100000000000000001c9ce0fefc54994e52050000040001080800a60cd3833de9a303dc558660434f23976638a284f1bae92e428c39141cecec2bdaddc884be9e39397c9800000000000000"], 0x28}}, 0x0)
timer_create(0x3, &(0x7f0000000040)={0x0, 0x34, 0x6, @thr={&(0x7f00000001c0)="8867248a4673e5c52b0524936a83c7322da42f6ae0afd5c7cb8b0544b58ace4006af83730f8d6820a773a6b5cd58994973d744f091e1417ac7d1e130b02f216df5982af0b42bacd74fe7b833b735c093a48f10343ee7661ee56ffc29f1698b67bd80e5b87dd411342cafb9192828714f7ab662512f4e9453a132cbaf2e0b8269296a2b96de036709f1fb8251446218fb90914a51f2f71dc1aa03b92b15599ef1d2aaf9a159a2bd7456c1b7a2f199c549ad43bec8141bf94bcc4a34322f711f868d22fa58b962ff863af9a7f6614a50e6bd5c87fb816dae88ebb102bc2ac6ae81cb", &(0x7f00000000c0)="ac5f78f966d7ae4e2e6a6598e8c71da12c9761597ecfdd21b2671f9baa98ff4006faf65b4335cc480d024da61b7e0a33eaafd9ddbfc08c63b41b37a6e10e01e5301236bde32a0516ada7f08fd371b1a06f3333ca5bfb07864635fdb2876255fc5dde70bb6e190d1405829fa7e28211c5dd7a5c7ac570faea30ea23e4047bc3a38018d47c997d09f9f8c393778540f1ac157462b73f68488b024d"}}, &(0x7f00000002c0)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000300), &(0x7f0000000340))
r2 = getpid()
timer_create(0x5, &(0x7f0000000400)={0x0, 0x5591, 0x2, @tid=r2}, &(0x7f0000000440))

[  652.215064] audit: type=1804 audit(2000000006.130:73): pid=22320 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor0" name="/root/syzkaller-testdir277664585/syzkaller.ZsML1K/220/bus" dev="sda1" ino=16601 res=1
[  652.241748] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  652.251182] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  652.260883] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  652.262970] EntryControls=0000d1ff ExitControls=002fefff
[  652.273306] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  652.283119] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.292862] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  652.299793] audit: type=1804 audit(2000000006.130:74): pid=22322 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor0" name="/root/syzkaller-testdir277664585/syzkaller.ZsML1K/220/bus" dev="sda1" ino=16601 res=1
[  652.306170] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  652.323760] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.338879]         reason=80000021 qualification=0000000000000000
[  652.345437] IDTVectoring: info=00000000 errcode=00000000
[  652.351227] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.359643] TSC Offset = 0xfffffea10a3ce4c8
[  652.368627] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.376814] EPT pointer = 0x0000000179c6101e
[  652.378161] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.389604] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  652.398329] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  652.405276] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.413877] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  652.422259]         reason=80000021 qualification=0000000000000000
03:33:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$sock_SIOCDELDLCI(r3, 0x8981, &(0x7f0000000140)={'bridge_slave_1\x00', 0x3})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
mq_timedreceive(r3, &(0x7f00000002c0)=""/159, 0x9f, 0x8, &(0x7f00000001c0)={0x0, 0x1c9c380})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
fsetxattr$security_selinux(r1, &(0x7f0000000040)='security.selinux\x00', &(0x7f00000000c0)='system_u:object_r:su_exec_t:s0\x00', 0x1f, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
semget$private(0x0, 0x4, 0x40)

03:33:26 executing program 0:
r0 = socket$inet(0x2, 0x2000000003, 0x7)
socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000080))
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000640)={0x200000000000012d, &(0x7f0000000040)}, 0xfffffffffffffdc2)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/1, &(0x7f0000000280))
r1 = syz_open_dev$audion(&(0x7f0000000180)='/dev/audio#\x00', 0xffffffff, 0x101100)
ioctl$VIDIOC_QUERY_EXT_CTRL(r1, 0xc0e85667, &(0x7f0000000380)={0x40000000, 0xb, "2e5ceb9ae128d89d26fd0450b24d5e8fcb0f8405d3a0969c2d8877d53c08fd35", 0x9, 0x2, 0x80, 0x400, 0xff, 0x401, 0x9, 0x1, [0x7f, 0x2, 0x2, 0x3ff]})
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in6, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@local}, 0x0, @in=@multicast2}}, &(0x7f00000005c0)=0xe8)
setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000600)={@ipv4={[], [], @broadcast}, r2}, 0x14)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r3, 0x6, 0x1, 0xfffffffffffffffd, &(0x7f00000000c0)=[0x0, 0x0, 0x0], 0x3}, 0x20)
r4 = creat(&(0x7f0000000240)='./file0\x00', 0x2)
accept$inet6(r4, &(0x7f00000002c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000300)=0x1c)
clock_gettime(0x0, &(0x7f0000000340)={<r5=>0x0, <r6=>0x0})
ioctl$VIDIOC_QUERYBUF(r3, 0xc0585609, &(0x7f00000001c0)={0x6, 0x3, 0x4, 0x0, {r5, r6/1000+10000}, {0x5, 0x9, 0x8, 0xd8, 0x7fffffff, 0x6, "e103b918"}, 0x20, 0x3, @offset=0x525, 0x4})

[  652.428867] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.437122] IDTVectoring: info=00000000 errcode=00000000
[  652.442985] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  652.451304] TSC Offset = 0xfffffea106b9cc45
[  652.464516] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  652.472936] EPT pointer = 0x00000001cd99501e
[  652.479136] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  652.491290] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  652.519834] Interruptibility = 00000000  ActivityState = 00000000
[  652.534279] *** Guest State ***
[  652.538528] *** Host State ***
[  652.541927] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  652.551038] RIP = 0xffffffff8120262c  RSP = 0xffff8801bc2c7390
[  652.557207] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  652.563889] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  652.573105] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
03:33:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x2, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:26 executing program 2:
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000700)=ANY=[@ANYPTR=&(0x7f00000000c0)=ANY=[], @ANYRESOCT])
getpid()
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000400)={<r0=>0x0}, &(0x7f0000000440)=0x8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000540)='/dev/usbmon#\x00', 0x4, 0x80100)
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000005c0)={0x0, 0x78f3}, &(0x7f0000000600)=0x8)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
getsockopt$inet6_mreq(r2, 0x29, 0x1f, &(0x7f00000000c0)={@ipv4={[], [], @local}}, &(0x7f00000003c0)=0x14)
ioctl$RNDZAPENTCNT(r1, 0x5204, &(0x7f0000000640)=0xfffffffffffff801)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x2, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000080)={"00001c0000000000001c9e000200", 0x811})
ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000280)={&(0x7f0000ffe000/0x1000)=nil, 0x1000})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0xfffffffffffffffe}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
ioctl$KDDISABIO(r1, 0x4b37)
r5 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x2007fff)
fremovexattr(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="747275737465642e00001c000023000000001c9e0002"])
ioctl$TIOCSPGRP(r3, 0x5410, &(0x7f0000000000))
write$P9_RSETATTR(r5, &(0x7f0000000040)={0x7}, 0x7)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000340)={r0, 0x8}, &(0x7f0000000380)=0x8)
sendfile(r2, r5, &(0x7f0000d83ff8), 0x800000000024)
getsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f00000004c0), &(0x7f0000000500)=0x4)
ioctl$NBD_SET_SIZE(r5, 0xab02, 0x0)
creat(&(0x7f0000000200)='./bus\x00', 0x0)
setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r5, 0x111, 0x1, 0x4, 0x4)

[  652.581896] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  652.582121] CR3 = 0x0000000000000000
[  652.588043] CR0=0000000080050033 CR3=00000001d74b4000 CR4=00000000001426f0
[  652.596226] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  652.603017] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  652.631738] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  652.639201] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  652.669742] *** Control State ***
[  652.670347] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  652.682665] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  652.687102] *** Guest State ***
[  652.693255] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  652.702466] EntryControls=0000d1ff ExitControls=002fefff
[  652.702643] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  652.717190] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  652.717429] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.724379] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  652.732602] CR3 = 0x0000000000000000
[  652.744240] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.752618] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  652.752738] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  652.765590]         reason=80000021 qualification=0000000000000000
[  652.765859] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.784088] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  652.786512] IDTVectoring: info=00000000 errcode=00000000
[  652.790566] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  652.802536] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  652.809252] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.811955] TSC Offset = 0xfffffea0b7349ab7
[  652.817376] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.830050] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.838836] EPT pointer = 0x00000001d908001e
[  652.844933] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.853198] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.853216] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.862109] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  652.878047] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.881877] device syz_tun left promiscuous mode
[  652.886689] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  652.898645] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.908228] *** Guest State ***
[  652.918604] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.919719] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  652.935659] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.938602] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  652.952744] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  652.964017] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  652.981034] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  652.998741] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  652.998836] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  653.016535] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  653.021091] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  653.031011] Interruptibility = 00000000  ActivityState = 00000000
[  653.040469] IPv6: ADDRCONF(NETDEV_UP): veth2: link is not ready
[  653.048530] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  653.056682] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  653.058532] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  653.064089] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  653.070874] CR3 = 0x0000000000000000
[  653.077592] Interruptibility = 00000000  ActivityState = 00000000
[  653.081394] *** Host State ***
[  653.088039] *** Host State ***
[  653.091696] IPv6: ADDRCONF(NETDEV_UP): veth3: link is not ready
[  653.094325] RIP = 0xffffffff8120262c  RSP = 0xffff88017fb8f390
[  653.101155] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  653.106310] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  653.112841] IPv6: ADDRCONF(NETDEV_UP): veth4: link is not ready
[  653.118629] RIP = 0xffffffff8120262c  RSP = 0xffff8801b6a3f390
[  653.124782] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  653.131561] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  653.137671] IPv6: ADDRCONF(NETDEV_UP): veth5: link is not ready
[  653.144894] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  653.151148] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  653.157241] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  653.163642] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.170218] CR0=0000000080050033 CR3=00000001c7094000 CR4=00000000001426e0
[  653.182644] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready
[  653.185459] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  653.191235] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.198055] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  653.207722] IPv6: ADDRCONF(NETDEV_UP): wlan1: link is not ready
[  653.212727] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  653.220220] IPv6: ADDRCONF(NETDEV_UP): wlan2: link is not ready
[  653.226527] *** Control State ***
[  653.232416] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.236011] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  653.243703] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.250629] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  653.261958] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  653.264999] EntryControls=0000d1ff ExitControls=002fefff
[  653.271486] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  653.276789] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  653.284861] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.290918] CR0=0000000080050033 CR3=00000001d8f7f000 CR4=00000000001426f0
[  653.298211] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.305675] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  653.314704] IPv6: ADDRCONF(NETDEV_CHANGE): veth5: link becomes ready
[  653.321982] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  653.329161] IPv6: ADDRCONF(NETDEV_CHANGE): veth4: link becomes ready
[  653.338985] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  653.341169] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  653.346810]         reason=80000021 qualification=0000000000000000
[  653.361106] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  653.367573] IDTVectoring: info=00000000 errcode=00000000
[  653.367944] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  653.373516] *** Control State ***
[  653.385057] TSC Offset = 0xfffffea060158a12
[  653.386367] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  653.397588] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  653.401344] EPT pointer = 0x0000000126e0201e
[  653.406408] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  653.416598] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  653.425033] Interruptibility = 00000008  ActivityState = 00000000
[  653.426515] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  653.442074] EntryControls=0000d1ff ExitControls=002fefff
[  653.447873] *** Host State ***
[  653.449987] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  653.451227] RIP = 0xffffffff8120262c  RSP = 0xffff88018178f390
[  653.458517] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  653.480185] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  653.486759] FSBase=00007fafd1388700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  653.496353] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  653.496869] *** Guest State ***
[  653.503632] CR0=0000000080050033 CR3=00000001d74b4000 CR4=00000000001426f0
[  653.506073] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  653.513332] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  653.522375] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  653.528789] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  653.535356]         reason=80000021 qualification=0000000000000000
[  653.541655] *** Control State ***
[  653.551415] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  653.558203] EntryControls=0000d1ff ExitControls=002fefff
[  653.563786] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  653.568774] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  653.579715] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  653.579912] IDTVectoring: info=00000000 errcode=00000000
[  653.607367] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  653.607824] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  653.614715] CR3 = 0x0000000000000000
[  653.621774]         reason=80000021 qualification=0000000000000000
[  653.624760] TSC Offset = 0xfffffea072ea452a
[  653.630866] IDTVectoring: info=00000000 errcode=00000000
[  653.635509] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  653.645092] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  653.648437] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  653.659489] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  653.666302] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.674521] EPT pointer = 0x00000001b95b601e
[  653.678520] TSC Offset = 0xfffffea0b7349ab7
[  653.683397] EPT pointer = 0x00000001d2d3901e
[  653.708533] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  653.715562] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.735044] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.753393] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.768568] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  653.769755] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.788627] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  653.797790] GDTR:                           limit=0x000007ff, base=0x0000000000001000
03:33:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x404000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:27 executing program 0:
eventfd(0x1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0xd00000000000000, &(0x7f0000000000)={0x6, 0x4, 0x20000000007ffd, 0x7c, 0x0, 0x1, 0x0, [0x0, 0x0, 0x0, 0x400100]}, 0x2c)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x2100, 0x0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_SET_DEST(r0, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100080}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x11c, r1, 0x2, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x1c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0xf74}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}]}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xfffffffffffffffd}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x100000001}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10}}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x200}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x80000001}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e21}]}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x20000000}, 0x10)
mkdir(&(0x7f00000001c0)='./file0\x00', 0xfffffffffffffffc)
mount(&(0x7f0000000540)=ANY=[@ANYRES64=r1], &(0x7f0000000380)='./file1\x00', &(0x7f00000005c0)='cgroup2\x00', 0x200000000000, 0x0)
sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9)
perf_event_open(&(0x7f00000003c0)={0x1, 0x374, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setregid(0x0, 0x0)
rmdir(&(0x7f0000000240)='./file0//ile0\x00')
chdir(&(0x7f0000000340)='./file1\x00')
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x4)
inotify_rm_watch(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x914f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x141042, 0x0)
eventfd2(0x10001, 0x0)
r3 = creat(&(0x7f0000000440)='./file1\x00', 0x1)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000480)=<r4=>0x0)
sched_setaffinity(r4, 0x8, &(0x7f00000004c0)=0x80)
fallocate(r2, 0x1, 0x0, 0x10000101)
recvfrom$inet6(r3, &(0x7f0000000680)=""/246, 0xf6, 0x2, &(0x7f0000000300)={0xa, 0x4e22, 0x80, @mcast1, 0xa43}, 0x1c)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000280)="8fa222b1bffe12d977baec052cd71c40e0f14c7e49a8412c0f82e0ac09c020ca1e08524cb543c7671c8fe1353eea72d751f76df13758e4c68101c00d48fc89c17bceefd13d46812a08bc6e7999d54b7b788a558c204ef93faf389002be7a4697fed3ba1c8cc415e9d73e73c20afa21c8f55aa1", 0x73, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140), 0x2c)

03:33:27 executing program 3:
mkdir(&(0x7f0000000200)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="75707065726469723d2e2f66696c65302c6c6f778f6b6469723d2e3a66696c65302c776f726b6469723d2e2f66696c6531"])
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x40, 0x0)
listen(r0, 0x1ff)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000400)='/dev/autofs\x00', 0x80000, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000001540)=@nat={'nat\x00', 0x1b, 0x5, 0x6b0, 0x138, 0x0, 0x418, 0x0, 0x0, 0x5e0, 0x5e0, 0x5e0, 0x5e0, 0x5e0, 0x5, &(0x7f0000000440), {[{{@ipv6={@remote, @dev={0xfe, 0x80, [], 0xe}, [0xffffff00, 0xff, 0xffffffff, 0xffffff00], [0xff, 0xff000000, 0xffffff00, 0xff000000], 'gre0\x00', 'bond_slave_1\x00', {}, {0xff}, 0x0, 0x8, 0x0, 0x6}, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@icmp6={0x28, 'icmp6\x00', 0x0, {0x0, 0x6, 0x2, 0x1}}]}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x7, @ipv6=@remote, @ipv4=@remote, @gre_key=0x7, @gre_key=0x3}}}, {{@ipv6={@mcast2, @loopback, [0xff, 0xff, 0xff000000, 0xffffffff], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'irlan0\x00', 'veth1_to_team\x00', {0xff}, {0xff}, 0x1d, 0x6, 0x6, 0x10}, 0x0, 0x110, 0x158, 0x0, {}, [@common=@dst={0x48, 'dst\x00', 0x0, {0x27, 0x6, 0x1, [0x100, 0x7, 0x5, 0x5, 0x80, 0x2, 0xfffffffffffff000, 0x5a, 0x4, 0x0, 0xfffffffffffffffd, 0x7ff, 0x3ff, 0x6, 0x6], 0x2}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@dev={0xac, 0x14, 0x14, 0x1c}, 'ip6gre0\x00', 0x9}}}, {{@ipv6={@ipv4={[], [], @multicast2}, @mcast1, [0xffffff00, 0xffffffff, 0xff], [0xffffff00, 0x4b4a4f3b367b4d43, 0xff000000, 0xffffff00], 'irlan0\x00', 'irlan0\x00', {0xff}, {0x313b702525dfac08}, 0x0, 0x2, 0x7, 0x20}, 0x0, 0x140, 0x188, 0x0, {}, [@common=@eui64={0x28, 'eui64\x00'}, @common=@inet=@set3={0x50, 'set\x00', 0x3, {{0x7, 0x1, 0xf1}, {0x80, 0x100000001}, {0x7fff}, 0x9}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x2, @ipv6=@mcast2, @ipv4=@local, @port=0x4e24, @port=0x4e20}}}, {{@uncond, 0x0, 0x180, 0x1c8, 0x0, {}, [@common=@srh1={0x90, 'srh\x00', 0x1, {0x4, 0x400, 0x10000, 0x80000001, 0x1f, @mcast2, @mcast1, @dev={0xfe, 0x80, [], 0xf}, [0xff, 0xffffffff, 0xffffffff, 0xffffffff], [0x0, 0xff, 0xff000000], [0xffffff00, 0xffffffff, 0xff000000, 0xffffffff], 0x44, 0x200}}, @common=@eui64={0x28, 'eui64\x00'}]}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x12, @ipv6=@loopback, @ipv6=@dev={0xfe, 0x80, [], 0x18}, @gre_key=0x1, @port=0x4e22}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x710)
socketpair$inet6_udplite(0xa, 0x2, 0x88, &(0x7f0000000080))
rename(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/file1/file0\x00')
rmdir(&(0x7f0000000040)='./file0/file1/file0\x00')

03:33:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r4 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000002c0)={<r5=>0x0, @in6={{0xa, 0x4e23, 0x5, @local}}, 0x10001, 0x80000000, 0x1ff, 0x61a2, 0x16}, &(0x7f0000000140)=0x98)
ioctl$BLKALIGNOFF(r3, 0x127a, &(0x7f0000000040))
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f0000000380)={r5, @in={{0x2, 0x4e24}}, [0x909, 0x1f, 0x1, 0x7ff, 0x80, 0x9, 0x1, 0x3, 0x6, 0x2fc, 0x2, 0xfffffffffffffff7, 0x0, 0x5, 0xfffffffffffffffb]}, &(0x7f00000001c0)=0x100)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r3, 0xc0505350, &(0x7f0000000480)={{0x3, 0xfffffffffffffffd}, {0x2, 0xdd}, 0x7, 0x4, 0xf3})
write$binfmt_aout(r1, &(0x7f0000000500)={{0x10b, 0x101, 0x4c49, 0x2ff, 0x23a, 0xa16, 0x1f2, 0x2}, "251bef8eb9ff42362e88d275d27639fe2c1d5826b4cfda2759b28a44e0f9f262834aae029e50906f9e7dee9ff81fc5e5741737d28ab076115dd3ba9970011402c1cd6fabc1de0022df4f5c6d1ff86f76c483296e0023e52b51b36fcc94f7b975df81baf5d3f28b59a19414185cc8074919d521e934fc543194587436e1a58edab85add56f3da6a3810889ae3324140ab46033dc54f3c080c9b75ed87690862eba19a4699db9e24910f", [[], [], [], []]}, 0x4c9)

[  653.809812] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  653.819013] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  653.827319] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  653.836244] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  653.861037] overlayfs: unrecognized mount option "low�kdir=.:file0" or missing value
[  653.900951] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
03:33:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x800, 0x24000)
getsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000140))
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000180))
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  653.909435] overlayfs: unrecognized mount option "low�kdir=.:file0" or missing value
[  653.965575] Interruptibility = 00000008  ActivityState = 00000000
[  654.007168] *** Host State ***
[  654.019889] RIP = 0xffffffff8120262c  RSP = 0xffff88011e96f390
[  654.042216] *** Guest State ***
[  654.046937] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
03:33:28 executing program 3:
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/ignore_tunneled\x00', 0x2, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000080)={<r1=>0x0, 0x8, 0x51d2}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000100)=@assoc_id=r1, 0x4)
socket$inet_udp(0x2, 0x2, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f00000002c0), 0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000200))
msgrcv(0x0, &(0x7f0000000040)={0x0, ""/50}, 0xfffffffffffffcde, 0x0, 0x0)
getpid()

[  654.050154] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  654.082574] FSBase=00007f88e609d700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  654.100387] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  654.110165] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  654.117555] CR0=0000000080050033 CR3=00000001c7094000 CR4=00000000001426e0
03:33:28 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x30000, 0x0)
ioctl$RTC_PLL_SET(r2, 0x40207012, &(0x7f0000000140)={0x1, 0x620a, 0x72, 0x6, 0x3f7, 0xb7e, 0x8aa})
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040)='fuse\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c001dc26ccd1a89afdd74323ac4977d5d7e7407a8e5cc221473974df3bb510aa542e1bc2713b3be849ee13cbb507a1380e447fb31a51d79050077720dd17e0128b7700e487b6a0a4153515caf5fa5d18fbeaab0949b4d30d16a51c16a6706ddc3981b7cd7985445e502e74c7e6b5344c60e472c28a54b6c0d6047437191b9b962c410dd4696d6d1a1950da02dc223c208c55043ae9cc820d64f454f9390bb5089e9fbb667319e81d2980f0bb45703a87269"])
ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000003c0)=r1)

[  654.126559] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  654.146144] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  654.160094] *** Control State ***
[  654.162421] CR3 = 0x0000000000000000
[  654.165602] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  654.178834] EntryControls=0000d1ff ExitControls=002fefff
[  654.188795] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  654.199007] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  654.201770] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  654.219711] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
03:33:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r4 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$DRM_IOCTL_AGP_ALLOC(r4, 0xc0206434, &(0x7f0000000040)={0x80000001, <r5=>0x0, 0x10000, 0xffff})
ioctl$DRM_IOCTL_SG_ALLOC(r3, 0xc0106438, &(0x7f00000000c0)={0x3f74, r5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  654.231673] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  654.247028] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  654.251125]         reason=80000021 qualification=0000000000000000
[  654.280090] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.290648] IDTVectoring: info=00000000 errcode=00000000
[  654.318607] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.333497] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.350626] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.352383] TSC Offset = 0xfffffea060158a12
[  654.367704] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.376113] EPT pointer = 0x00000001cdbab01e
03:33:28 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = msgget$private(0x0, 0x10)
msgctl$IPC_STAT(r2, 0x2, &(0x7f00000003c0)=""/228)
splice(r0, &(0x7f0000000100), r1, &(0x7f0000000140), 0xffffffffffffff00, 0x8)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000500)='trusted.overlay.nlink\x00', &(0x7f0000000700)={'L+', 0x6}, 0x28, 0x1)
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="38010000100013070000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f0000000000000000000ffffffffffff000000003200000000000000000000000000ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ce2cfc7c5d32000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c2900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x138}}, 0x0)
truncate(&(0x7f0000000240)='./file1\x00', 0x55bcdc43)
r3 = fcntl$dupfd(r0, 0x0, r1)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000740)={{{@in=@loopback, @in6=@loopback}}, {{@in6=@ipv4={[], [], @multicast1}}, 0x0, @in6=@loopback}}, &(0x7f0000000300)=0xe8)
r4 = msgget(0x2, 0x40)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1)
msgctl$MSG_INFO(r4, 0xc, &(0x7f0000000680)=""/115)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340), &(0x7f0000000380)=0xc)

03:33:28 executing program 3:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x80000, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffff9c, 0x84, 0xf, &(0x7f0000000040)={<r1=>0x0, @in6={{0xa, 0x4e21, 0x9, @mcast2}}, 0x5, 0xfff, 0x100000000, 0x1, 0x328a}, &(0x7f0000000100)=0x98)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000140)={<r2=>r1, @in6={{0xa, 0x4e20, 0x864d, @empty, 0x4}}, 0x0, 0x1e, 0x8000, 0x7, 0x3}, &(0x7f0000000200)=0x98)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000240)={r2, @in={{0x2, 0x4e20, @broadcast}}, 0x1, 0x9, 0x7ff, 0x394, 0x40a}, &(0x7f0000000300)=0x98)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000340)={r1, 0x1ff, 0xe6, "749254be36a6bfcdf75b0458b65822427a001827f573b3dbe203093ce84870527551120c87d29c5eeb1fc7c7ab680e0ef8293b35295d692d2adbfb928a4b78b11903af45baf3cb91d2f6948a9aac6ce548207135127fe24b574ff92773c82a116ba2c07a4f068cc8e7ae7d8b28b3367bc2629ba8cde540e90d94a6f4b9a83edc1cdf54b66edb00a9950eab46cd50e983c5f8eaf6f69223c3100b062a680841d143bd681589d8dd8178ee671a20b21e2fe92690d65133fc1ad6cffc136c0ea1470874cdb510886f5e2aaeac91365a9311e46ab05404ee0f8a024c2875612e3d124dce8b78545d"}, 0xee)
setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000440)={0x0, 0x5}, 0x8)
getsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000480)=@assoc_value={r1}, &(0x7f00000004c0)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000500)={r2, 0x8}, 0x8)
ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000540)=""/121)
r3 = socket$inet6(0xa, 0x0, 0x10000)
ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, [], [{0x200, 0x8, 0x31ff3522, 0xffffffff, 0x7ff, 0x1}, {0x5e92, 0x7, 0xfffffffffffffffe, 0x100000001, 0x0, 0x8}]})
setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r0, 0x111, 0x1, 0x7, 0x4)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000680)=0x8001, 0x4)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f00000006c0)={0x0, 0x9, 0x1ff})
prctl$PR_GET_SECUREBITS(0x1b)
ioctl$DRM_IOCTL_AGP_ALLOC(r0, 0xc0206434, &(0x7f0000000700)={0x9, <r4=>0x0, 0x10000, 0xb1})
ioctl$DRM_IOCTL_SG_FREE(r0, 0x40106439, &(0x7f0000000740)={0x2, r4})
syz_mount_image$xfs(&(0x7f0000000780)='xfs\x00', &(0x7f00000007c0)='./file0\x00', 0x1f, 0x6, &(0x7f0000000b40)=[{&(0x7f0000000800)="af87ffce815699808650b44b5c0b8dd3f4fce3f8e8fa7f10682530b90c9cc6805a14d03d57971839e8672f3c7ebd39d95724aa1e1c2d137b5c4cb04f4c4c6a5c9338d6eb32f35ead8d76aa9b1433dff4115b0d56963fb030a4ef4a610f7d3dec135cf9020bd7cf79ba8126f34aebe396e8cb9316dc08a9cec858dca7702ada66fdd01d151477b53426e29aabf90c8c9e637dce153f387372db1ae1f0801dcd17392d0df048ac4228ee553c7f80e8ceb8720cf5b599ac2956b6476d8b744b94bbe4260c017ea2ae4b89153a9fb08809f82c14d3fd626210fc921e5c91450c070f5e52fcab", 0xe4, 0x200}, {&(0x7f0000000900)="5ac936e600707a5cdc8a8ca39aea57349ab8e2cd1a5560aee491f7dd7c0e7ee669a042b2ff718394794090771873785b6712b73bfd3db53ba66295994103b231fb04e1a00d", 0x45, 0x10000}, {&(0x7f0000000980)="4a124db94c4565c6f22790fac88be4bb0f79faf9fb93edcce8d09da4b2b17c85349e615b5456409920a465ca298402853745e797405fe58f27fb629a830a8a3b296d0891155aa3448332f18d1cbc3a284eeae724ea920b7524b8d993f3ed13f08b1773", 0x63, 0x2}, {&(0x7f0000000a00)="62abf474a4be528a41a26873fb9b83d1417251e33eb223c560b74d1e909680b1c945625ce36275a5f38a546312c7f262f491eb256717eb27f7352ea4ffd80c59ad48b72aa6bc7654205decadfc2457db3890c736f12b5fcb36216e1d", 0x5c, 0x4}, {&(0x7f0000000a80)="9100e35af05df494761d7ff45eb4b3b366ea5aa0f455fc08aaca19b3225bf9df0abc06308543529c89d5aec5395728f39f959faffedcb9511aa0a7abef0b53dc9af8436a5c00622b63c9f8ca2f68ff9ad66035160576dfa98393bc4d3e691d2a0266c7e2402c344f503938821a2375334eb5bb92", 0x74}, {&(0x7f0000000b00)="e7be149b83ea3ac7bae6a6e2e93905c261b0456ce9696d8a749b5444b82369f6a718", 0x22, 0x7fffffff}], 0x20, &(0x7f0000000c00)={[{@swalloc='swalloc'}], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/dlm-monitor\x00'}}, {@context={'context', 0x3d, 'sysadm_u'}}]})
lstat(&(0x7f0000000c40)='./file0\x00', &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fstat(r3, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r0, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
getresgid(&(0x7f0000000e00)=<r8=>0x0, &(0x7f0000000e40), &(0x7f0000000e80))
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000ec0)={0x158, 0x0, 0x5, [{{0x5, 0x2, 0x16c, 0x100, 0x4, 0x2, {0x3, 0x7, 0x81, 0x0, 0xc85, 0x100000000, 0x8, 0x5, 0x1, 0xdd, 0x4, r5, r6, 0xff}}, {0x1, 0x7fffffff, 0xb, 0xd1, 'smackfsroot'}}, {{0x1, 0x3, 0x5, 0x2, 0x4, 0x630b, {0x2, 0x3, 0x0, 0x0, 0x9, 0x1f, 0x9, 0x1, 0x1, 0x3f, 0x800, r7, r8, 0x9, 0x8}}, {0x3, 0x1, 0x8, 0x1f, 'sysadm_u'}}]}, 0x158)
fsetxattr(r3, &(0x7f0000001040)=@known='trusted.overlay.origin\x00', &(0x7f0000001080)='em0trusted\x00', 0xb, 0x2)
r9 = dup2(r0, r0)
getsockopt$inet_sctp6_SCTP_INITMSG(r9, 0x84, 0x2, &(0x7f00000010c0), &(0x7f0000001100)=0x8)
getsockopt$inet_mreq(r0, 0x0, 0x0, &(0x7f0000001140)={@loopback, @multicast2}, &(0x7f0000001180)=0x8)
ioctl$VIDIOC_ENCODER_CMD(r0, 0xc028564d, &(0x7f00000011c0)={0x2, 0x0, [0x0, 0x401, 0x2b, 0x7, 0x0, 0x1f, 0x6, 0x8]})
getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000001200), &(0x7f0000001240)=0x8)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000001280)={"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"})

[  654.392173] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.408179] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  654.425336] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.451411] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  654.474257] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  654.497265] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  654.509447] netlink: 72 bytes leftover after parsing attributes in process `syz-executor0'.
[  654.540247] *** Guest State ***
03:33:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={<r4=>0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r5 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x2000, 0x4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYRESOCT=r5, @ANYPTR64=&(0x7f00000000c0)=ANY=[@ANYRES16=r0], @ANYRESOCT=r0, @ANYRES64=r0, @ANYRESDEC=r4])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000180)={<r6=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000200)={0x13, 0x10, 0xfa00, {&(0x7f0000000400), r6, 0x1}}, 0x18)

[  654.543735] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  654.548657] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  654.566394] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  654.574990] Interruptibility = 00000000  ActivityState = 00000000
[  654.588787] netlink: 72 bytes leftover after parsing attributes in process `syz-executor0'.
[  654.597508] *** Host State ***
[  654.601432] RIP = 0xffffffff8120262c  RSP = 0xffff88011eb2f390
[  654.627098] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  654.648474] CR3 = 0x0000000000000000
[  654.652213] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  654.658278] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  654.667499] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  654.708070] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  654.729519] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  654.736385] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.738548] CR0=0000000080050033 CR3=00000001bb648000 CR4=00000000001426f0
[  654.744813] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.760816] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  654.761589] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.767611] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  654.775926] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.802154] *** Control State ***
[  654.818527] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  654.826488] EntryControls=0000d1ff ExitControls=002fefff
[  654.826506] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.845502] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  654.861397] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.868618] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  654.878319] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  654.889137] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  654.892567] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  654.901096] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  654.935726] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  654.939903]         reason=80000021 qualification=0000000000000000
[  654.950215] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  654.965697] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  654.968500] IDTVectoring: info=00000000 errcode=00000000
[  654.979173] Interruptibility = 00000000  ActivityState = 00000000
[  655.000096] TSC Offset = 0xfffffe9fa6202dc1
[  655.002746] *** Host State ***
[  655.005554] EPT pointer = 0x000000011684601e
[  655.018845] RIP = 0xffffffff8120262c  RSP = 0xffff88018178f390
[  655.032670] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  655.039931] FSBase=00007fecb7d54700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  655.069208] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  655.075110] CR0=0000000080050033 CR3=00000001d4a97000 CR4=00000000001426e0
[  655.082436] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  655.099554] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  655.105618] *** Control State ***
[  655.110423] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  655.117095] EntryControls=0000d1ff ExitControls=002fefff
[  655.122666] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  655.130035] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  655.136712] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  655.146769]         reason=80000021 qualification=0000000000000000
[  655.153190] IDTVectoring: info=00000000 errcode=00000000
[  655.158732] TSC Offset = 0xfffffe9f798bf919
[  655.163054] EPT pointer = 0x00000001c0d7001e
03:33:29 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000005d40)={<r1=>0x0, @in6}, &(0x7f0000005e00)=0x90)
ioctl$sock_netdev_private(r0, 0x89f6, &(0x7f0000000080)="f71d518934e5a35255df9f079ec2bf84c704992709b301397d950a2ae51e16e49c96de65d01de6c60e851ada0d19b59f03430d4324dcb8800aef113b81b6582e5fb40a714b04e5f439a22259a02dcdbf11c700d00850e30cb4b81e69a3e4faaa33043f909094bc88a9708d1ef7")
r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2)
syncfs(r2)
setsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000100)={r1, 0x100}, 0x4)

03:33:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
recvmsg$kcm(r3, &(0x7f00000000c0)={&(0x7f00000001c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x80, &(0x7f00000015c0)=[{&(0x7f00000002c0)=""/170, 0xaa}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000000040)=""/45, 0x2d}, {&(0x7f0000001380)=""/128, 0x80}, {&(0x7f0000001400)=""/227, 0xe3}, {&(0x7f0000001500)=""/157, 0x9d}], 0x6, 0x0, 0x0, 0x8}, 0x40000001)

03:33:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r3, 0x28, &(0x7f0000000180)={0x0, <r4=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000200)={r4, 0xdf, 0x10}, 0xc)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000080)={0x0, @broadcast, @broadcast}, &(0x7f00000000c0)=0xc)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:29 executing program 3:
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0xb0, 0x400000)
ioctl$SG_GET_TIMEOUT(r1, 0x2202, 0x0)
r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x109000, 0x0)
sendto(r2, &(0x7f0000000240)="9adb8a35a84cb9e33cba52fae78ce65e0534846453f2714971f19c0987d9797ea22581db8e3cd7de24eccc376906ca00e0de413c128f44ed44425270c929bbbbd5eacc04d804ab61e5aa4e4a7bec90dfe62707464061061e923846849f9d9ce607d4201b2fadcdb3f2d4d67a335faccad40b8b89fe04bd7060be5915bb6a06ff25628538be1c3484287d9582b4df29fdb176910b3d6b24f8b49a150737f79326eabc62677f0122444af5a8db3959c61c071a6426df9fc5cc507318723a00a4d0f1b035cabdd7c4feddc2ad4e3d33ddd4b3ec2f3def79b51e43f5f4171a", 0xdd, 0x48010, 0x0, 0x0)
syz_open_pts(r0, 0x0)
prctl$PR_SET_PDEATHSIG(0x1, 0x100015)
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f00000001c0))

03:33:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x10000, 0x101000)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000040)={0xc, 0x6, 0xffff})
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:29 executing program 0:
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000200), &(0x7f0000000240)}}, &(0x7f00000002c0))
r0 = gettid()
r1 = socket$inet(0x2, 0x1, 0x0)
rt_tgsigqueueinfo(r0, r0, 0x30, &(0x7f0000000200)={0x41, 0x7, 0x7c8, 0x7ff})
r2 = dup(r1)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='dctcp\x00', 0x6)
openat$cuse(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/cuse\x00', 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00002eaffc)=0x101, 0x4)
connect$inet(r1, &(0x7f0000000780)={0x2, 0x4e23}, 0x10)
sendto$inet(r2, &(0x7f0000000300)="96", 0x1, 0x3fff, &(0x7f0000000240)={0x2, 0x0, @loopback}, 0x10)
ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000340)=0x24)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000266ffc), 0x4)
sendmsg$TEAM_CMD_NOOP(r2, &(0x7f0000004bc0)={&(0x7f0000000000), 0xc, &(0x7f0000004b80)={&(0x7f0000000600)=ANY=[@ANYBLOB="ee90681925d5a66bbaeb859f5b3b1d38b5f5dd87301ba480ccd6572485fd6aab2d88ab4ed30850a18c4ab938a34ac808ef6a15c61d36899f15fe788ce95253883208178e51b9265d23eb5f6bc180a021bb5f02250c7ad8b5348b4042bef17dcc918e51fc9512157401e644d6efd0f94c92891738ed5ba372457fdf6a38a0c0dbbe25bd849c328bcc94dee9285dc5c3d182c02beba3fcf97d32f6412189268b3d1af6ac010d0b449f5d3840abebd2cdff"], 0x1}}, 0x0)
sendmmsg(r2, &(0x7f0000004580)=[{{&(0x7f0000000080)=@pptp, 0x80, &(0x7f0000000140)=[{&(0x7f0000000840)='F', 0x1}], 0x1, &(0x7f00000009c0)}}], 0x1, 0x80)
sendto$inet(r1, &(0x7f0000000180)="a8", 0x1, 0x3fffffd, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
write$vnet(r2, &(0x7f0000000580)={0x1, {&(0x7f0000000480)=""/202, 0x3d6, &(0x7f0000000380)=""/252}}, 0xfffffdef)
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f00000000c0))
tkill(r0, 0x15)

[  655.375649] *** Guest State ***
[  655.386462] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  655.406493] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  655.413645] *** Guest State ***
[  655.420011] CR3 = 0x0000000000000000
[  655.423990] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  655.430623] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  655.438068] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  655.447545] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  655.453514] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
03:33:29 executing program 2:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x0, 0x0)
mmap(&(0x7f00006fc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x400000, 0x0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000080)=0x4)

03:33:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = getpgid(0xffffffffffffffff)
sched_setaffinity(r2, 0x7a, &(0x7f00000002c0)=0x40000000000005)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000100)='/dev/snd/pcmC#D#p\x00', 0x1, 0xc40)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4068aea3, &(0x7f0000000140)={0x5e425d3b37c42a5b, 0x0, [0x87a8, 0x10001, 0xffffffffffff7fff, 0x8001]})
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x0, 0x0)
r5 = memfd_create(&(0x7f0000000280)='/dev/snd/pcmC#D#p\x00', 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f00000000c0)={0x9, 0x7110, 0x0, 0x0, 0x7fff, 0x5})
pwritev(r5, &(0x7f0000000340)=[{&(0x7f00000001c0)='\'', 0x1}], 0x1, 0x1081806)
ioctl$LOOP_CHANGE_FD(r4, 0x4c00, r5)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000380)={0x4800, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x1c, "7001e0f57c8cf6270b24e415e96042aae51d871554c11cd59cc80000000025bad6b39d778066f9d1ac8a570e3a42f70a7c0f30f66157a96aae15813f0dceb297", "a8a4cd0160ec941a3de45387daf7b1ac786d0e8a75e8904655faf6f2bc6cc487d93a61edb75c8d51c055faf7f4fdb16e0cdaa4276939a341033400", "2f18ffffffffffff4116893616105829576914e70bfeb59800f97c97644ab8a7"})
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000340)={0x4}, 0x0)

[  655.479165] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.488674] CR3 = 0x0000000000000000
[  655.492406] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  655.498389] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  655.507970] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.520652] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:33:29 executing program 0:
umount2(&(0x7f0000000200)='./file0\x00', 0x6)
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000280))
pwrite64(0xffffffffffffffff, &(0x7f0000000540), 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000002100)={<r0=>0x0, 0x3}, &(0x7f0000002140)=0x8)
r1 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x400000, 0x1)
fstatfs(r1, &(0x7f0000000780)=""/179)
ioctl$TCSETSF(0xffffffffffffffff, 0x5404, &(0x7f0000000240)={0x0, 0x2, 0x0, 0xfffffffffffffff8, 0x10000, 0xddb2, 0x3, 0x7, 0x8e, 0x743, 0x4, 0x2})
r2 = openat$random(0xffffffffffffff9c, &(0x7f0000000100)='/dev/urandom\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setgroups(0x1, &(0x7f0000000500)=[0x0])
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000006c0)={r0, @in={{0x2, 0x0, @multicast2}}, 0x8001, 0x4, 0x5, 0x0, 0x10}, &(0x7f00000001c0)=0x98)
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f00000002c0)={{0xffffffffffffffff, 0x3, 0x0, 0x0, 0x5}, 0x0, 0x3ff, 'id1\x00', 'timer1\x00', 0x0, 0xff, 0x0, 0xfa})
ioctl$VIDIOC_ENUMINPUT(r2, 0xc050561a, &(0x7f00000003c0)={0xfd82, "b65a6e9c65750d8a2a004689562e8e89db650c9317351ad1a8a49e20408703a5", 0x0, 0x80000000, 0x7, 0x12000, 0x10010})
ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, &(0x7f00000000c0)=0x8)
socketpair$inet(0x2, 0x2, 0x1, &(0x7f0000000280)={<r3=>0xffffffffffffffff})
getrandom(&(0x7f0000000440)=""/40, 0x15, 0x2)
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video37\x00', 0x2, 0x0)
write$binfmt_aout(r3, &(0x7f00000005c0)=ANY=[@ANYBLOB="556da25fd958729f56e25289f86df489d916161359f4620601edbf70e8ada07f5c1bc20cff2374ad2f5c603647fcd77b3f70df4d1a90851c38ab0a345b63011a3ce5ebf75c419059eed22095f7353c11bad369af54d1d3475f677da935e08672dd0361c6ef92a60c92b6a454697ab695d269ca3d827c3fa7313659dc2f89c4958e46ce4247803e62e7d7c8f892a09ddf9acde229fd2353118ab50db1f83ff1756d5fd4ab76d125400b5989bb10d167d75da15c660cf3934d5a42cd46c2cdb47dd7d2894d0d97e85973f225d44705f592ad4826f55427efe7259a7e8e85a7aa6863a6b2f337bf1a1b58c9121f109fff279a00"], 0xf2)
ioctl$RNDADDTOENTCNT(r2, 0x40045201, &(0x7f0000000280)=0x1f)

[  655.527336] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.535855] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.546696] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.555511] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.569202] *** Guest State ***
[  655.572766] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  655.572934] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.591049] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.603267] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  655.611880] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.630302] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.632507] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  655.649953] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  655.659217] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.667684] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.676285] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  655.688295] CR3 = 0x0000000000000000
[  655.689294] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  655.698992] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.702928] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  655.707193] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  655.722870] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
03:33:29 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = inotify_init1(0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={0x0, <r2=>0x0}, &(0x7f0000000100)=0xc)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000140)=<r3=>0x0)
fcntl$setown(r1, 0x8, r3)
fcntl$getownex(r1, 0x10, &(0x7f0000000200)={0x0, <r4=>0x0})
r5 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xffffffffffffff55)
setresuid(r2, r6, r2)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0)
ptrace$setopts(0x4206, r4, 0x0, 0x0)

03:33:29 executing program 0:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$video(&(0x7f0000000040)='/dev/video#\x00', 0x4, 0x202)
writev(r1, &(0x7f00000007c0)=[{&(0x7f0000000080)='|', 0x1}], 0x1)
getsockname$packet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x14)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)=@nl=@unspec={0x40000, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f0000003800)}, 0x0)
r2 = memfd_create(&(0x7f0000000380)='@\x00', 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000440)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000400), 0x2}}, 0x20)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f00000002c0)={0x2000000ffffffff, 0x8, 0x2, 0x81}, 0x10)
r3 = dup2(r0, r1)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r2, &(0x7f0000000480)={0x12, 0x10, 0xfa00, {&(0x7f00000003c0), 0xffffffffffffffff, r3}}, 0x18)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000540)='trusted.overlay.redirect\x00', &(0x7f0000000580)='./file0\x00', 0x8, 0x0)
seccomp(0x0, 0x1, &(0x7f0000000280)={0x4, &(0x7f0000000000)=[{0x3, 0x400, 0x0, 0x7fffffff}, {0x9, 0xefa, 0xa6a2, 0x800}, {0x7fffffff, 0x7fff, 0x3, 0x1ff}, {0x8, 0x7f, 0xfff, 0xc7f}]})
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f00000004c0)=0xa34, 0x4)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='io.stat\x00', 0x0, 0x0)
ioctl$TIOCMGET(0xffffffffffffffff, 0x5415, &(0x7f0000000240))

[  655.729741] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  655.733437] Interruptibility = 00000000  ActivityState = 00000000
[  655.743565] *** Host State ***
[  655.758481] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.761919] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  655.766463] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  655.766484] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  655.766495] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  655.766509] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  655.766518] Interruptibility = 00000000  ActivityState = 00000000
[  655.766526] *** Host State ***
[  655.799403] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.805140] RIP = 0xffffffff8120262c  RSP = 0xffff880180aff390
03:33:29 executing program 3:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000540)='/dev/vcs\x00', 0x20000, 0x0)
syz_mount_image$btrfs(&(0x7f0000000140)='btrfs\x00', &(0x7f0000000900)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="66e309d78e00fe2c915785f931c0915a71811ac88aceeb090e7205809d658a49902a4e5c4fbc6bb4537be24780e72720401b5b9b5efd6980b35098913d55f13b555ed4c2294a121fd7172215dcc2c27a41baa21ee6245d61370bc18c9a198abe73bafbee720954e31750eab5b0ed78d385c594d24f8e3b002d01647757b9e8a09f35a18d74ea6afd5f492858d5f51cb606ca1dbe3b58c5afe80a10153a342d63da4235298d8d"])
syz_mount_image$ntfs(&(0x7f0000000040)='ntfs\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)=ANY=[])
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x360d, &(0x7f0000000600))
fcntl$getown(r1, 0x9)
ptrace$getenv(0x4201, 0x0, 0x0, &(0x7f0000000280))
mount$overlay(0x404000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]})
r2 = syz_open_dev$dmmidi(&(0x7f0000000240)='/dev/dmmidi#\x00', 0x80000001, 0x208000)
ioctl$KIOCSOUND(r0, 0x4b2f, 0xff)
setxattr$security_smack_entry(&(0x7f0000000800)='./file1\x00', 0x0, 0x0, 0x0, 0x2)
stat(&(0x7f0000001e00)='./file1\x00', &(0x7f0000001e40)={0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0})
prctl$PR_GET_SECUREBITS(0x1b)
ioctl$DRM_IOCTL_AGP_ACQUIRE(r0, 0x6430)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
ioctl$KDGKBMETA(0xffffffffffffffff, 0x4b62, 0x0)
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x0, 0x0, 0x3}, 0x2c)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x127)
getsockopt(r2, 0x5, 0x8, &(0x7f00000002c0)=""/88, &(0x7f0000000340)=0x58)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, <r5=>0x0})
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f0000000180), 0x127)
setxattr$system_posix_acl(&(0x7f0000000180)='./file1\x00', &(0x7f0000000380)='system.posix_acl_default\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000010003000000000002000000", @ANYRES32=r3, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="02000100", @ANYRES32=0x0, @ANYBLOB="040007000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB="084c9fbd754e5674080700", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r4, @ANYBLOB="10000400000000002000030000000000"], 0x6c, 0x2)

[  655.831380] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  655.837966] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  655.858552] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  655.874220] CR0=0000000080050033 CR3=000000011c2f9000 CR4=00000000001426f0
03:33:29 executing program 2:
r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00')
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="00052bbd7000fbdbdf250e000000799edabb702952efda3c1ff86137f0dae1f8b68f80c47eb856fcdecc4f0c10bcec079326e8b9a986a73b"], 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
r2 = syz_open_dev$video4linux(&(0x7f0000000080)='/dev/v4l-subdev#\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r2, 0xc0585604, &(0x7f0000000180)={0x0, 0x1d})

[  655.874443] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.888587] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  655.904532] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  655.911370] *** Control State ***
[  655.915368] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  655.923313] EntryControls=0000d1ff ExitControls=002fefff
[  655.934419] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  655.938865] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.949247] RIP = 0xffffffff8120262c  RSP = 0xffff88011cf77390
[  655.956510] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  655.961086] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  655.963838] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  655.978204] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  655.993208] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.001764]         reason=80000021 qualification=0000000000000000
[  656.010478] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.018875] FSBase=00007f88e60df700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  656.020669] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  656.026681] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  656.026698] CR0=0000000080050033 CR3=00000001b9569000 CR4=00000000001426e0
[  656.026715] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  656.026728] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  656.026734] *** Control State ***
[  656.026745] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  656.026753] EntryControls=0000d1ff ExitControls=002fefff
[  656.026772] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  656.041358] IDTVectoring: info=00000000 errcode=00000000
[  656.051440] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.061992] TSC Offset = 0xfffffe9eec990cda
[  656.073863] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  656.077750] EPT pointer = 0x00000001c09b601e
[  656.101727] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  656.109623] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  656.115351] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  656.131377] overlayfs: failed to resolve './file1': -2
[  656.141106] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  656.147649] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  656.158620] Interruptibility = 00000000  ActivityState = 00000000
[  656.165460] *** Host State ***
[  656.170833]         reason=80000021 qualification=0000000000000000
[  656.172105] RIP = 0xffffffff8120262c  RSP = 0xffff8801d8d57390
[  656.188061] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  656.190589] *** Guest State ***
[  656.194787] FSBase=00007fecb7d54700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  656.206133] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  656.206313] ntfs: (device loop3): parse_options(): Unrecognized mount option .
[  656.212402] CR0=0000000080050033 CR3=00000001b8423000 CR4=00000000001426e0
[  656.220428] IDTVectoring: info=00000000 errcode=00000000
[  656.228039] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  656.239007] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  656.245165] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  656.250933] *** Control State ***
[  656.255002] TSC Offset = 0xfffffe9eec9bc160
[  656.260984] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  656.269839] EntryControls=0000d1ff ExitControls=002fefff
[  656.276586] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  656.284202] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  656.286862] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  656.294462] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  656.301130] EPT pointer = 0x00000001d8f7f01e
[  656.311862]         reason=80000021 qualification=0000000000000000
[  656.318345] IDTVectoring: info=00000000 errcode=00000000
[  656.318532] CR3 = 0x0000000000000000
[  656.328575] TSC Offset = 0xfffffe9eea091f61
[  656.333932] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
03:33:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYBLOB="aa413cf993b040ed91f5521a00"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:30 executing program 2:
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(r0, 0x1, 0x9, &(0x7f0000000740)=0x5, 0x4)
r2 = syz_genetlink_get_family_id$team(&(0x7f0000000140)='team\x00')
accept4$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14, 0x80800)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth0\x00', <r4=>0x0})
getsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f0000000240)={@loopback, @broadcast, <r5=>0x0}, &(0x7f0000000280)=0xc)
accept(r1, &(0x7f00000002c0)=@xdp={0x2c, 0x0, <r6=>0x0}, &(0x7f0000000340)=0x80)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000a00)={'team0\x00', <r7=>0x0})
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000001000)={<r8=>0x0, @local, @dev}, &(0x7f0000001040)=0xc)
accept$packet(r1, &(0x7f0000001080)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000010c0)=0x14)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000011c0)={{{@in, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in=@broadcast}}, &(0x7f00000012c0)=0xe8)
getpeername(r0, &(0x7f0000001300)=@can={0x1d, <r11=>0x0}, &(0x7f0000001380)=0x80)
recvmmsg(r1, &(0x7f000000b5c0)=[{{&(0x7f00000013c0)=@can, 0x80, &(0x7f0000001580)=[{&(0x7f0000001440)=""/248, 0xf8}, {&(0x7f0000001540)=""/29, 0x1d}], 0x2, &(0x7f00000015c0)=""/15, 0xf, 0x2}}, {{&(0x7f0000001600)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, &(0x7f0000002b00)=[{&(0x7f0000001680)=""/8, 0x8}, {&(0x7f00000016c0)=""/5, 0x5}, {&(0x7f0000001700)=""/193, 0xc1}, {&(0x7f0000001800)=""/179, 0xb3}, {&(0x7f00000018c0)=""/43, 0x2b}, {&(0x7f0000001900)=""/123, 0x7b}, {&(0x7f0000001980)=""/99, 0x63}, {&(0x7f0000001a00)=""/81, 0x51}, {&(0x7f0000001a80)=""/124, 0x7c}, {&(0x7f0000001b00)=""/4096, 0x1000}], 0xa, &(0x7f0000002bc0)=""/228, 0xe4, 0x100000000}, 0x2}, {{&(0x7f0000002cc0)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000007040)=[{&(0x7f0000002d40)=""/4096, 0x1000}, {&(0x7f0000003d40)=""/130, 0x82}, {&(0x7f0000003e00)=""/168, 0xa8}, {&(0x7f0000003ec0)=""/81, 0x51}, {&(0x7f0000003f40)=""/4096, 0x1000}, {&(0x7f0000004f40)=""/196, 0xc4}, {&(0x7f0000005040)=""/4096, 0x1000}, {&(0x7f0000006040)=""/4096, 0x1000}], 0x8, &(0x7f00000070c0)=""/25, 0x19, 0x4}, 0x7ff}, {{&(0x7f0000007100)=@nl=@unspec, 0x80, &(0x7f00000085c0)=[{&(0x7f0000007180)=""/166, 0xa6}, {&(0x7f0000007240)=""/73, 0x49}, {&(0x7f00000072c0)}, {&(0x7f0000007300)=""/4096, 0x1000}, {&(0x7f0000008300)=""/232, 0xe8}, {&(0x7f0000008400)=""/37, 0x25}, {&(0x7f0000008440)=""/91, 0x5b}, {&(0x7f00000084c0)=""/138, 0x8a}, {&(0x7f0000008580)=""/56, 0x38}], 0x9, &(0x7f0000008680)=""/4096, 0x1000, 0x1}, 0xec}, {{&(0x7f0000009680)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @multicast2}}}}, 0x80, &(0x7f0000009bc0)=[{&(0x7f0000009700)=""/114, 0x72}, {&(0x7f0000009780)=""/78, 0x4e}, {&(0x7f0000009800)=""/59, 0x3b}, {&(0x7f0000009840)=""/87, 0x57}, {&(0x7f00000098c0)=""/194, 0xc2}, {&(0x7f00000099c0)=""/210, 0xd2}, {&(0x7f0000009ac0)=""/133, 0x85}, {&(0x7f0000009b80)=""/2, 0x2}], 0x8, 0x0, 0x0, 0x8}, 0x5}, {{&(0x7f0000009c40)=@xdp={0x2c, 0x0, <r12=>0x0}, 0x80, &(0x7f0000009ec0)=[{&(0x7f0000009cc0)=""/204, 0xcc}, {&(0x7f0000009dc0)=""/254, 0xfe}], 0x2, &(0x7f0000009f00)=""/4096, 0x1000, 0xff}, 0xae9}, {{0x0, 0x0, &(0x7f000000b1c0)=[{&(0x7f000000af00)=""/186, 0xba}, {&(0x7f000000afc0)=""/241, 0xf1}, {&(0x7f000000b0c0)=""/197, 0xc5}], 0x3, &(0x7f000000b200)=""/89, 0x59, 0x47}, 0x20}, {{0x0, 0x0, &(0x7f000000b480)=[{&(0x7f000000b280)=""/54, 0x36}, {&(0x7f000000b2c0)=""/139, 0x8b}, {&(0x7f000000b380)=""/49, 0x31}, {&(0x7f000000b3c0)=""/165, 0xa5}], 0x4, &(0x7f000000b4c0)=""/215, 0xd7, 0x1}, 0x8}], 0x8, 0x40000000, &(0x7f000000b7c0))
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f000000b800)={'ip6gre0\x00', <r13=>0x0})
getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, <r14=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000380)=0x14)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f000000b8c0)={{{@in6=@dev, @in6=@ipv4={[], [], @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}}, {{@in=@multicast2}, 0x0, @in=@rand_addr}}, &(0x7f000000b9c0)=0xe8)
getsockopt$inet6_mreq(r1, 0x29, 0x14, &(0x7f000000ba00)={@mcast1, <r16=>0x0}, &(0x7f000000ba40)=0x14)
accept4$packet(r1, &(0x7f000000ba80)={0x11, 0x0, <r17=>0x0}, &(0x7f000000bac0)=0x14, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f000000bb00)={'lo\x00', <r18=>0x0})
sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f000000c280)={&(0x7f00000000c0), 0xc, &(0x7f000000c240)={&(0x7f000000bb40)={0x6d0, r2, 0x120, 0x70bd28, 0x25dfdbff, {}, [{{0x8, 0x1, r3}, {0x20c, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x8000}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r6}}, {0x8}}}]}}, {{0x8, 0x1, r7}, {0xb8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r10}, {0x78, 0x2, [{0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r11}}}]}}, {{0x8, 0x1, r12}, {0x44, 0x2, [{0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x200}}, {0x8}}}]}}, {{0x8, 0x1, r13}, {0x1ac, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x8}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x20a9}}, {0x8, 0x6, r14}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x2eac}}}, {0x6c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x3c, 0x4, [{0xaa7, 0xffffffffffffffc1, 0x4a, 0x36}, {0xffffffffffffffff, 0x1000, 0x81, 0x1000}, {0x0, 0x2, 0x9, 0x5a}, {0xdc3e, 0x0, 0x15ff98b4, 0x7fffffff}, {0x5, 0x3, 0x0, 0x3}, {0x100000001, 0x80000001, 0x9000000000000, 0xffffffffffff8001}, {0x7fff, 0x10001, 0x9, 0xfffffffffffffff8}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r15}}}]}}, {{0x8, 0x1, r16}, {0x160, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r17}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r18}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x5}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x37}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x2}}}]}}]}, 0x6d0}, 0x1, 0x0, 0x0, 0x20008080}, 0x20040800)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000100))
keyctl$set_reqkey_keyring(0xe, 0x7)

[  656.343001] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  656.344543] EPT pointer = 0x00000001c3b9501e
[  656.370415] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  656.372664] ntfs: (device loop3): parse_options(): Unrecognized mount option .
[  656.418823] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  656.456651] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
03:33:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000080))
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000400)={0xa, 0x0, [{0xc0000008, 0xfff, 0x2, 0xb7c, 0x6, 0x7e, 0x5}, {0xc0000007, 0x200, 0x1, 0x5, 0x8000, 0x8, 0x5a}, {0xc000000f, 0x4, 0x4, 0x6, 0x20, 0x100000001, 0x4}, {0xa, 0x800, 0x0, 0x4, 0x5, 0x4, 0x101}, {0x80000007, 0x2, 0x2, 0xfffffffffffffff7, 0x4, 0x1, 0x568}, {0x80000008, 0x0, 0x2, 0x6, 0x3, 0x7, 0x1000}, {0x916a4cdf31cadb1f, 0x3, 0x5, 0x1, 0x3, 0x5}, {0x7, 0x9, 0x0, 0xd35, 0x0, 0x0, 0x1}, {0x0, 0xa9a, 0x4, 0xfffffffffffffff7, 0x4, 0x4, 0x20}, {0xc0000007, 0x4, 0x4, 0x6f, 0x80, 0x7, 0x7}]})

03:33:30 executing program 0:
syz_mount_image$xfs(&(0x7f00000002c0)='xfs\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@norecovery='norecovery'}]})

[  656.486267] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  656.502591] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  656.517657] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  656.597476] *** Guest State ***
[  656.598054] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  656.605558] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  656.618124] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  656.627352] CR3 = 0x0000000000000000
[  656.637246] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  656.645462] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  656.677851] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  656.686202] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  656.686387] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  656.698494] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  656.709841] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  656.711898] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.723870] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  656.729632] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.733331] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  656.740424] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.748202] Interruptibility = 00000008  ActivityState = 00000000
[  656.760391] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.770458] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.779110] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.802116] *** Host State ***
[  656.806154] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  656.806697] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3c8f390
[  656.814339] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  656.828867] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  656.840435] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  656.846699] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  656.852753] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  656.863011] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  656.869505] CR0=0000000080050033 CR3=000000011c2f9000 CR4=00000000001426f0
[  656.874796] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  656.876622] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  656.883110] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  656.891449] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  656.904660] *** Control State ***
[  656.908239] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  656.908575] Interruptibility = 00000000  ActivityState = 00000000
[  656.915673] EntryControls=0000d1ff ExitControls=002fefff
[  656.927003] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  656.929489] *** Host State ***
[  656.934540] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  656.937287] RIP = 0xffffffff8120262c  RSP = 0xffff8801cd8af390
[  656.944309] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  656.950013] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  656.956722]         reason=80000021 qualification=0000000000000000
[  656.963083] FSBase=00007fecb7d54700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  656.970017] IDTVectoring: info=00000000 errcode=00000000
[  656.977271] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  656.982975] TSC Offset = 0xfffffe9eec990cda
[  656.989051] CR0=0000000080050033 CR3=00000001b8423000 CR4=00000000001426e0
03:33:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$VIDIOC_ENUMAUDIO(r3, 0xc0345641, &(0x7f0000000140)={0x7f, "e611188041294378c6bdceccca00e153287ecde1f3b4f9fd9e6eafaa454a8894", 0x3, 0x1})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
lsetxattr$security_ima(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@sha1={0x1, "8f3c1d9e579894512d359662a55b32fd96a66ba3"}, 0x15, 0x2)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:31 executing program 3:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x73, &(0x7f0000000080), &(0x7f0000000200)=0xc)
r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x7, 0x0)
r2 = syz_open_dev$media(&(0x7f00000000c0)='/dev/media#\x00', 0x93a, 0x100)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0x7000, &(0x7f0000000040), 0xa, r2, 0x8})

03:33:31 executing program 0:
r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
ioctl(r0, 0x1c2604111, 0x0)

03:33:31 executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000e80)='/dev/uinput\x00', 0x0, 0x0)
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0x10000272)
r1 = memfd_create(&(0x7f0000000000)='eth1\x00', 0x4)
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000080)={0x0, 0x10000, 0x6, [], &(0x7f0000000040)={0x9909e3, 0x8, [], @ptr=0x80000001}})

03:33:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={<r4=>0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r3, &(0x7f0000000400)="6164a74f7d4230c8c95e99d3ca2bee08ea2ba2b9fb5161ab3fe0b92b02162c821879ee3fc1eb0f4604111fe3a934155ad61dcb24af774a4a6bacff7c3bb430a8d1be98cdc4fcaebfee29847c1344495bdf878ce9538ee48b4f156d85423a768b05a7b3601e4bfc240e97f5a75ba092bd908c380b0e2ce6514ba3d92d33515a9ec2fb3a3d98e0b6a4c4dc60f7de469f6ba52b4c6b9443db2b330926f5f509fe19fcdf417f438f3b35562b053bb285c591127e6053971b60278c2f4ea12be5ed566c1b"}, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000180)={r4, 0x89, "8c8cc0e6c54a26df9aa42eb2719222f54de1701fab8246be188f04180957e134300d9ac29d14d499f556d979f72a5cb421253d767cad715e630c76bfa4aff9f792f9a954a994b985afbfd0b55894cf6cee3821b0686c29dcc078433b7cdacd9a8723bfe2c9a10318e9977ba4049ebbed49a18789f108946cee7abe292d966d90526226af8793d21a85"}, &(0x7f0000000300)=0x91)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r3, &(0x7f0000000500)="c4c6034c2dbd3c3c88d5cf3edff92f400901504f8a5abdac241e7d9f116c90aedf35fbb160183b02fe57b02e925ab3d5221dffcd74e4d9403124bed9ef772bb6a9d7419beb75d157b0ae0423b2a961b11cfb8da8b7f6007c1a799010c9c4980e9973e83959d9637c21369a171391f80456bad560ed743df9b45f87349b97c443b5c4b8d3ead6af1ed8a2ec44a574615887e9950d8aa4c86df11793536356d061b3b1a403ac2ffaa4234bc932fba2768d81645b8910500cb51d786747cde03204b2a4f971d0ce2cd650a3be322f3c76337e08cc", &(0x7f0000000600)="5f4c110f2ce694388e7cd31bc4be79ca9de4be1ce42658fe4ad85364551d64c557fa0ad2bd4a7227f0feb4cff20bf65ada10fcc6fd8f54e4005f50a6c374922db6e4afa523d76a53eb69ce478fe80def01c45ff6160b9ae2a2c905093e42b13641c13126b6bd7a7d9cc6f6df97dc3bd1211dbd6cfb984cff8515ac9eb4362d7ab247949e5417d7ceedebe02dba640b5f8e475009682b55ec84b27e50b3c2777e113d0e2cc067b71bf17a20c044ba5e0d6e491376c1ecdbeb1506737e8d166cbda0da0de08c18e75f6fb3", 0x3}, 0x20)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  656.993537] EPT pointer = 0x00000001d507e01e
[  657.000295] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  657.011395] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  657.017532] *** Control State ***
[  657.026124] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  657.032944] EntryControls=0000d1ff ExitControls=002fefff
[  657.038575] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  657.045588] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  657.079730] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  657.118666]         reason=80000021 qualification=0000000000000000
03:33:31 executing program 0:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/rtc\x00', 0x0, 0x0)
r1 = gettid()
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000040)=@buf={0xbe, &(0x7f0000000100)="769356b355f1a093d04f9c3b30256b7c513a1501e8a391d1fccf7ec74aa21bb1054b7334defa1ad02785f754195e41c3e46f2bb4d82ab030812a474ef6c14da6f0d8288e9abac778a2f15e7802bfb9e8e414ab4a3e2e0be1c60afb4b2319208b4d290caa573e9de4c9c6fd20f854fb758cc7fcebb93e829f2551b93536ffc5af4099a644b0c10dfcee55df26dd33667e78ac167e6f5d882d5f95428743ac349d3a83f3109644714adadda3ec28f7c3703f12fa67c1d6be937c985a0e4e31"})
preadv(r0, &(0x7f0000000040), 0x10000013, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x12}, &(0x7f0000000200))
close(r0)
memfd_create(&(0x7f00000001c0)="0cea2f6d643573756d707070305c5c00", 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1000000000016)

[  657.125010] IDTVectoring: info=00000000 errcode=00000000
03:33:31 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
socket$can_raw(0x1d, 0x3, 0x1)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x2, 0x0)
ioctl$PIO_SCRNMAP(r1, 0x4b41, &(0x7f0000000040)="0a350eed26fd31412ed63dc569f747db0dc81748effaa47d6d5884efd27f06566d72c7c00cadd69391d4bfbde4949bf61d0d8f9f97e8ccb0393efaba83f55373067237857292ea21f432f827b1084960e6c8902b45bc9be61de6330b08fa06afc6d61243d4655489f9cc5e6f6be4e670b23bd81e2f338baf364031b3329659be1537ed2313c5f104b671aa3cabb23b63e4b1e15ad90cbe0469d279932e8448249cc0e1ca072b2e303d0efef6813e6638c609ec79f07c")
io_setup(0x8, &(0x7f0000000100)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r0, 0x0, 0x10}])

03:33:31 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
timer_create(0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, @thr={&(0x7f0000000100)="f9f47b843b933c16d527047046f6445f6dd9fd5867150646cbf52b181aff73f72b7b4f3b", &(0x7f0000000240)="20dfe72beb713980966d5034e3b58bc052"}}, &(0x7f00000001c0))
timer_gettime(0x0, &(0x7f0000000200))
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$KVM_GET_NR_MMU_PAGES(r2, 0xae45, 0x9)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000003c0)='ip6_vti0\x00', 0x10)
r3 = socket$l2tp(0x18, 0x1, 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000980)={{{@in6=@ipv4={[], [], @multicast2}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@local}}, &(0x7f0000000a80)=0xe8)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000ac0))
setfsuid(r4)
ioctl$UI_SET_MSCBIT(r2, 0x40045568, 0x6)
connect$l2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
sendmmsg(r3, &(0x7f0000005fc0), 0x400000000000086, 0x0)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000002c0)=<r6=>0x0)
socket$l2tp(0x18, 0x1, 0x1)
sendmsg$unix(r2, &(0x7f0000000940)={&(0x7f0000000400)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000840)=[{&(0x7f00000005c0)="1c9d203fb86b8d880daac5b13cb668c92a34422381666fa1d92817a39769d088e50a3b9085371a19afcf4766fca8dcdda73918a7c7fcf04310bc3e4eb0df13e1b7a9167c0cbfe395c56cc7f25488c40e7b100bec5c76f606ddd98899ec0f089e21001f045a31932806d93f0e9e808fe753d384181d81b114648ef3bed21b27cfa477d6cf6d37c4b769c9dbb054ff62e2c63cbe47b1b0526c609e2102a6ab7af7bf00e91e15aa67d07a782552ab466c3a30bf9331ec", 0xb5}, {&(0x7f0000000680)="ae69020df03722734d39bb42a923423fb33a15b049e1e89137f5232fe95554ea72b4eb435897f40cbe09e4531b58bc484352a581fb46398bc9cc1814e126ce82e252527cc5", 0x45}, {&(0x7f0000000180)="9cf43eedca6d892153d95a5f7bf7ddb0cd3eb2fc017be5", 0x17}, {&(0x7f0000000700)="c8acd699189fd4ebc1dc3d0b25e35bd5178aacec4ce7d9cfc0eb7dfd0b9fdf44a197f438a909de0cb17060b09d8f78b24ab3381bdd732be001ec722975ea60e32a024a1938ac188b26462189d9d0481303162745268dd692c1756e84c6c4808a65bcc8054d50adff23402884069c49ced3f9d5f1e3382c5fec062acd6126222d566602e976991ea26487fd8b5f3a5fff5905436fc33ac27b74d0778e07eeed93cce13b3214cfa2fe41e16ce52ffc33", 0xaf}, {&(0x7f00000007c0)="d598eae2ef8745a766a318bdc4efcd51c71e09ec017eec678e572e5143d9caf189238d2024d808574b46d30b849fa4b6a1da2e65763a0599ab4f77036597de13ce2bcc860ece387e", 0x48}], 0x5, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="20000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="20000000000000000101000002000000", @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0x58, 0x40010}, 0x20000080)
ioctl$KVM_SET_TSS_ADDR(0xffffffffffffffff, 0xae47, 0xd000)

[  657.152263] *** Guest State ***
[  657.155745] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  657.170938] TSC Offset = 0xfffffe9e45bbec8b
[  657.174604] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  657.189692] EPT pointer = 0x00000001d30e401e
[  657.214548] CR3 = 0x0000000000000000
[  657.230984] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  657.243841] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  657.250267] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:33:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$VIDIOC_ENUMINPUT(r3, 0xc050561a, &(0x7f00000001c0)={0xfffffffffffffff7, "b43586f78936da390be75a3ae5c42679567555b032315459f3792233c2d659ce", 0x3, 0x432, 0x2, 0xc08100, 0x803, 0x2})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  657.257204] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.265652] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.276946] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.288849] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.297697] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:31 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000000)='cgroup\x00')
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$sg(&(0x7f00000c5ff7)='/dev/sg#\x00', 0x0, 0x0)
ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, 0x0)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, &(0x7f00000001c0)={'L-', 0x2}, 0x28, 0x0)
write(r1, &(0x7f0000000340), 0x10000036e)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000240)={0x0, <r2=>0x0})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b7}, &(0x7f0000000200)={0x0, r2+30000000}, 0x0)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000280)='fou\x00')
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000340)={&(0x7f0000000100), 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, r3, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e23}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e21}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_AF={0x8, 0x2, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x5)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

03:33:31 executing program 2:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58)
r3 = accept4$alg(r2, 0x0, 0x0, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000), 0x111, 0x100d}}, 0x20)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
splice(r0, 0x0, r3, 0x0, 0x20000000003, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r1, 0x4c09, 0x7f)

[  657.333795] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.349160] *** Guest State ***
[  657.352756] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  657.355565] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.383370] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.389811] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  657.389820] CR3 = 0x0000000000000000
[  657.389829] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  657.389841] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  657.389859] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  657.434790] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  657.457142] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.461686] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:31 executing program 2:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000001c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c\x00'}, 0x58)
r3 = accept4$alg(r2, 0x0, 0x0, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000), 0x111, 0x100d}}, 0x20)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
splice(r0, 0x0, r3, 0x0, 0x20000000003, 0x0)
ioctl$LOOP_SET_BLOCK_SIZE(r1, 0x4c09, 0x7f)

[  657.481712] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.485403] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  657.494537] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.500140] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  657.507438] Dead loop on virtual device ip6_vti0, fix it urgently!
[  657.539630] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  657.546250] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.556440] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  657.564349] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.574117] Interruptibility = 00000000  ActivityState = 00000000
[  657.580846] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.589560] *** Host State ***
[  657.593542] RIP = 0xffffffff8120262c  RSP = 0xffff8801c16af390
[  657.607025] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.620934] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  657.636328] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.650305] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  657.683289] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.694157] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  657.710823] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  657.719203] CR0=0000000080050033 CR3=000000017df5e000 CR4=00000000001426f0
[  657.733195] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  657.740072] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  657.756663] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  657.762930] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  657.777296] *** Control State ***
[  657.780995] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  657.791247] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  657.806063] EntryControls=0000d1ff ExitControls=002fefff
[  657.811714] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  657.824652] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  657.835429] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  657.847144] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  657.857585] Interruptibility = 00000000  ActivityState = 00000000
[  657.866988] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  657.888506] *** Host State ***
[  657.891878] RIP = 0xffffffff8120262c  RSP = 0xffff880179b57390
[  657.895578]         reason=80000021 qualification=0000000000000000
[  657.898029] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  657.911236] FSBase=00007f88e60be700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  657.919585] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  657.925679] CR0=0000000080050033 CR3=000000018195e000 CR4=00000000001426e0
[  657.939241] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  657.949347] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  657.950469] IDTVectoring: info=00000000 errcode=00000000
[  657.955527] *** Control State ***
[  657.965048] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  657.972289] EntryControls=0000d1ff ExitControls=002fefff
[  657.978040] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  657.985547] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  657.989849] TSC Offset = 0xfffffe9dfca6ca57
[  657.992747] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  657.997322] EPT pointer = 0x00000001cbe5b01e
[  658.003678]         reason=80000021 qualification=0000000000000000
[  658.014399] IDTVectoring: info=00000000 errcode=00000000
[  658.020158] TSC Offset = 0xfffffe9dfbe3a0e2
[  658.024490] EPT pointer = 0x0000000182fa201e
[  658.028715] *** Guest State ***
[  658.032293] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  658.061701] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  658.077917] CR3 = 0x0000000000000000
[  658.084536] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  658.097667] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  658.104029] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  658.110827] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.118929] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.126947] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.135013] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.143153] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.151288] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  658.159452] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  658.167509] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  658.175597] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  658.183730] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  658.191859] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  658.198347] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  658.205943] Interruptibility = 00000008  ActivityState = 00000000
[  658.212335] *** Host State ***
[  658.215637] RIP = 0xffffffff8120262c  RSP = 0xffff88017c1f7390
[  658.222435] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  658.228945] FSBase=00007fafd13a9700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  658.236793] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  658.242799] CR0=0000000080050033 CR3=000000017df5e000 CR4=00000000001426f0
[  658.249882] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  658.256598] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  658.262759] *** Control State ***
[  658.266270] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  658.273017] EntryControls=0000d1ff ExitControls=002fefff
[  658.278586] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  658.285547] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  658.292319] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  658.299009]         reason=80000021 qualification=0000000000000000
[  658.305380] IDTVectoring: info=00000000 errcode=00000000
03:33:32 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r3, 0x40045532, &(0x7f0000000140)=0x3)
getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000180)={<r4=>0x0, 0x7fffffff, 0x1, [0x7f9]}, &(0x7f00000001c0)=0xa)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r3, 0x84, 0x6, &(0x7f00000002c0)={r4, @in={{0x2, 0x4e24, @broadcast}}}, 0x84)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pread64(r1, &(0x7f0000000040)=""/145, 0x91, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:32 executing program 2:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x11, 0x0, 0x1d88, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000100)='fou\x00')
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000226bd7000fcdbdf250100000008000200f5fec0da2d6532e60100000004000500"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r4 = getpgrp(0x0)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000280)="599c9fdc4c32ac7c7bb23ec157f6e1d6ea13572f09cb397cae61a1085ce42a42cdf5e69e0cbdac9853")
sched_setaffinity(r4, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x100000000000000, 0x487, &(0x7f0000000000), &(0x7f00000000c0)=0x30)

03:33:32 executing program 3:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
timer_create(0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, @thr={&(0x7f0000000100)="f9f47b843b933c16d527047046f6445f6dd9fd5867150646cbf52b181aff73f72b7b4f3b", &(0x7f0000000240)="20dfe72beb713980966d5034e3b58bc052"}}, &(0x7f00000001c0))
timer_gettime(0x0, &(0x7f0000000200))
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$KVM_GET_NR_MMU_PAGES(r2, 0xae45, 0x9)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000003c0)='ip6_vti0\x00', 0x10)
r3 = socket$l2tp(0x18, 0x1, 0x1)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000980)={{{@in6=@ipv4={[], [], @multicast2}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@multicast2}, 0x0, @in=@local}}, &(0x7f0000000a80)=0xe8)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000ac0))
setfsuid(r4)
ioctl$UI_SET_MSCBIT(r2, 0x40045568, 0x6)
connect$l2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
stat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
sendmmsg(r3, &(0x7f0000005fc0), 0x400000000000086, 0x0)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000002c0)=<r6=>0x0)
socket$l2tp(0x18, 0x1, 0x1)
sendmsg$unix(r2, &(0x7f0000000940)={&(0x7f0000000400)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000840)=[{&(0x7f00000005c0)="1c9d203fb86b8d880daac5b13cb668c92a34422381666fa1d92817a39769d088e50a3b9085371a19afcf4766fca8dcdda73918a7c7fcf04310bc3e4eb0df13e1b7a9167c0cbfe395c56cc7f25488c40e7b100bec5c76f606ddd98899ec0f089e21001f045a31932806d93f0e9e808fe753d384181d81b114648ef3bed21b27cfa477d6cf6d37c4b769c9dbb054ff62e2c63cbe47b1b0526c609e2102a6ab7af7bf00e91e15aa67d07a782552ab466c3a30bf9331ec", 0xb5}, {&(0x7f0000000680)="ae69020df03722734d39bb42a923423fb33a15b049e1e89137f5232fe95554ea72b4eb435897f40cbe09e4531b58bc484352a581fb46398bc9cc1814e126ce82e252527cc5", 0x45}, {&(0x7f0000000180)="9cf43eedca6d892153d95a5f7bf7ddb0cd3eb2fc017be5", 0x17}, {&(0x7f0000000700)="c8acd699189fd4ebc1dc3d0b25e35bd5178aacec4ce7d9cfc0eb7dfd0b9fdf44a197f438a909de0cb17060b09d8f78b24ab3381bdd732be001ec722975ea60e32a024a1938ac188b26462189d9d0481303162745268dd692c1756e84c6c4808a65bcc8054d50adff23402884069c49ced3f9d5f1e3382c5fec062acd6126222d566602e976991ea26487fd8b5f3a5fff5905436fc33ac27b74d0778e07eeed93cce13b3214cfa2fe41e16ce52ffc33", 0xaf}, {&(0x7f00000007c0)="d598eae2ef8745a766a318bdc4efcd51c71e09ec017eec678e572e5143d9caf189238d2024d808574b46d30b849fa4b6a1da2e65763a0599ab4f77036597de13ce2bcc860ece387e", 0x48}], 0x5, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="20000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="20000000000000000101000002000000", @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0x58, 0x40010}, 0x20000080)
ioctl$KVM_SET_TSS_ADDR(0xffffffffffffffff, 0xae47, 0xd000)

03:33:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f00000002c0)={"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"})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000040)=0x1000, 0x4)

03:33:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
mlock2(&(0x7f000001f000/0x1000)=nil, 0x1000, 0x1)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00000000c0)=ANY=[@ANYRESDEC=r4, @ANYRES16=r0])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:32 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, &(0x7f0000000280), 0x10000030}}], 0x1, 0x0, &(0x7f0000003280)={0x0, 0x1c9c380})
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='pagemap\x00')
preadv(r1, &(0x7f00000017c0), 0x1a4, 0x7ffff000)
ioctl$UI_DEV_CREATE(r1, 0x5501)

[  658.310921] TSC Offset = 0xfffffe9dfca6ca57
[  658.315294] EPT pointer = 0x00000001bc01601e
[  658.427809] Dead loop on virtual device ip6_vti0, fix it urgently!
[  658.455123] *** Guest State ***
[  658.468515] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  658.482479] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  658.515431] CR3 = 0x0000000000000000
[  658.521347] RSP = 0x0000000000000000  RIP = 0x0000000000000000
03:33:32 executing program 2:
r0 = socket$inet(0x2, 0x2000000003, 0x7)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000180)={{{@in=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@multicast2}, 0x0, @in=@remote}}, &(0x7f00000002c0)=0xe8)
recvfrom$packet(r1, &(0x7f00000000c0)=""/78, 0x4e, 0x40000000, &(0x7f0000000300)={0x11, 0x6, r2, 0x1, 0x6, 0x6, @local}, 0x14)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
getsockopt$sock_buf(r0, 0x1, 0x1a, &(0x7f0000000140)=""/1, &(0x7f0000000280))

[  658.527485] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  658.533690] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  658.540579] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  658.548763] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  658.560032] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  658.568212] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  658.576752] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  658.625633] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000015000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="3ed2190f2221b81d010f00d80f01c90f3066b8010000000f01c166b80500000066b9937b00000f01c10f229c66b90d02000066b8e5a7000066ba000000000f30f30fbdef", 0x44}], 0x1, 0x0, &(0x7f0000000100), 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$SG_GET_ACCESS_COUNT(r3, 0x2289, &(0x7f00000000c0))
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000080)=ANY=[@ANYRES32=r6, @ANYRES64=r2, @ANYRES32=r0, @ANYRESDEC=0x0, @ANYRES64=r6, @ANYPTR=&(0x7f0000000500)=ANY=[@ANYRESOCT=r5, @ANYBLOB="c2582b84f9d0dbb1b12f59330e8f860cfb6554953478f624a8a8ac2bbd7cc68640206df9e6bda4dd5af26b457df8a56bba12", @ANYPTR=&(0x7f0000000400)=ANY=[@ANYRESHEX=0x0, @ANYRES16=r4, @ANYPTR, @ANYBLOB="55f1782a6a56098a1dfbd78bafc5498840aea814d5f08edb1a2ec04904471621bcf16299b7b47175aec9649d98c489c46e9a9b6552f3f74c07438498fad434cf0eb0363ba6666a9769c218858a2d60a46e176192b6c6cd237f4bfb33e74c6cf86dd205f90a84c55b5d5366021985913f121b238a530c22f19f237d0eab4e67e0403a4686fb70de3f7b188a34c18d6ba97cda445c3aaea06d26bcb24b1c74b2364b7cd5d05e31e7f42ffdc98ac0550c0c68"], @ANYBLOB="e91c4e5d92eb47f33e85a9efdd29db0eaf34f1ba68ace840fa1082ccc156d9e5558d3001e21baa8da0c31a2725bc4c506a714469ed6789cbeb0f99b7e159d5d1d2ab51d88081b23b9980799a9f24d88729d32b4a1723df982edb3872e162331b4226c60340d21d6765de7fc7a927abc766c2c759aa23b74cd6c52ddc6ce3d0fc3ee567e307d0bfb17e08e33447b459b4f4570b00a4e977b5a59497d1e3e34a2b927fdf62c1c57739abc7a3dc51e076"]])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  658.694085] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  658.746937] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:32 executing program 2:
perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x4, @broadcast, 'bond0\x00'}}, 0xffffffffffffff92)
syz_emit_ethernet(0x14, &(0x7f0000000100)={@random="5c58e606e122", @broadcast, [], {@generic={0x8864, "42a703000000"}}}, &(0x7f0000000140))

[  658.808655] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  658.850993] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  658.895554] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  658.920640] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  658.928334] Interruptibility = 00000000  ActivityState = 00000000
[  658.937406] *** Host State ***
03:33:32 executing program 2:
r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], 0x1001)
r1 = inotify_init1(0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = inotify_init1(0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000))
fcntl$setown(r3, 0x8, 0xffffffffffffffff)
fcntl$getownex(r3, 0x10, &(0x7f000045fff8)={0x0, <r4=>0x0})
ptrace$setopts(0x4206, r4, 0x0, 0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f00000000c0)={0x0, <r5=>0x0})
ptrace(0x4207, r5)
waitid(0x0, 0x0, 0x0, 0x8, 0x0)
r6 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r6, 0x0)
waitid(0x0, 0x0, &(0x7f0000001ff0), 0xa0000003, 0x0)

[  658.942068] RIP = 0xffffffff8120262c  RSP = 0xffff880179b57390
[  658.952852] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  658.968812] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  659.007497] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
03:33:33 executing program 3:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0xa, 0x40122000000003, 0x11)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000400)=@assoc_value={<r2=>0x0, 0x1000}, &(0x7f0000000480)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f00000004c0)={r2}, &(0x7f0000000500)=0x5abc824e2d06a369)
r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000280)={&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff}, 0x0)
set_tid_address(&(0x7f0000000540))
setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f0000000200), 0x2)
sendmsg$kcm(r1, &(0x7f0000003840)={&(0x7f0000000340)=@un=@abs, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000100)="f4001100002b2c25e994efd1000000000009110007000000003a00000000f68ab928abffb7a8d4f32ebdbed828847bbaeb", 0x31}], 0x1}, 0x2000000000000)
fsetxattr$security_smack_transmute(r3, &(0x7f0000000240)='security.SMACK64TRANSMUTE\x00', &(0x7f00000002c0)='TRUE', 0x4, 0x3)
close(r1)
socket$kcm(0x2, 0x0, 0x2)
close(r1)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={"6e72300100"})
write$P9_RXATTRWALK(r0, &(0x7f0000000600)={0xf, 0x1f, 0x2, 0x26d7}, 0xf)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x12)
getpid()
recvmsg(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000580)=@l2, 0x80, &(0x7f0000000a00)=[{&(0x7f0000000800)=""/79, 0x4f}, {&(0x7f0000000880)=""/58, 0x3a}], 0x2, &(0x7f0000000a80)=""/113, 0x71, 0x1}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='rdma.current\x00', 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={r4, 0x0, 0x0}, 0x10)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f00000003c0)={0x878}, 0x4)

[  659.058946] CR0=0000000080050033 CR3=000000017df5e000 CR4=00000000001426f0
[  659.071755] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  659.107324] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  659.134092] *** Control State ***
[  659.144638] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  659.176355] EntryControls=0000d1ff ExitControls=002fefff
[  659.199690] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  659.216603] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  659.249021] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  659.255747]         reason=80000021 qualification=0000000000000000
[  659.278658] IDTVectoring: info=00000000 errcode=00000000
[  659.284265] TSC Offset = 0xfffffe9d48bb5ba6
[  659.289014] EPT pointer = 0x00000001b8e9901e
[  659.348511] *** Guest State ***
[  659.351859] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  659.378488] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  659.387368] CR3 = 0x0000000000000000
[  659.398483] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  659.404515] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  659.411920] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  659.419119] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.427126] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.435451] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.443588] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.451644] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.459696] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.467797] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  659.475875] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.484009] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  659.492084] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  659.500143] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  659.506583] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  659.514115] Interruptibility = 00000000  ActivityState = 00000000
[  659.521000] *** Host State ***
[  659.524227] RIP = 0xffffffff8120262c  RSP = 0xffff88018012f390
[  659.530294] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  659.536761] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  659.544673] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  659.550681] CR0=0000000080050033 CR3=000000017df5e000 CR4=00000000001426f0
[  659.557750] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  659.564515] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  659.570660] *** Control State ***
[  659.574145] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  659.580954] EntryControls=0000d1ff ExitControls=002fefff
[  659.586470] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
03:33:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x5, {0x6, 0xffff, 0x0, 0xfff, 0x3, 0xffffffff}, 0x6}, 0xe)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x23fffe, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4000000004400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(r1, 0x409, 0x6)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000180)=ANY=[@ANYBLOB="0700000000000000000000000000bf80b975aa03f7f65d0faf58000000000000000000000000000000000000"])
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:33 executing program 2:
syz_mount_image$ntfs(&(0x7f00000005c0)='ntfs\x00', &(0x7f0000001b00)='./file1\x00', 0x0, 0x1, &(0x7f0000002c80)=[{&(0x7f0000001b40)="98ae9df3e2a4342ab410a8c12fbc7d06f9f6d60e4b26d53874fe2dcc677f3e7b6f93a1776f0cedbb72b0d4a583d58a99002b19db95827762bafe605a5aff88f0084e73ffc1ac2956775d4add592c6ea54d0cc12d395a8c4d686a2def15bdfe436202acbe613021bc4d48af676d4a8eb4f7a39ff316d9fafcf75329a0f7b01e98637a6016d2ea6923754729bc1491a812e6b072e9247d61ea3824e441adb137506756b0fd5555612af172dea32bcaa29c9214a5489d7f2999eb26e8fb66037ed3f8deaaa3336c5c0f3b1583dd60baf159a5ec502a830f4c0bb6f34a43f250618dfd394801db0100e85dd4c32d26f4ae2343f586b947cd68fec1f8579fa7d2bf3670f9443a917cb25fbd7fc6fc7bc37a5b0e5c0628279277445ac27e8bc10602ec5e0b50c98798a515b1aaa8f4f5fb925199782c473e8b7b7238ecb63ce814f4119da5c73dd661ad2d35979515e3522d9cb0641cb31eb13c31e052859722792615879fb3f9c70f1b907114a6ecbc01d7ef9ddbfb32d042cec5d92baef250f16134f565d0f9251dfd2d1b7e97f58315103a340a5d0d36f8451bf5b6e732e56251e1631ffd6084b491c09822c5fd3403889e9031e45e2b69ffa361007c4b1aeffe000421a84c88bf42e8b402ed0a6a2325c82b478e540d5108ceb5a00735aab4c42d3698e2488ab7a906c43d11dd1d83619a6b9ac58eb9180b44434c4fb1c67a5fe3", 0x200}], 0x820e, 0x0)
setxattr$security_evm(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='security.evm\x00', &(0x7f0000000080)=@sha1={0x1, "9395c66a90dde34813aa62f43fb40900f0c8feea"}, 0x15, 0x2)
setxattr$security_evm(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='security.evm\x00', &(0x7f0000000140)=@md5={0x1, "8c5b36f2f4c2fb0f22c2d967aea36ce4"}, 0x11, 0x3)

03:33:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000040)=<r4=>0x0)
ptrace$getregs(0xe, r4, 0x7fffffff, &(0x7f00000002c0)=""/204)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x10000, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
prlimit64(r4, 0xd, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:33 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r1, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e)
r2 = socket$l2tp(0x18, 0x1, 0x1)
connect$l2tp(r2, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}, 0x4, 0x8}}, 0x2e)
ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000200)="561f1cdc")
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x84081, 0x0)
bind$nfc_llcp(r3, &(0x7f0000000100)={0x27, 0x1, 0x2, 0x7, 0xfffffffffffffffb, 0x8, "ca2baf2e7297ef428b1ac9f8722e94b016301f31170ed2f5b0b63093f38af0776353424d31985fb9bf1cb25780426584a8ae5993a497429f36d2288ea3bd5f", 0x15}, 0x60)

03:33:33 executing program 3:
pipe2(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000280))
r2 = socket(0x10, 0x20000000000003, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r3=>0x0})
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000140)=0x1, 0x4)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x40000, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000580)={<r6=>0x0, 0x6b, "f86f85befec7d1f0aaf9c8508e83d70ee30207399c693f48fe15150cf375fce3569ede2ee80fe09763f1048a0280f09c33ffdef51e8a123c1fab1793203f757220ab3d41b8c50569984ffeff9faf1029f49896e0ac3d105bcdcf053d8238f852ff0afafc270ee73092bdd4"}, &(0x7f0000000600)=0x73)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000640)={r6, 0xf1, "ebb90925766f5fd7f7a31a2af1b5fa14cd246b3a4a970021cbf33886bc9f6ff99a606e275cbf15a6e0c3154d7e00ec49b806d581afd4845efb081962ce89a471a352394c1cdd12373dbab1991d799404480be61abc47d1bb751636b6a9499ab09519ed2b9c1164e04745b2a7bab21383070f68cd5ead66b27422793791f35eec8bde7772be3cf56aa91716f6f2869217d679b44ecc0caeae62efe1f6497c1eeaecf525f1969bb62437dc83d0566f56a432bf5e693d0c2b0a45b9759ccf322bab4189a673061ff79d0ffbec9bfe27ac38ee6bfeb577a222063f7a47aed2aae24694fad095a5ee9e030cd5c64a5c6a45ed43"}, &(0x7f0000000740)=0xf9)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f0000000100)={'L-', 0x7}, 0x28, 0x3)
recvmmsg(r2, &(0x7f0000001cc0), 0x4000000000002c0, 0x10102, &(0x7f0000001540)={r3})
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000380)=<r7=>0x0)
sendmsg$nl_generic(r2, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)={0xb8, 0x28, 0x304, 0x70bd26, 0x25dfdbfc, {0x1b}, [@typed={0x8, 0x48, @pid=r7}, @generic="9815", @generic="5e08ba7f7bc713e73d1d1466508369f434407cd0f0abd3ad6670af6d4a9b9e874ed5be8ee79e25a51da789556b2d771e40748bbc3a07b37eb7594672f599420476f13f6400898e4d0f53a4a48d0db2a457ab8014ca7fe2f97785e317d8ca3f9390e167e566cf88f56902b96d49014f45b6bab4300c278f806ced4479be4863e0796217683083bbecf79c7981de73c44ff7d020a9eeda1b"]}, 0xb8}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_generic(r2, &(0x7f00000000c0)={&(0x7f0000000180), 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001a000102000000000070b04ad7c3da5018febf8b3bdae476fc57ee53c9cf37982ce86a70af1ac767c6673ee36abb42625e208eb2483595ee46cd817f40517daf761b24"], 0x14}}, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f00000002c0)={0x2, "99ac"}, 0x3)

[  659.593498] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  659.600247] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  659.606898]         reason=80000021 qualification=0000000000000000
[  659.613328] IDTVectoring: info=00000000 errcode=00000000
[  659.618867] TSC Offset = 0xfffffe9d48bb5ba6
[  659.623222] EPT pointer = 0x00000001b8e9901e
[  659.755200] *** Guest State ***
[  659.759010] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  659.768098] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  659.777546] CR3 = 0x0000000000000000
[  659.794865] RSP = 0x0000000000000000  RIP = 0x0000000000000000
03:33:33 executing program 2:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video35\x00', 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000002c0)={0x0, 0x100000001, 0x4, {0x1, @vbi={0x0, 0x0, 0x0, 0x0, [0x0, 0x96000]}}})
r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x1, 0x240)
setsockopt$inet6_dccp_int(r1, 0x21, 0xf, &(0x7f0000000100)=0x6, 0x4)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$VT_RELDISP(r0, 0x5605)
read$FUSE(r1, &(0x7f00000003c0), 0x1000)
ioctl$VIDIOC_DBG_S_REGISTER(r1, 0x4038564f, &(0x7f0000000140)={{0x2, @name="26f7de4dd9fe9d8937940de76a644c1e36c36bd3a25fb40c30348fa6dd4f11d5"}, 0x8, 0x4, 0x5})
ioctl$VIDIOC_STREAMON(r0, 0x40045612, &(0x7f0000000080)=0x1)
close(r0)

03:33:33 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0xc, 0xffffffffffffffff, 0x0)
r0 = socket(0x1e, 0x805, 0x0)
r1 = socket(0x1e, 0x5, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.net/syz0\x00', 0x200002, 0x0)
listen(r1, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000000)=@req3={0x80000000}, 0x1c)
r2 = semget$private(0x0, 0x1, 0x40)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000480)={<r3=>0x0, 0xe7, "596ca000df1167cd3bc985f686e5209006b139393720ee1094e1d5c49a8dd64d6f004aba7f3e6c126be3518e0890ed52c74430bc2fe67b5047f429615216f8b0888588c97a2b0db2d1f9791530197195d830a85f07a33a9f7bbd213994a5a0143a057ba094aec50667c9229c2adafd45d2c5457f56f88f445cea5b8cdce259488840e14fb2425621eb7203d684cbb27f121e1bbbef22f7d7bc7fd69b3b94edb0c2d7b93a59af928ec250f3b3dcccca0a92150e409f48513e471cc76e8f8694be61f26e9576337c3db787915c0f3d5db1b191040daf5da35c50345a773be00fd3636baf6523c9aa"}, &(0x7f0000000580)=0xef)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000640)={r3, 0x14, 0x3, 0x4eb}, &(0x7f0000000680)=0x10)
semctl$SETVAL(r2, 0x3, 0x10, &(0x7f0000000400)=0x4)
memfd_create(&(0x7f00000003c0)='systemem1ppp0system\x00', 0x0)
accept4$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0}, &(0x7f0000000180)=0x9, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000, 0x0, 0x2}, 0xfeda)
r5 = syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0x8, 0x20000)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xd, 0x7, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3}, [@map={0x18, 0x9, 0x1, 0x0, r5}, @map={0x18, 0x0, 0x1, 0x0, r6}]}, &(0x7f0000000280)='GPL\x00', 0x8, 0x4, &(0x7f00000002c0)=""/4, 0x41000, 0x1, [], r4, 0x7}, 0x48)
sendmsg(r0, &(0x7f0000000140)={&(0x7f0000000080)=@generic={0x10000000001e, "0200000900000000000000000226cc573c080000003724c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f986ff01000300000004af50d50700000000000000e3ad316a1983000000001d00e0dfcb24281e27800000100076c3979ac40000bd15020078a1dfd300881a8365b1b16d7436"}, 0x80, &(0x7f0000000700), 0x0, &(0x7f00000008c0)=ANY=[]}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000440)={@mcast2, 0x7fff, 0x1, 0x3, 0x8, 0xfffffffffffffffb, 0x1000, 0x40}, 0x20)
getsockopt$inet_sctp_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f00000005c0), &(0x7f0000000600)=0x4)

[  659.806892] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  659.820088] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  659.827031] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.827052] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.827070] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:33 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/current\x00', 0x2, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  659.882967] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.918905] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  659.962052] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  659.987665] GDTR:                           limit=0x00000002, base=0x0000000000000000
03:33:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x208040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0xfff, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000080)=0x4, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  660.006105] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.022332] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  660.061549] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  660.094475] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  660.101265] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
03:33:34 executing program 3:
pipe2(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x84000)
ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000000280))
r2 = socket(0x10, 0x20000000000003, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r3=>0x0})
r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f0000000140)=0x1, 0x4)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}})
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x40000, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000580)={<r6=>0x0, 0x6b, "f86f85befec7d1f0aaf9c8508e83d70ee30207399c693f48fe15150cf375fce3569ede2ee80fe09763f1048a0280f09c33ffdef51e8a123c1fab1793203f757220ab3d41b8c50569984ffeff9faf1029f49896e0ac3d105bcdcf053d8238f852ff0afafc270ee73092bdd4"}, &(0x7f0000000600)=0x73)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000640)={r6, 0xf1, "ebb90925766f5fd7f7a31a2af1b5fa14cd246b3a4a970021cbf33886bc9f6ff99a606e275cbf15a6e0c3154d7e00ec49b806d581afd4845efb081962ce89a471a352394c1cdd12373dbab1991d799404480be61abc47d1bb751636b6a9499ab09519ed2b9c1164e04745b2a7bab21383070f68cd5ead66b27422793791f35eec8bde7772be3cf56aa91716f6f2869217d679b44ecc0caeae62efe1f6497c1eeaecf525f1969bb62437dc83d0566f56a432bf5e693d0c2b0a45b9759ccf322bab4189a673061ff79d0ffbec9bfe27ac38ee6bfeb577a222063f7a47aed2aae24694fad095a5ee9e030cd5c64a5c6a45ed43"}, &(0x7f0000000740)=0xf9)
fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000000040)='trusted.overlay.nlink\x00', &(0x7f0000000100)={'L-', 0x7}, 0x28, 0x3)
recvmmsg(r2, &(0x7f0000001cc0), 0x4000000000002c0, 0x10102, &(0x7f0000001540)={r3})
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000380)=<r7=>0x0)
sendmsg$nl_generic(r2, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000480)={0xb8, 0x28, 0x304, 0x70bd26, 0x25dfdbfc, {0x1b}, [@typed={0x8, 0x48, @pid=r7}, @generic="9815", @generic="5e08ba7f7bc713e73d1d1466508369f434407cd0f0abd3ad6670af6d4a9b9e874ed5be8ee79e25a51da789556b2d771e40748bbc3a07b37eb7594672f599420476f13f6400898e4d0f53a4a48d0db2a457ab8014ca7fe2f97785e317d8ca3f9390e167e566cf88f56902b96d49014f45b6bab4300c278f806ced4479be4863e0796217683083bbecf79c7981de73c44ff7d020a9eeda1b"]}, 0xb8}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_generic(r2, &(0x7f00000000c0)={&(0x7f0000000180), 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001a000102000000000070b04ad7c3da5018febf8b3bdae476fc57ee53c9cf37982ce86a70af1ac767c6673ee36abb42625e208eb2483595ee46cd817f40517daf761b24"], 0x14}}, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f00000002c0)={0x2, "99ac"}, 0x3)

03:33:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)
faccessat(r3, &(0x7f0000000080)='./file0\x00', 0x80, 0xa00)

[  660.109024] Interruptibility = 00000000  ActivityState = 00000000
[  660.115500] *** Host State ***
[  660.119062] RIP = 0xffffffff8120262c  RSP = 0xffff8801b3acf390
[  660.125314] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  660.132048] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
03:33:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x0, 0x0)
getsockopt$inet6_opts(r3, 0x29, 0x37, &(0x7f00000002c0)=""/225, &(0x7f00000003c0)=0xe1)
r4 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000400)={{0x10000, 0x6000, 0x0, 0x8, 0x650c, 0x401, 0x1f, 0x3ff, 0x6, 0xa889, 0x2, 0x8}, {0x11000, 0x14000, 0x4, 0x400000, 0x10001, 0x3, 0x4, 0xf8a5, 0x4, 0x0, 0x4, 0x2}, {0x6000, 0x0, 0x10, 0x2, 0x4, 0x5e, 0x5, 0x10000, 0x0, 0x3, 0xffffffff, 0x1000}, {0x5000, 0x115002, 0xe, 0x80, 0x7fff, 0x9, 0x4800000000000, 0x6, 0x5, 0x2, 0x6, 0x9384}, {0xd000, 0x4, 0xd, 0x1df, 0x3ff, 0x7fffffff, 0x4, 0x8f, 0xac7, 0x2, 0x0, 0x75ed}, {0x7000, 0xf000, 0xd, 0x0, 0x4cd, 0xffffffff, 0x1cc3, 0x7307, 0x81, 0x7, 0xa6, 0x101}, {0x1f000, 0x10000, 0xf, 0xdc, 0x6, 0x1, 0x0, 0x5, 0x7, 0x0, 0x50e, 0xa3}, {0x2000, 0x2, 0xe, 0x8001, 0x9, 0x0, 0x4, 0x20, 0x80000000, 0x9, 0xfffffffffffff001, 0x2}, {0x4, 0x10f001}, {0x10000, 0x3002}, 0x4, 0x0, 0x0, 0x20400, 0x6, 0x1000, 0x0, [0x800, 0x80000000, 0x81, 0x7f]})
clone(0x28020100, &(0x7f0000000040)='\vmq', &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)="b7e827db742e084ba45b013b6c1e59811a18dbd72571775a63238ad9767db0cd4f57c7a5f564415cc5a8fe6b850f3c247033b37326dfdedc0fb89edc7c8e58fbbe61f232ff5990306b8b2fa7aeec53b811a7b987a708b7d67a35ed35b92e00f70a60308dc51764ffa51414fc0744320c20a412f30603391ecae0d4cf785e6a4bfb970221a4b0a18ba86a9b92b33d093cf19f9b6650057a0e41028a80")
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  660.172437] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  660.195688] CR0=0000000080050033 CR3=00000001bf8c9000 CR4=00000000001426e0
[  660.212051] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  660.233696] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  660.248599] *** Control State ***
[  660.262894] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  660.264208] *** Guest State ***
[  660.292305] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  660.304880] *** Guest State ***
[  660.306609] EntryControls=0000d1ff ExitControls=002fefff
[  660.308694] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  660.321626] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  660.322973] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  660.330046] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  660.338808] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  660.345688] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  660.354437] CR3 = 0x0000000000000000
[  660.361251]         reason=80000021 qualification=0000000000000000
[  660.365249] CR3 = 0x0000000000000000
[  660.375339] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  660.381622] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  660.387967] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  660.394282] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  660.400607] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  660.407530] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  660.410384] IDTVectoring: info=00000000 errcode=00000000
[  660.414503] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.427950] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.437352] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.445637] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.450506] TSC Offset = 0xfffffe9c94d17ce6
[  660.453928] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.459664] EPT pointer = 0x00000001b3ece01e
[  660.466289] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.478917] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:34 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000100), 0xffffffffffffffff)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x3b, 0x7, @thr={&(0x7f0000000140), &(0x7f0000000240)}}, &(0x7f0000000000))
r1 = getpid()
eventfd2(0x0, 0x0)
sched_setscheduler(r1, 0x5, &(0x7f0000000040))
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x13, 0xfffffffffffffffe, 0x111)
getpgrp(0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r1, 0x6, &(0x7f0000000140)=""/154)

[  660.492238] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.501630] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.512566] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.512605] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.524259] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.537054] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  660.545578] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.545783] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  660.553990] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  660.570326] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  660.570893] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.579232] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  660.586652] *** Guest State ***
[  660.593333] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  660.596410] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  660.612343] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  660.621437] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  660.621753] Interruptibility = 00000000  ActivityState = 00000000
[  660.629664] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  660.653964] *** Host State ***
[  660.658608] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  660.662962] RIP = 0xffffffff8120262c  RSP = 0xffff8801b18ef390
[  660.668579] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  660.691081] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  660.699839] CR3 = 0x0000000000000000
[  660.704602] Interruptibility = 00000000  ActivityState = 00000000
[  660.712857] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  660.720452] *** Host State ***
[  660.723882] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  660.726203] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  660.730349] RIP = 0xffffffff8120262c  RSP = 0xffff8801d29bf390
[  660.749058] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  660.761679] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  660.762348] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  660.768238] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.788060] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  660.805065] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  660.808911] CR0=0000000080050033 CR3=000000017aab3000 CR4=00000000001426f0
[  660.811238] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.818760] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  660.826143] CR0=0000000080050033 CR3=00000001b9bae000 CR4=00000000001426f0
[  660.841807] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.846510] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  660.849970] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  660.856536] *** Control State ***
[  660.862889] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.866687] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  660.874344] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  660.881175] EntryControls=0000d1ff ExitControls=002fefff
[  660.887147] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.892809] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  660.900645] *** Control State ***
[  660.907627] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  660.911150] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  660.917876] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  660.924661] EntryControls=0000d1ff ExitControls=002fefff
[  660.933678] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  660.938118] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  660.944875]         reason=80000021 qualification=0000000000000000
[  660.951723] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  660.958055] IDTVectoring: info=00000000 errcode=00000000
[  660.964740] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  660.970643] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  660.984899]         reason=80000021 qualification=0000000000000000
[  660.985095] TSC Offset = 0xfffffe9c54e45c29
[  660.991337] IDTVectoring: info=00000000 errcode=00000000
[  660.996144] EPT pointer = 0x0000000126e2501e
[  661.003582] TSC Offset = 0xfffffe9c4d800cc6
[  661.008726] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.010662] EPT pointer = 0x00000001c0ac901e
[  661.017847] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  661.017873] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  661.017884] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  661.017906] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  661.017917] Interruptibility = 00000000  ActivityState = 00000000
[  661.059056] *** Host State ***
[  661.062269] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3737390
[  661.068248] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  661.068262] FSBase=00007fecb7d54700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  661.068272] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  661.068286] CR0=0000000080050033 CR3=00000001bf8c9000 CR4=00000000001426f0
[  661.082966] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  661.102610] *** Guest State ***
[  661.105893] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  661.114747] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  661.114753] *** Control State ***
[  661.114762] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  661.114770] EntryControls=0000d1ff ExitControls=002fefff
[  661.114782] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  661.114791] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  661.114799] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  661.114807]         reason=80000021 qualification=0000000000000000
[  661.124090] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  661.131289] CR3 = 0x0000000000000000
[  661.143798] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  661.150325] IDTVectoring: info=00000000 errcode=00000000
[  661.156902] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  661.172729] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  661.180972] TSC Offset = 0xfffffe9c94d17ce6
[  661.191259] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.202583] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.205364] EPT pointer = 0x00000001b3ece01e
[  661.212671] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.236303] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.244788] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
r3 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000ff2000/0xe000)=nil, 0xe000, 0x0, r3)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x4000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:35 executing program 3:
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
bind$inet6(0xffffffffffffffff, &(0x7f0000000000), 0x1c)
socket$inet_dccp(0x2, 0x6, 0x0)
clone(0x20000a102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000002c0)=ANY=[@ANYRES32=<r2=>0x0, @ANYBLOB="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"], &(0x7f0000000200)=0x104)
flistxattr(r0, &(0x7f00000000c0)=""/244, 0xf4)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000240)={r2, 0x3}, &(0x7f0000000280)=0x8)
r3 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000012000)={0x8, 0x0, &(0x7f0000005fd4)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000008fd0)={0x3, 0x0, &(0x7f000000dff8)=ANY=[@ANYBLOB="fe1052"], 0x0, 0x0, 0x0})
dup(r3)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @rand_addr}, 0x10)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000040)={0x4, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0f630c40"], 0x0, 0x0, 0x0})

03:33:35 executing program 0:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f00000002c0)={0x0, 0x1, 0xfffffffffffffff9})
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000006c0)=0x200, 0x20)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000000c0))
bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4)
recvmsg(r1, &(0x7f00000005c0)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0xd400}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000003fe8))
socket$inet6_sctp(0xa, 0x0, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = getpgid(0xffffffffffffffff)
move_pages(r2, 0x0, &(0x7f0000000140), &(0x7f0000000580)=[0x4000000000000000], &(0x7f0000000600)=[0x0, 0x0], 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0xfffffe4f)
write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd)

03:33:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x87b, 0x309240)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r4, 0x894b, &(0x7f00000001c0))
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000080)="0f09c4e1d1558c17c3819f9d670fc75b17660f38804cc4cf0f01bbc25f5198b9840000c0b804000000ba000000000f300f47660f0f005d00670f01cff4", 0x3d}], 0xaaaaaaaaaaaade3, 0x0, 0x0, 0x1ec)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000180)={0x5})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r2, 0x0)
pipe(&(0x7f0000000040)={<r5=>0xffffffffffffffff})
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r5, 0x80045530, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$md(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/md0\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_CLOSE(0xffffffffffffffff, 0x40086409, 0x0)
getsockopt$EBT_SO_GET_INFO(r3, 0x0, 0x80, &(0x7f00000002c0)={'broute\x00'}, &(0x7f0000000340)=0x78)

03:33:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
exit_group(0xfffffffffffffffb)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x80001, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x4d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod(&(0x7f00000002c0)='./file0\x00', 0x103f, 0x0)
socket$unix(0x1, 0x1, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000200), &(0x7f00000000c0)=0x13)
getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000480)={0x0, 0xbb17, 0xffffffffffff0000, 0xd5}, &(0x7f0000000540)=0x10)
r5 = gettid()
pipe(&(0x7f0000000300)={<r6=>0xffffffffffffffff})
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r6, 0x6, 0x21, &(0x7f0000000340)="d852487775afda99eaa257ec9435646f", 0x10)
timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc))
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000240), 0xffffffffffffffff)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), &(0x7f0000775000))
process_vm_readv(r5, &(0x7f0000000640)=[{&(0x7f0000000580)=""/143, 0x8f}], 0x354, &(0x7f0000001540)=[{&(0x7f0000001400)=""/90, 0x5a}], 0x1, 0x0)
tkill(r5, 0x1000000000014)
clock_gettime(0x0, &(0x7f00000007c0))
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000700), &(0x7f0000000740)=0xc)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000100)="66b91000004066b80000000066ba000000000f30baa000eddb8f05000f89ae6a660f3a22efa80f09f00fc709f20f1ab60d0066b93608000066b80000000066ba008000000f3066b9800000c00f326635000800000f30", 0x56}], 0x1, 0x0, &(0x7f0000000280), 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
r7 = add_key(&(0x7f0000000080)='.request_key_auth\x00', &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r7, 0x8)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000040))

[  661.253640] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.264739] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  661.274451] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.288618] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  661.317099] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  661.320141] binder: 22729:22737 unknown command 5378302
[  661.357822] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  661.369949] binder: 22729:22738 BC_CLEAR_DEATH_NOTIFICATION invalid ref 0
[  661.392237] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
03:33:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
set_mempolicy(0x4000, &(0x7f0000000040)=0xf2f, 0x9)
syz_open_dev$vcsn(0x0, 0x1, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000140)={0x3, &(0x7f0000000100)=[{0x1, 0x8001, 0x832, 0x4}, {0x9, 0x4, 0x401}, {0x0, 0x1f, 0x7f, 0x7ff}]})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  661.414709] *** Guest State ***
[  661.427309] binder: 22729:22737 ioctl c0306201 20008fd0 returned -22
[  661.431039] Interruptibility = 00000000  ActivityState = 00000000
[  661.451085] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  661.455246] *** Host State ***
03:33:35 executing program 3:
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='load default user:{ '], 0x1, 0x0)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0x1f1, 0xfffffffffffffffe)
r1 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000200)={0x2, {{0xa, 0x4e22, 0xffff, @remote, 0x3}}}, 0x88)
socket$l2tp(0x18, 0x1, 0x1)
add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r0)
request_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='encrypted\x00', r0)

[  661.489195] RIP = 0xffffffff8120262c  RSP = 0xffff8801b43c7390
[  661.495427] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  661.534385] FSBase=00007f88e607c700 GSBase=ffff8801daf00000 TRBase=fffffe0000003000
[  661.558663] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  661.567849] CR3 = 0x0000000000000000
[  661.569224] encrypted_key: hex blob is missing
[  661.591493] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  661.597627] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  661.604096] CR0=0000000080050033 CR3=000000017aab3000 CR4=00000000001426e0
[  661.619917] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  661.626163] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  661.629775] encrypted_key: hex blob is missing
[  661.633583] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  661.645530] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  661.651962] *** Control State ***
[  661.655617] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.684875] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  661.694522] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.703057] EntryControls=0000d1ff ExitControls=002fefff
03:33:35 executing program 2:
openat$ptmx(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/ptmx\x00', 0xfffffffffffffffc, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f00000004c0)='./file0\x00', 0x0)
r1 = getpgrp(0xffffffffffffffff)
setpriority(0x1, r1, 0x7)
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x0, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000200)='/dev/full\x00', 0x145000, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x4)
mount(&(0x7f0000000300)=@loop={'/dev/loop', 0xffffffffffffffff, 0xfffffffe}, &(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0)='devpts\x00', 0x0, 0x0)
getsockopt$inet_udp_int(r2, 0x11, 0x237d9beab2e4656e, &(0x7f0000000100), &(0x7f0000000140)=0x4)
bind$llc(r2, &(0x7f0000000280)={0x1a, 0x0, 0x80000000, 0x0, 0x1, 0x1, @local}, 0x10)

[  661.728709] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  661.739272] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.756818] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  661.769644] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
io_setup(0x40, &(0x7f0000000040))
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r3, 0x84, 0x6c, &(0x7f0000000540)=ANY=[@ANYRES32=<r4=>0x0, @ANYBLOB="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"], &(0x7f0000000140)=0x91)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f0000000180)={r4}, 0x8)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  661.799804] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.812572] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.832314] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  661.854039] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  661.886320]         reason=80000021 qualification=0000000000000000
[  661.893417] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  661.903826] IDTVectoring: info=00000000 errcode=00000000
[  661.909492] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  661.917745] TSC Offset = 0xfffffe9c54e45c29
[  661.924910] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  661.927228] *** Guest State ***
[  661.933087] EPT pointer = 0x0000000126e2501e
[  661.938890] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  661.940816] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  661.953414] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  661.965204] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  661.966756] CR3 = 0x0000000000000000
[  661.978357] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  661.984735] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  661.991151] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  661.992152] Interruptibility = 00000000  ActivityState = 00000000
[  661.997943] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.012515] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.020908] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.029273] *** Host State ***
[  662.029292] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.042183] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
setsockopt$bt_BT_RCVMTU(r3, 0x112, 0xd, &(0x7f0000000080)=0x800000, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$int_in(r2, 0x5473, &(0x7f00000000c0)=0x7)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:36 executing program 3:
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
setxattr(&(0x7f0000000140)='./control\x00', &(0x7f0000000180)=@random={'user.', 'vboxnet0\x00'}, &(0x7f00000001c0)='/system\x00', 0x8, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0}, &(0x7f0000000240)=0x14)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x50, r0, 0x0)
connect(r0, &(0x7f0000000280)=@xdp={0x2c, 0x2, r1, 0x1e}, 0x80)
mkdirat(r0, &(0x7f0000000040)='./control\x00', 0x0)
r2 = openat(r0, &(0x7f0000000080)='./control\x00', 0x0, 0x0)
removexattr(&(0x7f00000000c0)='./control\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="f4ba22d5000000009dd05851bfe4e3df5ec353f77562de326258844d21f4940000"])
ioctl$FICLONE(r2, 0x40049409, r0)

03:33:36 executing program 0:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x0, 0x0)
write$UHID_GET_REPORT_REPLY(0xffffffffffffffff, &(0x7f0000000100), 0xa)
r1 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x0, 0x80)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000003c0))
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000180))
ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000280))
ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000280)={0x0, 0x0, 0x0, 0xac})
ioctl$DRM_IOCTL_AGP_UNBIND(r1, 0x40106437, &(0x7f0000000640)={0x0, 0x7})
request_key(&(0x7f0000000300)='ceph\x00', &(0x7f0000000340)={'syz'}, &(0x7f0000000380)='/dev/nbd#\x00', 0xffffffffffffffff)
getsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f00000002c0), &(0x7f00000004c0)=0x4)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0x40a85323, &(0x7f0000000540)={{}, 'port0\x00', 0x0, 0x200000000000000, 0xfffffffffffffffd, 0x0, 0x8, 0x7fff, 0xffff})
r2 = openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000500)={0x10000009, 0xffffffffffffffff, 0x0, <r3=>0xffffffffffffffff})
mmap(&(0x7f0000bfe000/0x400000)=nil, 0x400000, 0x0, 0x811, r3, 0x4000000)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200), 0x0, 0x4}}, 0x20)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[@ANYBLOB="170000000700000a002f6465762f6e62642300000000003e7be0c7d5007a626bdbcfa193f5e614ef0133bcd2422c89f2664ef187df556f58526d8f8e79c1"], 0x17)

[  662.046058] RIP = 0xffffffff8120262c  RSP = 0xffff8801b1f27390
[  662.051397] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.056269] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  662.064469] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  662.084134] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.093494] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  662.105121] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  662.122250] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  662.135013] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  662.158775] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  662.159788] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  662.173000] QAT: Invalid ioctl
[  662.193041] Interruptibility = 00000000  ActivityState = 00000000
[  662.195235] CR0=0000000080050033 CR3=00000001bf8c9000 CR4=00000000001426e0
[  662.218921] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  662.222337] *** Host State ***
[  662.246236] RIP = 0xffffffff8120262c  RSP = 0xffff8801b18ef390
[  662.270826] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  662.272615] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  662.277459] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  662.290725] *** Control State ***
[  662.293336] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  662.301455] CR0=0000000080050033 CR3=00000001d86d8000 CR4=00000000001426f0
[  662.308556] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  662.308564] EntryControls=0000d1ff ExitControls=002fefff
[  662.308578] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  662.318179] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  662.321650] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  662.328364] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  662.334784] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  662.342253] QAT: Invalid ioctl
[  662.347968]         reason=80000021 qualification=0000000000000000
[  662.363817] IDTVectoring: info=00000000 errcode=00000000
[  662.363901] *** Control State ***
[  662.369438] TSC Offset = 0xfffffe9bb5fbc42d
[  662.377229] EPT pointer = 0x0000000184c1501e
[  662.388864] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  662.398350] EntryControls=0000d1ff ExitControls=002fefff
03:33:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="000000001533e9ae413c23bf8ac03eff828bb9ae288bead7cafcd2b8bd05552d0f6fc196ba8903471726cf17b657c6017ba3550e7cd81e7c9421b3c3b0edf9f03b7e0a14be4c376358589e38057707bcdf14ecb153fb2ba6c008bb4f050000000000000085e9215010425c91449fc37ac3f61b1605d07b1f08e444cd00175c682f951e9342857d334268484bb8af9ad922c73819dcc7293c24675e616e85e79765b8cdfac3449084c6300957fafb9566aaacaaad329702c6db0e3fffcbd6f535cfb354e907ef063ac9965b11e22d5d37484b0941e11e71916a579a469a2cae1e0deb20159653d52e647e44f5e44763bc9de2e27d4e508a0ac05202bce55fdef0f538748d1951ac2ac8d6a90972ebb4f933d3f84b62e0cd600ba98bec1634bf8ef8c88c94270f6d63e76107414bad8bc1302805a76337838b27df6d0127f83245d81df8d54c97bf5e73a7ade75a78300c92dfe76797db551616b4f8805dca57507fc580a1aef14f1cf0141a5fa14a36f60164bee79e3ddab7dad1d0f3f6838cb760633b183591edd3075e391129a35c087980d227b7d6944a23acc5e87b02c6859b15ed75e590dd26c72d03d2078de16caf425cde26ea7978a1e14425881daf0aea3bcdc72600"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:36 executing program 2:
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x8002, 0x0)
r0 = syz_open_dev$usb(&(0x7f0000000200)='/dev/bus/usb/00#/00#\x00', 0x48b, 0x800)
r1 = syz_open_dev$usbmon(&(0x7f0000000380)='/dev/usbmon#\x00', 0x7, 0x410000)
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000000)={<r2=>0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000040)={<r3=>r2, 0x80000})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000001640)={r3, 0x7fffe, <r4=>r0})
flock(r4, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_RES_CTX(r1, 0xc0106426, &(0x7f0000001500)={0x1, &(0x7f0000000480)=[{<r5=>0x0}]})
ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f0000002d80)={r5, 0x4, &(0x7f0000001b00)=[0x8, 0x101, 0x0, 0x10000], &(0x7f0000002cc0)=[0x5, 0x100000000, 0x6, 0xffff, 0x8000, 0xf8d, 0x80000001, 0x0], 0x0, 0x0, 0x23b, 0x0, &(0x7f0000002d40)=[0xb8, 0x0, 0x20, 0x401, 0xc54, 0x1, 0x5]})
mkdir(&(0x7f00000004c0)='./file0\x00', 0x0)
mount(&(0x7f0000001540)=ANY=[@ANYBLOB="4b4df27efb40e9d0a562a7a1b3c8edca1cf9d77c7e712a23594d02e55d59bab0c33c5310bed0c93acb781e937032d17bde165fce0a4633df4b89d5dcde193f65ab4ec39d449b5e4c520524467e1872b2e0ddfc3e31ad5b8089a34b660557d6547820652f3fb0568a0efe53b5e1ba35"], 0x0, &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r6 = msgget$private(0x0, 0x80000000041)
msgctl$IPC_INFO(r6, 0x3, &(0x7f0000001680)=""/74)
umount2(&(0x7f00000001c0)='./file0\x00', 0x0)
getrusage(0x1, &(0x7f0000001800))
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, &(0x7f0000000280))
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000240)='./file0\x00', &(0x7f0000000500)={0xf68, 0xfffffffffffffff9, "93998d74b6e744d55baef66dea0d5d91160bb2ae1f23d4f9ded07554f701fccc94d82a4dcb3c985dc39a6456efda58b77828e14afa6dddeca70829943d594ad5f2de79e0e0adcd31a22c8bcd8c540c6aaa6e482265466856d184a7a2dc6db95b6255f54b62efd53649009b71280dcebae969f194b4c3a928fd0e926d6ab8775cf8e178c1d069f97392749828a4abe71f8fe39087eafbcf440f97e53e05b4d6a80660ee0d272a4506750b8f2b32866e294b9af771c23046f08b14d951890375c7c70a42815f1bcc9784c9e950aceee04ada7260a16a0d80ecf0cb33b140e82960e36da380a1277025f8b1b6edf987fe127ba788ba7a6e4804c5672b2729a8423c14c9d1b8f1d35522a33d4a5ee0e7476218bdd625240f7193862b776c0027b892a5fecbf8a32684957520650a8cfae92caecd2086d427fa9b653d4b29dd94b3b4802dd4e5c6789e54063cd8c64ecf0021a0be38bf91143b592151446b537444b8f5c6f4d6577550955f6ce1084dcc19ae8179c1d33050cb48bf7855f80d0b747b503cab809f59c9db8308c8f0f32d9bf8464898f8e274e5b3637c8a99ad7769243d4cdc615b3aad7d1d29673d2399ac4a4a255b58982851eda11a3590dd515db77d9195a5f1f516be4c9e4865a4ed64af09065825f28f31ce58d0d530de4e9855eb89131833d77dde5843b5c3915783eb55241c78955e98f4f93402d2c5f633ec0e8715a0ffadadd6c63aef428c7bbc1e04d4338e4e3db8e06400000c712170b18f82cae4a9d43c468f301d60b3cbe30540838267ccd51496e4c20008f5c99816d074d08263c83380100401cbd53ec0a7f6b01bbead824b81101f5ccaa1323c94ba2e32eea6d6ea970817bf2f78b0065bc3a87513f92c6f2f65d5c0d80a4a99ae87abc78c10c9ad8ee223cf45d265c2eca43287a6ee7c4671e4ad9c05493d028dd7c02878a6afa688dfee4a17eeb9e11493866e42a8c4917e02c4cb44aaddf50ea04070bd476d5e9aed3c8b5d9eac0b46206e254a699b1e14ccdf0bb31d1b495c9082c8288eeb03c343f1f979dcc56d27397c11fe13031c8d763d82bb786700894b433243a2db650d008860355933207e8706f9d8d0459d39eba08c794502438329465692a91bd53caa4d50adfa526b4a23ef2334f22ac12c12c2e15d48dd2bc672e404238e3cfa0c479aaffa8ff4dc14be592e4bf0abccf9e73b2b2a73177ad570c8690d9102a5eebf5b7e3db2e8945551915357fe176971c27f84c0563142ab598fa018397ec1e54fcbdf4cd3f377487ca8329bb40a6413cc2e4dacd9861a421a78174e1e8cd04caebc73ebd44a5fa34b107fba8de209c7d9235a9d8b3271d7da875cc6b7f859f1ebe3cd1911c48c76876113a00d13b61d134334986812275c83ccefc4a33376a11d94cfffe0b91390a5297baa9c749e6640cd8aa7f045eaab7316de6c39c1813ab6de7ba55424b24aaea69bca6cf3c9072735193d86b6eb9d101cacebcee703ead834053067aab14d8a826c4822dae92e0d7f7d2ffb92a757d43708570c6f091970c88673b4ccc881eb8f5c99822631f4414a6d75f1c3e0eb9cd4f92df89e829334d77db8a62f367fa9a356b84b4ae209efc067f05e239923d71c76fd2c3a5ef9a2dfe0388b3936832edcf66ded4e14a5a750d4d5166b0a48bc4c2a9663e78a7418cdf922ea9a2d11f33637c4d0690ee16c0a87141d11de19d17eff2691787911df9952d34d928d357f4f9b56f22627bfc6acbbd764ab7314214fee2369bba29941e28807fe2bfecb8f0b72dd41e9a45a4eb99a193de347eb51cea2225a43fc7e558ae47860d2597e31e2588631ca4083ff822226834933528b1f63e338ca8eb743b393b7ea92fd0b0c36661586ecfccfc9e4e7234bb10642cf53abfa34259d2c1f06f95af469bae1d4e5351c5a29fc7f57f283ffdbb55613c51ed3fe75e834317ca280c6a8114267f196acca7396d86d33c050c3bae9b360c5ff36ffd321868c563f6d6242ca6ebc12fb516827ed6771bc843d2815b700a968320085aae85b5c40564a63c9f280c8a1eb971b412fe171b043f76d3a656f9dda5d43c8c77558ce3dea473afcb16630aa25d6fd3efae93c906359a904903de7c52067d5d4b40b778aa6f88fcadcf3efbc53eaa22dcece6ec88e8f618d196d1944a659906a11365317c1a46e649c8693fbd1883004630ad6a2af2770abd2a934068ea8107e8abc2b66cc9c34ea10c0bbb49ec071f7efe8a2fa784cfcc911ef80d7fbfb0a48fd8d196499e3c8dc5f42ac6b4afd486fd28bdef9aaade99fdf142ef7b2526edddb63b35dd298d8248d0004ba61e83ff23eef5c6795e0077d93ae53849d817ab17681b0a139f0b86d6b363de2324758dabc4f930cd46e69f4ea2242f31b525ed73006d73943f7f2f5de39ec38c4cc83acdcdc9ca6adcb3c27aadd1c9c9b1990b9c4c315482dfb9e9c71e4184130158e12aa7f478ea4dba65d96d53d4d202302389df38c1c709ce5e23b146cc3bb8e5523e95ab3c75e7b0ffbd424b03ce6e94d8ab843e63cc1b17afbbb2a614f7b6b29fa79f3a25e9fd6c28043b65812faf719a87e75e96ff482740238082883a1e49b37a54982d722a401df5e24e10aa3c22a2c99882a8483804a27c8dd7e8c4ad93cf3ed58dcd3feb321ab244a937a0d6c588b6b51e168dd230ebcf95d4610503883391d5f633680f81c2257e08b241e44210981f53310fa4dca997a9fbb89ebb20766ad464b95895d3c6974ae06908d2d7c7e78e96f9a052f63d2afcbf6272937ad87d4b05dcabd42d3a74bf1fe0a0cc3426be10e593f2773744d6912cfb249658c279232f7d599f1b58750d1aa187830e8b09937d687fb071d71cb53e8389e894bef9f0eb0105999b29ce3e57c9fc341383d7e459a0a12c245027b9dc69cd4012b7d6b2af32a342febe06b5904be9344329f5247308da5d9d373e673607de8f7361492ba064dc99e87054020cd48eb76b84f431dd329d0b26fddd24de035f546eff8fb0850b814e50e6395e22225e5da444e29406f9d786d17bd31b74565023d71bc9542f390904dcee1652d63d4b960b70df649c630d2b4e32ce2129529e48f3b10f223f0ab5cf716dc88fb77b685f5fb05f4c7aae47851399cab2019518ed59c4e0956e21948efcf43e6ddc3a97a981489eb880e3062956661a750ac5ff24bb6805b3e75ef1f2ef108fcbc976c34c31603a842d430c6525f21be8eb4dd60d10aa5ff2d43abf664fc08940d46038bfd617cf67748f3074c8f90d5cf1e406c46ee141a1bec48d54ee9f0e0983a61b564bbef4181722026d2cc5cc4849a35d32257dc1f9ad5d5684c36694924c181a0ea30d3081ed777e9ae80c219ade389d7409aa2a9f6e432a5dfad4401838ac71e43d0a83be245126a8ee1c98ef6319e900fd4bd41cc9e0f743aed5b738ac9405c1ce6ef317fb2e813055007e98eb105b854985d577820e9d4d3934150c41d39eb0ebbd5981ca8732ca61edfba0787c190c1e8e95dd09aa8989afd5ee73f9b27bde66107a0ebbfc03c56abc8a02cee13e1fdd232e84fbe8e287eb8bd423274caa4145538768e4e703ce9c86ba8b746821f3c2ac449f3d75d8d03bbd3cfc51e420adc4f828e6fc748da5a36abd48a35703a3885352c54410635dbf3da82d4d92a04aeb2d022735a13bc4a9c5203af4b83c6428b4e2238560c12db5a1c2e6f9c1365bcd2f013f522d1dc86be01bc315d5f0bebdad0e2b82e30109c4b64a7954ca7cb0f7d18e74400f7f4eae229e1c81f5ec84ac13cd22e0c7942556e4c2293b4c5e2c3af2704725a44e847add4ced407b138933078aa37cc7b869a0a9027b6d79c7c71a4db7a2ba2f19b43b1668f30f9127fdb06b7dee9d5bc593a0ab3c1dc2c6d9cd410122acc6e1216b0572f152da49e652fa3f64a937b4f0e0b3810f60401a774990bc87bae7f91430baa9ad0d75c5859e024475c673aaa6753c551671f6ecb771b411f8bf3d850afc79f67f4e916ad18a62b59d871881037a99d1d899734af084fc171bd3b84a49c9c3c9b2a2e33cc75bb2f0d0e98637942ad53980f9a1c7f47dc453490f6681d5f71fd19aae24cfde47061d11e57a01836d88f520f0334e85d6c67d1472aab367da02c2133c6d6b9eeb9249833d48cd646dedbc2c11b29d5c2843a02be454f324b0eb233d0bdc988e73aa0cec2d947c3911fb0f6f89056a89c6866389781aeb62a075d243d0b3faedc16134ed25f5d47d14987b3e919f718555083429923fc3f4b3a0399aaf37abc7c719251dfc9dbe24c030bcbb9de6d01ba4c1fd475fc7b8e545e12219fa70abafc0cf662419c975465d74dfb5eed11486615b5bd6404da665086327f58efe1fe8d60049ef0259c70eaac2586a68f11d39479aecb449831c567e3723e4a77aa15adda82aac07bc9ad2354597ecd9ff8d7e0caf3a69c5c089f630a18fb50551c3cbc72a18f276853f6201a44ccdec92456d933f2ef40e69f7a736c8463dd44746f21e2a194268931e111707aaef50df0db68a089470b8ee84821e231de710d9fef174ed25c3a1452610ea62ae0a36cd02f44b92bb3c3e4ab23494f216d2856f06194763849f1c5b2bf52756b05b98ab20abe5a2efb92d3565232b372697b0978c062168d5671a59d3e95ba86262d5fb85d7f2b9996c33a0dc42afad8daa0c190a594ebc4ca0c427802295fee39d87643862ba0e8708de38e3397163ddc2b58ff90246dcc94a739c134a15b3af45c845c7dd39d732e6b5f38b32042db3bb44b2d7603376ff85fc0e73fd09ff469434b1f1fafb9a2fe593f0d0db9ceee2a562af752b704124f0dd70670f3285b801bbe219357fd912d8300b903bec08239b6f4773cfc048dcb61c9f6d724108a0dfa11f47cbfe3535fcfab2ecd7d4d0ba5dd29d9659697ae97e06f082af6747b40788d8ce7cc5d826352a332b1d30bbfd5c3f069b59fa68a490b63fde1fcd8a130715c3e4dcdfc4880749cfc2f5f7e969ecb9043a0c4e2f262d01faa9c310d753485a4de3b459d184b9bc1d8e84d47ee56e3f6e79f9820fa5b700bfd9fe3dbf1d16af7692c0dfb245c4cbbf8a20986832c441725209c3feebbd0eb2a5f7c1fc927f6237055e1a7b066b8a3780d6ea5f4e4e7d741d9ef65ee53f7464284b62c0d941a214ce8c3220ce5f4da4e3c9ee2c093114d051b2ba51be49bf09372e406c94d1767725e676dc27654e83e57f625a8b46ffcbdaef45c9b82532070a4afe44729c9c7c80bb6abd0d163938f5dba974fd484a527a257418d13db99585121d7ccd944d500ba308a3d4bf4e80e6b350f6fcb9695c949596eecaacca69a52cc17d89d9ee74643e99196cb2faade704e813c7f75e6cc602f6f916e09a57d0ea0da2d8cabbb6bab404e2afef0b968cb7f62ece6412494f58918f95260ed23e68e772891c3b4252c58c3d3bd401b2f47ee044819275a58fea346441521ff7a4a18748b3db6f722e37aca3b818e263e5c12ee8944316ee3d36b6efe210b55e20ec7f4cb21439f35c10588fcb28d050b6c7f8f06ae55aac7e1d387ed18276cdc779c8d1c990a54d3"}, 0x0, 0x1000)
pipe(&(0x7f00000001c0)={<r8=>0xffffffffffffffff})
sendmsg(r8, &(0x7f0000001b40)={&(0x7f00000015c0)=@pptp={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000001700)="89b07d6f993583ff8f567593776ec7cc9f4da24e0a688dfe65f04844f5854513bdeee0e508ac8ccb4550faed98bb490d62b29b905c88c33f448edbeaf2d9a73fb63f14253751e0745ecce105ff1296fc4c7c6ac5cf307e8a37b9d6a136e700679eba0df82a759eb1cc71581a304d3af37adca5c0a003a25102d342721939d3fd4e581f51b93d0b94fd9532953b66f925a5e3ee088eb1a7252013f7da145e0245b645dc53f5af49dd162889c62bd80729429760567bcc90168ab01077f17dedf2f44f6754190acaedfdb5f1eb", 0xcc}], 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000100)=0x4000000011)
sendmsg(r1, &(0x7f00000003c0)={&(0x7f0000001480)=@ipx={0x4, 0x7, 0x88b, "72525a29bd03", 0x6}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x4)

03:33:36 executing program 3:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp, 0x8000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount(&(0x7f0000000100), &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))
r0 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000340), &(0x7f0000000180)}}, &(0x7f0000044000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000))
tkill(r0, 0x401104000000016)

03:33:36 executing program 0:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20000800, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x1, 0x0)
ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f00000001c0)={<r3=>0x0})
r4 = syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0x9, 0x200000)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000240)={r3, 0x80000, r4})
openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x80, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000140)="db04", 0x2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)="766574683100000000ffffffffffef00", 0x10)
sendto$inet(r0, &(0x7f0000000000), 0x0, 0xc0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f00000000c0))

03:33:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000080)=0x100000)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  662.421657] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  662.439659] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  662.446790] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  662.459585]         reason=80000021 qualification=0000000000000000
[  662.514079] IDTVectoring: info=00000000 errcode=00000000
[  662.534882] TSC Offset = 0xfffffe9b6d46410c
[  662.570965] EPT pointer = 0x00000001b2ac301e
03:33:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vsock\x00', 0x4000, 0x0)
ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f00000002c0))
r2 = socket$inet6(0xa, 0x803, 0x3)
ioctl(r2, 0x1000008912, &(0x7f00000000c0)="0a5c2d023c126270000000")
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x1, 0x0)
getpeername$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r4=>0x0}, &(0x7f00000001c0)=0x14)
setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000200)={r4, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}}, 0x10)
ioctl$DRM_IOCTL_MODE_SETCRTC(r3, 0xc06864a2, &(0x7f0000000100)={&(0x7f0000000080)=[0x561, 0xf252, 0x2, 0x7, 0x4, 0x4, 0x0], 0x7, 0x6, 0x31, 0x101, 0x6, 0x0, {0x3f, 0x80000000, 0x3, 0x843, 0x8, 0x5, 0x8, 0x1, 0x2, 0x9, 0x234, 0x6, 0x0, 0x1, "ff61cd79648c58271cbe603ffcb305b54c575ca363fb26222f3f5d1292f2e84d"}})

[  662.628184] *** Guest State ***
[  662.639257] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  662.651643] *** Guest State ***
[  662.658975] *** Guest State ***
03:33:36 executing program 2:
r0 = socket$inet(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x100000000005, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x8, 0x80000)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000100)={0x12, 0x2, 0x8})
sendmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000030307031dfffd946fa2830020200a0009000500001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0)

[  662.679688] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  662.688832] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  662.697897] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  662.708115] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  662.718002] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  662.723387] CR3 = 0x0000000000000000
[  662.734135] CR3 = 0x0000000000000000
[  662.740288] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  662.747158] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  662.754554] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  662.761096] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  662.767309] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
03:33:36 executing program 2:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x301000, 0x9)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f00000000c0), 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
setsockopt$sock_void(r1, 0x1, 0x19, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000100)={'team0\x00', <r3=>0x0})
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000140)={@mcast2, r3}, 0x14)

[  662.785273] CR3 = 0x0000000000000000
[  662.789419] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  662.797192] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.804030] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  662.809433] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.820606] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.829213] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.847797] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.853436] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  662.869088] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  662.874476] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.875882] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.894622] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.903059] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.911474] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.919697] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.922124] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.934896] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.936433] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.952281] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.953724] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  662.960638] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.971099] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.977643] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  662.984728] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  662.992681] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.000610] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  663.008841] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  663.025022] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  663.029227] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  663.033305] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.042501] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  663.048673] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.063318] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  663.067763] Interruptibility = 00000000  ActivityState = 00000000
[  663.072651] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  663.085622] *** Host State ***
[  663.085637] RIP = 0xffffffff8120262c  RSP = 0xffff8801b9677390
[  663.085659] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  663.085671] FSBase=00007fecb7d75700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  663.085684] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  663.089511] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  663.095109] CR0=0000000080050033 CR3=00000001be04e000 CR4=00000000001426f0
[  663.102520] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  663.112055] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  663.115575] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  663.123463] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  663.130648] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  663.136807] *** Control State ***
[  663.143679] Interruptibility = 00000000  ActivityState = 00000000
[  663.151578] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  663.157673] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  663.165255] EntryControls=0000d1ff ExitControls=002fefff
[  663.169144] *** Host State ***
[  663.174892] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  663.181819] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  663.188004] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  663.193678] RIP = 0xffffffff8120262c  RSP = 0xffff8801b43c7390
[  663.196910] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  663.203991] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  663.218029] Interruptibility = 00000000  ActivityState = 00000000
[  663.224198] FSBase=00007fafd13a7700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  663.230609]         reason=80000021 qualification=0000000000000000
[  663.238111] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  663.243376] *** Host State ***
[  663.251365] CR0=0000000080050033 CR3=00000001d86d8000 CR4=00000000001426f0
[  663.257512] IDTVectoring: info=00000000 errcode=00000000
[  663.263598] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  663.266623] TSC Offset = 0xfffffe9b12de4724
[  663.273919] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  663.279213] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3737390
[  663.286063] *** Control State ***
[  663.290242] EPT pointer = 0x00000001d837b01e
[  663.296374] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  663.302340] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  663.306269] EntryControls=0000d1ff ExitControls=002fefff
[  663.318754] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  663.323581] FSBase=00007f88e60df700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  663.354131] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  663.358518] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  663.360203] CR0=0000000080050033 CR3=00000001c6908000 CR4=00000000001426f0
[  663.366857] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  663.373838] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  663.387186] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  663.393436] *** Control State ***
[  663.397033] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  663.399569]         reason=80000021 qualification=0000000000000000
[  663.404319] EntryControls=0000d1ff ExitControls=002fefff
[  663.415717] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  663.423017] IDTVectoring: info=00000000 errcode=00000000
[  663.424046] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  663.428592] TSC Offset = 0xfffffe9b6d46410c
[  663.435358] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  663.441253] EPT pointer = 0x00000001b2ac301e
[  663.455788]         reason=80000021 qualification=0000000000000000
[  663.465799] IDTVectoring: info=00000000 errcode=00000000
[  663.471561] TSC Offset = 0xfffffe9b10a13004
[  663.478706] EPT pointer = 0x00000001c2d4d01e
[  663.528623] *** Guest State ***
[  663.532082] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  663.548659] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  663.569347] CR3 = 0x0000000000000000
03:33:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000004000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000040)="b9020b00000f320f424d0066b8d9000f00d066b819008ed8c4e26dbe3966bad00466ed3e0fc71c4ef26fc4e195f88d0e0000000f01d1", 0x36}], 0x1, 0xc, &(0x7f00000000c0)=[@vmwrite={0x8, 0x0, 0xffffffff, 0x0, 0x4, 0x0, 0xfffffffffffffff7, 0x0, 0x7}], 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:37 executing program 2:
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x1fffe, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
lstat(&(0x7f0000000680)='.\x00', &(0x7f00000007c0))
lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000003740))
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r1, 0xc10c5541, &(0x7f0000000380)={0x80000000, 0x9, 0x7, 0x0, 0x0, [], [], [], 0x5})
write$FUSE_DIRENTPLUS(r0, &(0x7f0000000340)=ANY=[], 0x0)
r2 = openat$ion(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ion\x00', 0x0, 0x0)
keyctl$join(0x1, &(0x7f0000000180)={'syz'})
connect(0xffffffffffffffff, &(0x7f0000000540)=@pppol2tpv3, 0x80)
ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f0000000780)={0x1, &(0x7f0000000740)=[{}]})
sendto$inet(r1, &(0x7f00000005c0), 0x0, 0x0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
openat(r1, &(0x7f0000000280)='./file0\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000500)={0x10000009, 0xffffffffffffffff, 0x0, <r3=>0xffffffffffffffff})
mount(&(0x7f0000000200)=@sg0='/dev/sg0\x00', &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)='ext2\x00', 0x10, &(0x7f0000000640)='/dev/ion\x00')
mmap(&(0x7f0000bfe000/0x400000)=nil, 0x400000, 0x6, 0x811, r3, 0x0)
lsetxattr$trusted_overlay_origin(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='trusted.overlay.origin\x00', &(0x7f00000002c0)='y\x00', 0x2, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5387, &(0x7f0000000240))
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000c00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e8002801000000000000000000000000000000000000000000000000280069636d7000000000000000000000000000000000000000000000000000001f020501000000002800727066696c74657200000000000000000000000000000000000000000000030000000000000040004c4f470000000000000000000000000000000000000000000000000000000009eb3fae93d45403a301f022908a1012d2ac9e9dcaa990dfadf05bf7bd6a46000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000006c0), &(0x7f0000000340)=0xffffffffffffffb1)

03:33:37 executing program 3:
perf_event_open(&(0x7f0000000180)={0x2, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x101)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x80, 0x0)
ioctl$RTC_WIE_OFF(r0, 0x7010)
futex(&(0x7f000000cffc), 0xa, 0x0, &(0x7f00006f7000)={0xfffffffffffffffc, 0x100000000000000}, &(0x7f0000000080), 0x20)

03:33:37 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x102, 0x4)
bind$inet(r0, &(0x7f0000942000)={0x2, 0x4e20, @multicast1}, 0x10)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000300), &(0x7f00000000c0)=0xfe18)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vga_arbiter\x00', 0x3fc, 0x0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000180)={'ipvs\x00'}, &(0x7f00000001c0)=0x9)
mlockall(0x1)
clone(0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000080), 0xffffffffffffffff)
r2 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x99)
exit(0x7fffffffbffefffd)
r3 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mlockall(0x2)
ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000500)={0x3, r2})
r4 = getpgid(0xffffffffffffffff)
ioctl$EXT4_IOC_RESIZE_FS(r1, 0x40086610, &(0x7f00000002c0)=0x498)
setpriority(0x1, r4, 0x5)
r5 = getpgrp(0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={<r6=>0xffffffffffffffff, r1, 0x0, 0xf, &(0x7f0000000240)='wlan0\\}md5sum#\x00'}, 0x30)
setpgid(r5, r6)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl(r7, 0x20000000008912, &(0x7f0000000040)="0a5c2d02402b6285717070")
syz_mount_image$f2fs(&(0x7f0000000240)='f2fs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="1020f5f20100070009000000030000000c0000000900000001000000020000000000000000300000000000000e00000016000000020000000200000002000000020000000e000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}], 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"])
vmsplice(r3, &(0x7f00000008c0)=[{&(0x7f0000000800)="50e005e6815dc6b00b10002c519c66795de0d52fc076f1eb6a9c58cde88a6eef0093b24a178e84740aa6d1618e2033d38d4aea0fb17cda768820a83864ac14405192e4549c3ad33fca5d187507c5a984d6a0c72683e7af2d4a070000000000000005b6d0dce139e4c627395426a1f6fc0b416f7163eb07000000d9e0203181735ccac1e530c361262a0a5e0a98e9ca3d17f2f2f0c116fa9fbdbe757d93e323d17f29", 0xa2}], 0x1, 0xf)
ioctl$EVIOCGEFFECTS(r1, 0x80044584, &(0x7f0000000580)=""/190)
mq_notify(r1, &(0x7f0000000540)={0x0, 0x1c, 0x7, @thr={&(0x7f0000000440)="4c272be7ad31b92a7819bd4438656080ec27849a76ffa174b3fe114201140a34e5e6cb4d6a3ab9bcdc80a2717dd8542f33caa13b8c9cb9f5d11d4c66dc81779917000c05979ce491010f7259d0ecdb80fb30d6cba6e2b753ac23635fbb3d879cc2982fb4bbe1afcea02f12d11d43e1337c25411ae04bd8efc06636c455e15689c75b95c24f0dbdd30bdf91f2313a3e39b263ff5196302f1880765440d8b1", 0x0}})
ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x8)
accept4$inet(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)=0x10, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000d4effc)=0x1, 0x4)
remap_file_pages(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0xa1, 0x40001)
connect$inet(r0, &(0x7f0000606ff0)={0x2, 0x4e20, @local}, 0x10)

03:33:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f00000002c0)={"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"})
r2 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
accept4$nfc_llcp(r2, 0x0, &(0x7f0000000040), 0x800)
syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f000001c000/0x2000)=nil})
socketpair$unix(0x1, 0x1, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f00000001c0)={<r4=>0x0, 0x4, 0x7fffffff}, &(0x7f0000000200)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f00000006c0)={0x1ff, 0x8000, 0x2, 0x0, 0x3ff, 0x28, 0xfffffffffffffff9, 0x8, r4}, 0x20)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB="000000ac"], 0x0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  663.579712] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  663.585824] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  663.638957] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  663.667113] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.670240] *** Guest State ***
[  663.680332] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  663.689681] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  663.698684] CR3 = 0x0000000000000000
[  663.702533] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  663.708348] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.708670] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  663.722702] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  663.729633] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, &(0x7f0000000480)="8b723bba4300ec66b80500000066b9000000000f01c10f340f20e3260fc72b6766c74424000d0000006766c7442402000000806766c744240600000000670f011c24360f9de16766c7442400048000006766c7442402bb2700006766c744240600000000670f011c24660f38dbd6", 0x6e}], 0x1, 0x24, &(0x7f0000000100), 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)={0x0, 0x36d}, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@remote}, 0x0, @in6=@loopback}}, &(0x7f00000001c0)=0xe8)
mount$9p_virtio(&(0x7f0000000040)='/dev/kvm\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x40, &(0x7f00000003c0)={'trans=virtio,', {[{@mmap='mmap'}, {@loose='loose'}, {@mmap='mmap'}, {@nodevmap='nodevmap'}], [{@permit_directio='permit_directio'}, {@subj_type={'subj_type', 0x3d, 'nodevvmnet0cpuset'}}, {@appraise='appraise'}, {@dont_appraise='dont_appraise'}, {@fowner_lt={'fowner<', r4}}, {@appraise_type='appraise_type=imasig'}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  663.737806] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.745968] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.753095] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.782825] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.793566] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.821586] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.824918] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.848520] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.849405] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.864416] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  663.880458] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.898152] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  663.899875] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  663.918846] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  663.924147] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  663.933755] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  663.942102] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  663.945719] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  663.958958] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  663.967200] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  663.973807] Interruptibility = 00000000  ActivityState = 00000000
[  663.974201] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  663.998603] *** Host State ***
[  664.002036] RIP = 0xffffffff8120262c  RSP = 0xffff88017d817390
[  664.005539] Interruptibility = 00000000  ActivityState = 00000000
[  664.026235] *** Host State ***
03:33:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00000000c0)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  664.030271] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  664.035187] RIP = 0xffffffff8120262c  RSP = 0xffff88017e667390
[  664.043484] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  664.054248] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  664.059453] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  664.072632] CR0=0000000080050033 CR3=00000001d86d8000 CR4=00000000001426f0
[  664.075830] FSBase=00007f88e605b700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  664.084708] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  664.100832] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  664.107064] CR0=0000000080050033 CR3=00000001c6908000 CR4=00000000001426e0
[  664.109154] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  664.120475] *** Control State ***
[  664.124159] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
03:33:38 executing program 2:
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x10, 0x80000, 0x5)
sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000030607031dfffd946fa2830020200a0009000200001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0)

[  664.126508] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  664.131203] EntryControls=0000d1ff ExitControls=002fefff
[  664.141175] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  664.166649] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  664.178559] *** Control State ***
[  664.178779] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  664.187821] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  664.199256] EntryControls=0000d1ff ExitControls=002fefff
[  664.201303] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  664.210386] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  664.218684] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  664.225521] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  664.232691]         reason=80000021 qualification=0000000000000000
[  664.250424] IDTVectoring: info=00000000 errcode=00000000
[  664.254422]         reason=80000021 qualification=0000000000000000
[  664.270262] IDTVectoring: info=00000000 errcode=00000000
[  664.278054] TSC Offset = 0xfffffe9b10a13004
[  664.279790] TSC Offset = 0xfffffe9a7e593381
[  664.286969] EPT pointer = 0x00000001b842201e
[  664.296138] EPT pointer = 0x00000001c2d4d01e
03:33:38 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r1 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

03:33:38 executing program 2:
r0 = syz_open_dev$usbmon(&(0x7f0000000380)='/dev/usbmon#\x00', 0x3, 0x240000)
write$P9_RFLUSH(r0, &(0x7f00000003c0)={0x7, 0x6d, 0x2}, 0x7)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4)
bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f0000000b00)=0xfffffffffffffffc, 0x4)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000900), 0x0, 0x7fffffff, &(0x7f0000000340))
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x0, &(0x7f00000000c0)}, 0x10)
sendto$inet(r1, &(0x7f0000a88f88), 0x29f, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
syz_open_dev$sndmidi(&(0x7f0000000300)='/dev/snd/midiC#D#\x00', 0x7, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x921b527a62bfd8af)
r3 = syz_open_dev$amidi(&(0x7f0000000180)='/dev/amidi#\x00', 0x3f, 0x20080)
ioctl$KVM_GET_REGS(r3, 0x8090ae81, &(0x7f0000000940))
accept$alg(r3, 0x0, 0x0)
gettid()
recvmsg(r1, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f00000001c0)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, &(0x7f00000002c0)=""/20, 0x14, 0x40020000}, 0x100)
inotify_init1(0x800)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000000040), 0x0, 0x20000001, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000080)='tls\x00', 0x152)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000880)="7116976428203587543bbc1562b772328507b45f649b278def9a0759738087a5d38c0172c5b11f32cfe1490600860cf613aaae2bb333590dcb6f20e4c6f1b04e62832c521f249fc69a8f2a36762f9f454b568187edba3e371cf1a6c764", 0x5d, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x1c)
shmat(0x0, &(0x7f0000ffc000/0x4000)=nil, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x45a)
write$binfmt_elf64(r1, &(0x7f0000001400)=ANY=[@ANYBLOB="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"], 0xbbb)
ioctl$RTC_UIE_ON(r2, 0x7003)
setsockopt$RDS_GET_MR(r3, 0x114, 0x2, &(0x7f0000000280)={{&(0x7f0000000a00)=""/244, 0xf4}, &(0x7f0000000200), 0x20}, 0x20)

03:33:38 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  664.348805] *** Guest State ***
[  664.352957] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  664.419715] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  664.459001] CR3 = 0x0000000000000000
03:33:38 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)="646374637000a564c68b4b301a85f66dd62d43fe8f464a038a62f2503b5808b7cb2663cda6bc2ef234776af44aab8cb5eeee9ad56ad19edbf6653fbaf20ae7478b296572edd0897788e48c813d583011b76149184df306062117cffe714015a84240915d437337872c9dde49f917c5ee903a5a261caf", 0x76)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000140)=0x8001, 0x4)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000040)={0x6, 0x8, 0x4})
r3 = fcntl$getown(r1, 0x9)
process_vm_writev(r3, &(0x7f0000000440)=[{&(0x7f0000000280)=""/215, 0xd7}, {&(0x7f0000000380)=""/34, 0x22}, {&(0x7f00000003c0)=""/119, 0x77}], 0x3, &(0x7f0000000880)=[{&(0x7f0000000480)=""/94, 0x5e}, {&(0x7f0000000500)=""/196, 0xc4}, {&(0x7f0000000600)=""/69, 0x45}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/220, 0xdc}, {&(0x7f0000000800)=""/93, 0x5d}], 0x6, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000000c0)='dctcp\x00', 0x6)
sendto$inet6(r4, &(0x7f0000000100), 0x14e, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000000200), &(0x7f0000000240)=0x4)

[  664.465903] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  664.481177] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  664.487056] *** Guest State ***
[  664.500916] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  664.505377] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[  664.518217] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.541101] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.542149] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  664.549323] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.567674] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  664.577512] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.586646] CR3 = 0x0000000000000000
[  664.590625] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.599009] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  664.605138] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  664.613317] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  664.619496] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  664.626284] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  664.634446] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.642615] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  664.650738] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  664.658876] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.666991] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  664.680853] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.691276] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  664.701719] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.713716] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  664.724612] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.732786] Interruptibility = 00000008  ActivityState = 00000000
[  664.739230] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.747336] *** Host State ***
[  664.750871] RIP = 0xffffffff8120262c  RSP = 0xffff88017fcaf390
[  664.757000] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  664.765398] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  664.771968] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  664.784930] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  664.793071] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  664.799170] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  664.807249] CR0=0000000080050033 CR3=00000001d86d8000 CR4=00000000001426f0
[  664.814414] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  664.821264] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  664.821394] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  664.827420] *** Control State ***
[  664.838460] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  664.840149] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  664.845622] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  664.852338] EntryControls=0000d1ff ExitControls=002fefff
[  664.852351] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  664.852359] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  664.852367] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002
[  664.852377]         reason=80000021 qualification=0000000000000000
[  664.860320] Interruptibility = 00000000  ActivityState = 00000000
[  664.865372] IDTVectoring: info=00000000 errcode=00000000
[  664.872508] *** Host State ***
[  664.879061] TSC Offset = 0xfffffe9a7e593381
[  664.885703] RIP = 0xffffffff8120262c  RSP = 0xffff8801b8a2f390
[  664.892049] EPT pointer = 0x00000001bfea201e
[  664.898982] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
03:33:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$video4linux(&(0x7f0000000040)='/dev/v4l-subdev#\x00', 0x4, 0x2)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0)
socketpair$inet(0x2, 0x802, 0xffffffffffffffe0, &(0x7f0000000000))
getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f00000001c0)={<r1=>0x0, 0x9, 0x7, 0x7, 0x7, 0x0, 0x0, 0x100, {0x0, @in6={{0xa, 0x4e22, 0x5, @loopback, 0x5}}, 0x9, 0x5, 0x3ff, 0x3, 0xfffffffffffffbb3}}, &(0x7f0000000280)=0xb0)
getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000380)={0x2, 0xc, 0x3, 0x3, r1}, &(0x7f0000000400)=0x10)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000040)={0x7000, 0x2000})
r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x10000, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="8f0000ffff00000000ad8e93327c11aa121a27917a9db7a7e0810a303007fa69dfa88facf374263d469a89f2e89315e5a67b97e4a62c5d37a67479d676177c45150826c978db170afd5fb7a9e1a5961663ee76f16cb71bcbbc91e40372e60bf67f5c272f156f5ccd75fd9f8eaea4b07518acb8739780d72e65c0caeadc1e8889e06c81d615d3c24fb8fd54d0c33c82785e946d9f3936fab8000000"])
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000000180)={0x8200040000000000, 0x1, 0x0, 0x4, 0x20})

03:33:38 executing program 4:
r0 = open(&(0x7f0000000080)='./file0\x00', 0x102, 0x8)
ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f00000000c0)=<r1=>0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000180)={0x1, 0x3, 0x8, 0x0, r1})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r4, 0xae80, 0x0)

03:33:38 executing program 0:
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x1, 0x6, @remote, 0xb}, 0x1c)
prctl$PR_GET_NO_NEW_PRIVS(0x27)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c)

03:33:38 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
openat$tun(0xffffffffffffff9c, &(0x7f0000000640)='/dev/net/tun\x00', 0x0, 0x0)
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet(0x2, 0x6, 0x80080002)
r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x141080, 0x0)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000480)={&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_ifreq(r3, 0x89f0, &(0x7f0000000000)={'bond0\x00', @ifru_names='bond_slave_1\x00'})
ioctl$VIDIOC_ENCODER_CMD(r2, 0xc028564d, &(0x7f0000000680)={0x1, 0x1, [0xfff, 0x101, 0x3ff, 0x40, 0x0, 0xfffffffffffffffb, 0x8, 0x4f]})
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000004c0))
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000240)='/dev/full\x00', 0x20a000, 0x0)
ioctl$KDSKBSENT(r4, 0x4b49, &(0x7f0000000380)="e2da5cdea423495c8b5663b2d9e462f4e65c25cc8b2ba5e1349cd9ae758d94c045f53f48860fd0b3d8013a69034f6ac0d6e1e98dfe38d2d9e2e2c54d473c67bfa22bbf07fadb6002cda4dd466bf8b4ac1fd7837039b702b9d0fa204a8e5df87c3de67d40844e3ddd3c120aee61b90f3b98210922d8d4271c6df39457ffa88a8a1c33837414408c58e56e3fc11ec40ec466928864d45fe30bbdca4189941c975bc6fe8fb0e6bf8e2a58131d1b5d088066c68b8a6ee0c4e1fea78983de57627ebf6f449a310f966c64391d936f99802fb9320ae1cc")
r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000780)='/dev/sequencer2\x00', 0x14003d, 0x0)
sendto$inet(r1, &(0x7f00000000c0)="8dec431bb44aff53a310b4eabef65b9ca28574570c8753d962784ce7563c1f448215fd237bf4c9159a98e9205a38a1fef116825d2a67dccc355557378e26b4e71c9ead8245ce8f8727e4d5e348d6b048462955248e97e362bb149adcd5ad849873b82111c2ecfa383140f9d4c99f525041a886277a6592dbc6b9108911e88a440b93f5c0fae544676b44a19bf06aa255a549db9cb0a9221a90f33fec43b1d074bf", 0xa1, 0x1, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000580)='fou\x00')
sendmsg$FOU_CMD_DEL(r5, &(0x7f0000000640)={&(0x7f0000000540), 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x24, r6, 0x0, 0x70bd28, 0x25dfdbfd, {}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0x3b}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e23}]}, 0x24}, 0x1, 0x0, 0x0, 0x20044000}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f0000000800)=ANY=[@ANYBLOB="817abcb82c076b0000a54feeac0000f0d1802d2d094bd06315d0e7855bb65587033e35e494d8362bc9d0fb44b760ad4ebcf1c0e1b6b6018e460032446705d88e"], 0x1}, 0x1, 0x0, 0x0, 0x8050}, 0x40)
r7 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x25d1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
keyctl$session_to_parent(0x12)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x200)
dup2(r7, r5)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer\x00', 0x100000c81, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = syz_open_dev$midi(&(0x7f00000006c0)='/dev/midi#\x00', 0x1, 0x400fc)
getsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f0000000300)={0x0, @remote, @loopback}, &(0x7f0000000340)=0xc)
sendmsg$nl_route(r9, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="080001000000e82f"], 0x1}}, 0x4008000)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000007c0)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_SERVICE(r10, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="010100000000000000000300000014000100080080000000000000003cd5f4a747f67eb8307f796579040000000000"], 0x1}}, 0x0)

[  664.906917] FSBase=00007fecb7d96700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  664.917482] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  664.943398] CR0=0000000080050033 CR3=00000001b900a000 CR4=00000000001426e0
[  664.950741] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  664.971575] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  665.004335] *** Control State ***
03:33:39 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhci\x00', 0x30000, 0x0)
ioctl(r1, 0x9, &(0x7f0000000100)="4dc94529ba6f912a7ecd7a1a7bd81f4d3a2df24ccf6b56defed0b9a0c03e7fa46bfa8860e347b0a88e0df56db72adff44ebfd91a14b9e282eaa7480e906c5844c01d723324bc8c026b88ae2a241401c4ad36e591a29a12ad7b2500fa778d75744d01ed021cc09105cb40224724e256a7cb00968389f9f7fc0db0d4d96328350e6aba651946c5730377f7e9b13736af302b6d816435279a5d9d83a284c1a41609b5")
setsockopt$packet_int(r1, 0x107, 0xb, &(0x7f00000000c0)=0x7, 0x4)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000640)={<r2=>0x0, 0xad, "ba1f584ffd4469775bb091ed7ae561dfb60244183a514a35f2ebd76b14706a75054fe6d57bee2de8bdd661d0047e280e9e9b515f2a07dd36d487114054056a5ae106505e483d657a64dfc915658dd341421eedbdbdb7de4bb7e7ef9228dc2a38e218acace5bb4dd4f7c415911df19dc02a92b3efe2eab93211784537776227e4dcad601fe9fbcd6866dccc0406b3388d7088ca8b15e6f490c64bffddb22dfe9d0f508c658b604f22a84ed01eff"}, &(0x7f0000000700)=0xb5)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000740)={<r3=>0x0, @in6={{0xa, 0x4e20, 0x2, @mcast1, 0xf9b}}}, &(0x7f0000000800)=0x84)
getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000840)={0x0, 0x1, 0x10001, 0x3, 0x9, 0x9, 0xc1d7, 0x4ca6, {<r4=>0x0, @in={{0x2, 0x4e21, @remote}}, 0xa7d5, 0xe3c3, 0x7, 0x80, 0x8}}, &(0x7f0000000900)=0xb0)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000940)={<r5=>0x0, 0x800, 0x1ff, 0x7, 0x7, 0x8}, &(0x7f0000000980)=0x14)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000009c0)={<r6=>0x0, @in={{0x2, 0x4e24, @loopback}}, 0x0, 0x4, 0x20, 0xa54}, &(0x7f0000000a80)=0x98)
sendmmsg$inet_sctp(r1, &(0x7f0000000c00)=[{&(0x7f00000001c0)=@in6={0xa, 0x4e22, 0x8, @dev={0xfe, 0x80, [], 0x19}, 0x6}, 0x1c, &(0x7f00000005c0)=[{&(0x7f0000000200)="06cf40eeb18dc3ed345c06cde046258604888c00cd5e786635aea431329a3851937f55a7cf1789f72f7b59eeacaf0a218ae6ea558301947e505301b71bfb0dcb744a9686a862d68fa563628b84762883ba3819804b3647961a2b7368bb180c7522595cd1bf73a6441b1f95f6843c46ccaf8949a4d2fb64bbac375c9a092629718e32927900d6c53b950ac71079b620998a7834c925c46350f3881ca4178dbf8526fe6be85ef4d35e393f523fb066ddea85b6ff6e549699e328a0e34ec8dca64fc036c23c9f25f2437bb05945789ab7d5c2b6d760fd8984fa540f", 0xda}, {&(0x7f0000000300)="6798159b02c4b3fe1b400f63bdea3398648da2b5", 0x14}, {&(0x7f0000000340)="435d8c2127d51b08f59d83730632b3a26dd9f8864e171ba2b184d2e22754a2d7cc3a414da9685fc41fdd0b06ad", 0x2d}, {&(0x7f0000000380)="3b579f5ec1c002d46b9cd502f03791292a464e4542d25272f95fff146083cd1926510b4317b986757c69b9fe53ba1980d63edd3262fa0084349b0cc118d3789d7a38345665990417d7fd89f4ea88caa18024457099915930aa9457d8cfc56c111427b3dd67173332e374f97912dbfbd8a3ba45576514d7412af58f40e7c5a62715f42f", 0x83}, {&(0x7f0000000440)="58d645d7cc3e2a92f8f349413c8307c74d48ad6791bdded476d98868507b6512482c5c5948fe938154346fc3e17e46e738086f9daeb99a70ecbcf29f2496a8d035aa3c8cf40e8ae803b1b51adbd1142ffe0c7abd46e3498110c9b0cd57841d3486efe259c5b88171ec19bcb49f6b89c60f0554e8ba821353c2243b0261dbab47eb0149e0812210631dd7d27972d46f4d91c03df9e2615f34695c92372728296181be2d1de64831bf72dc09bec92235a7846d18f544c0ce93a9ca0e992b128e69c8e0ca5a22104aa5d346fbf39e6a0409ca37b20f4f1d7340309ab80a1c75ebf38005e0b5b5e2bfba1af012a9a6033168cf4e", 0xf2}, {&(0x7f0000000540)="6dc3a962a43a7949ebbac8a05bb8537949780045f25d5d8a49e5a25a14ee514cef988664b867ef8557a29cbdd284f3344146277849d4ec24fdb2c2ac525286", 0x3f}, {&(0x7f0000000580)="26fa540b35ff77880df8b2be90363932cf39128055f0181ec5744c38fb111b0df6d161a688791511676eae7358a7cc9948", 0x31}], 0x7, &(0x7f0000000ac0)=[@sndrcv={0x30, 0x84, 0x1, {0x76, 0xe01a, 0xe, 0x9, 0x4, 0x57, 0x8, 0x1, r2}}, @dstaddrv4={0x18, 0x84, 0x7, @remote}, @sndrcv={0x30, 0x84, 0x1, {0x800, 0x7, 0x4, 0x9, 0x7, 0x81, 0xfff, 0x100000000, r3}}, @sndrcv={0x30, 0x84, 0x1, {0x2, 0x646, 0x8008, 0x7, 0xa7, 0x3, 0x252, 0x7fffffff, r4}}, @sndinfo={0x20, 0x84, 0x2, {0x100000001, 0x800f, 0x5, 0xfff, r5}}, @authinfo={0x18, 0x84, 0x6, {0x400}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0xfffffffffffffc01}}, @sndinfo={0x20, 0x84, 0x2, {0x7, 0x201, 0x40, 0x92, r6}}], 0x118, 0xc004}], 0x1, 0x20000000)
seccomp(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x20}, {0x6, 0x0, 0x0, 0xffffff7f7ffffffe}]})

[  665.025260] bond0: Error: Device is in use and cannot be enslaved
[  665.043293] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  665.067030] EntryControls=0000d1ff ExitControls=002fefff
[  665.076321] *** Guest State ***
[  665.079811] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  665.099399] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  665.119337] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  665.133119] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  665.156197] bond0: Error: Device is in use and cannot be enslaved
[  665.158904] CR3 = 0x0000000000000000
03:33:39 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x4a, &(0x7f0000000300)=ANY=[@ANYBLOB="aaaaaaaaaabb0180c20000008100000086dd6008d39e00100000fe8000e4ffffffffffffff00000000aa00000000000000000000000000000001000000000401907800d35d2e00ab5f38"], &(0x7f0000000080))
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x2400, 0x0)
connect$netlink(r1, &(0x7f0000000140)=@unspec, 0xc)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000040)=0x100, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000500)='fou\x00')
sendmsg$FOU_CMD_DEL(r1, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x240a80}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x40, r3, 0x10, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0xff}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x89}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0xb7}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0xde}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
ioctl(r2, 0x20000000008912, &(0x7f00000001c0)="0a5c2d0240316285717070")
openat$vsock(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vsock\x00', 0x0, 0x0)
recvmsg(r0, &(0x7f00000000c0)={&(0x7f0000000180)=@can, 0x80, &(0x7f00000003c0), 0x0, &(0x7f0000000400)=""/50, 0x32}, 0x0)
r4 = fcntl$dupfd(r2, 0x0, r0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000000)={r4, &(0x7f0000000200)="62cb28b24a93d06812ced95b6266a6ef6c7d0aa951f189f5326faa73be468df273b328215115f8738194d62b9a9e4b07e7bdb8ac738100b0daf9a14eb66bb0dea76bcf32a974d05e2de95c2f87a5636e5d204d557f138605c9b49f3a75af483b08657f66e5e36310463e3de6c09523e86f09cdd344b7cc422a397c3897abf7a936af008e0fdc16259698e4f6dfe591c9957d5a5c12a0561a2a7091c7d18846c2caa4cb76bfbe9626540c007fa67d6b7b041a388df7559d602dc95fa22cce974623e8ca", &(0x7f0000000440)="7d5a0cc18c664c18e5374c9a1559622f8eddf2012a274c167c6fe20bd64105e14ea1430805e5b9b2bc1aeba4bc1fc2d081d65b4c053a2f781949e4b28302fce40b0ff0dcb1a824c648403c3841402f90a8d88edc46b4726d6405a7155fb0406855786b24db618f89021fd677250e2c4795559ab0a94588671348a6756b5d5ce999ac684d912125e5d070"}, 0x20)

[  665.166648] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  665.185179] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  665.191900]         reason=80000021 qualification=0000000000000000
[  665.201449] RFLAGS=0x00000002         DR7 = 0x0000000000000400
03:33:39 executing program 0:
r0 = socket$kcm(0x2, 0x1000000000005, 0x0)
pipe(&(0x7f0000000080))
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x0, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000040)=r1, 0xfffffffffffffff2)
sendmsg$kcm(r0, &(0x7f00000004c0)={&(0x7f00000001c0)=@ipx={0x4, 0x66a96762, 0x10000, "7cc35ecdcf86", 0x580000000000}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000240)="9b1eaff8dc7a87d01e763dd80b6ef4ec08b5903dfbda", 0x16}, {&(0x7f0000000280)="f12d106230c054b38f56de6a14d8574f81b36c20422336a5e77a145bb5ae99cf2a415df9ca74de9c65f7456f3518cb7c18f415ba1ba435e86bf4b64a3f6246cd187517f3aeea94822acc5793b068db5ee9e72fc061dcb0f2751178ab3c9709de", 0x60}, {&(0x7f0000000300)="4d1202c4ca4e95c54f042692c336bf13b24b000e19bb5e98e8011dfa345a88e6a5c6d4e387f114addcc417aa20df95e816b81634850b7bb1b5e106fc826f61f1aa463a8ad8c871e8b22fbfb248e91fc37dff1ccf9e942ecda1eae9a57255b9bee219798b01e7d9fe9b0a1f1432cbe59321b55b8c", 0x74}, {&(0x7f0000000380)="b2cf680d6cb332dce10a2b70a892f0508c842ad7b3b79bb7000f27e24ed2a394", 0x20}, {&(0x7f00000003c0)="98cc9b7223ced2002f597793c10131ce9c38c3b2fb564a114e5b85e79fa124c7c1f1b146e5", 0x25}, {&(0x7f0000000400)="1b62f6254ded001318b030537d90f5af1670e5477053cd665c3f02a41344002f88a0a2212c922e48b639d0fb6e25fce9b25dd45d7e5b8fdbde71c21a4512c189d9e383f3498a1f0293a4fc1b21d7e6d6c3ed95c1f871f0f5d99828069b3431c733a67571141ef4054868397d6999cca8e202c874d8e0fc36c7ee173dfb7f4042763f76dd4ea5ea58c23db4a14ea61525baea01f0aa8a4f6e", 0x98}, {&(0x7f0000000540)="f571d8a724286065f883beb77ac849a4488abee509d94f6ff7db2ca086c8011712b224ea8c3fd370112607e3f4819fce999c00b653de42d87ffac22566cb88016cee7b06312a5e4e866f1f83446055d19158844fb0dfabf1159812a89d03872e5eb1659f6dbc385e1cf87bf070d7a8987bc51522def6e9317cf0b43d9ff87a50d7275c4418c5b18e953f4ccd54377ab5407d1eb2f41b9056325f286c554d162bfe0bd156bc3e66ed2b3ce96f67332ef275866655e5c07fcafe08a440ce9c62ce3d791ba15ab45f528c0668a708c056b01d1b5650d6fc1c1269275e5d564c1680ae955c48b63c652c95cb6c91641226d8fe6cbce11cf369b587", 0xf9}], 0x7, &(0x7f0000003200)=ANY=[@ANYBLOB="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"], 0x1468, 0x14}, 0x40)
sendmsg$kcm(r0, &(0x7f0000001d40)={&(0x7f0000000740)=@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x16}}, 0x80, &(0x7f0000001c00)=[{&(0x7f0000001bc0)="01", 0x1}], 0x1}, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x50081, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000080)=ANY=[], &(0x7f0000000100))
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000140)={0x0, 0x80000000}, &(0x7f0000000180)=0x8)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

[  665.214879] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  665.228998] IDTVectoring: info=00000000 errcode=00000000
[  665.234517] TSC Offset = 0xfffffe9a12d4178b
[  665.243938] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.265512] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.273807] EPT pointer = 0x00000001b35bb01e
[  665.280184] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.289472] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.297662] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:39 executing program 2:
r0 = memfd_create(&(0x7f0000000100)='/dev/video#\x00', 0x6)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_INTERVAL(r0, 0xc040564b, &(0x7f0000000040)={0x4, 0x9, 0x701d, 0x101, 0x1, {0x4f, 0x9}, 0x1})
fanotify_mark(r0, 0x2, 0x0, r0, &(0x7f00000000c0)='./file0\x00')
ioctl$BLKSECDISCARD(r0, 0x127d, &(0x7f0000000080))
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x3, 0x408000)
r2 = syz_open_dev$video(&(0x7f0000000200)='/dev/video#\x00', 0xfff, 0x0)
ioctl$VIDIOC_DBG_G_CHIP_INFO(r0, 0xc0c85666, &(0x7f0000000240)={{}, "8fcfbd54bacdc1f1ae0b00194d50ccbb82265266b7cd900e4c274051edac82c2", 0x3})
dup2(r1, r2)

03:33:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x0, 0x43ff)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000400)="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", 0x1000}], 0x1)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000080)=0x2, 0x4)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_dccp_int(r1, 0x21, 0x1b, &(0x7f00000001c0), &(0x7f00000002c0)=0x4)
ioctl$KDSIGACCEPT(r3, 0x4b4e, 0x19)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000001400)={0x1, {{0xa, 0x4e21, 0x2, @mcast2, 0x8}}, {{0xa, 0x4e24, 0x9, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xe}}, 0x5b9}}}, 0x108)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r3, 0x10e, 0x2, &(0x7f00000000c0)=0xf, 0x4)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  665.318803] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.342262] *** Guest State ***
[  665.345557] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  665.377470] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  665.391205] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  665.393699] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  665.438879] CR3 = 0x0000000000000000
[  665.442746] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  665.449633] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  665.458881] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  665.466374] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  665.480493] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  665.488478] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.493687] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  665.516492] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.518686] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  665.525325] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.540367] Interruptibility = 00000000  ActivityState = 00000000
[  665.540545] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.546833] *** Host State ***
[  665.555322] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.558071] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3737390
[  665.566248] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.572349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  665.580440] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  665.586540] FSBase=00007fafd13eb700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  665.594756] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  665.610464] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  665.610764] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  665.616485] CR0=0000000080050033 CR3=00000001be262000 CR4=00000000001426f0
[  665.624713] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  665.639661] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  665.639934] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  665.657413] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  665.658562] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  665.665274] Interruptibility = 00000008  ActivityState = 00000000
[  665.682583] *** Host State ***
[  665.685876] RIP = 0xffffffff8120262c  RSP = 0xffff8801834f7390
[  665.692594] *** Control State ***
[  665.696197] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  665.703247] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  665.703331] EntryControls=0000d1ff ExitControls=002fefff
[  665.715667] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  665.718586] FSBase=00007fecb7d12700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  665.722852] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  665.736492] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  665.737227] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  665.749841] CR0=0000000080050033 CR3=00000001b900a000 CR4=00000000001426f0
[  665.756861] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  665.764886]         reason=80000021 qualification=0000000000000000
[  665.771536] IDTVectoring: info=00000000 errcode=00000000
[  665.777128] TSC Offset = 0xfffffe99ba7adf5b
[  665.782201] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  665.788257] *** Control State ***
[  665.791898] EPT pointer = 0x00000001b9cee01e
[  665.796512] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  665.808801] EntryControls=0000d1ff ExitControls=002fefff
[  665.814432] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  665.821878] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  665.829723] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  665.836875]         reason=80000021 qualification=0000000000000000
[  665.838716] *** Guest State ***
[  665.843324] IDTVectoring: info=00000000 errcode=00000000
[  665.847018] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  665.852072] TSC Offset = 0xfffffe9a12d4178b
[  665.852082] EPT pointer = 0x00000001cd36a01e
03:33:39 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
r3 = syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
ioctl$KDGKBMODE(r3, 0x4b44, &(0x7f0000000040))
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:39 executing program 0:
io_setup(0x9, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$md(0xffffffffffffff9c, &(0x7f0000000280)='/dev/md0\x00', 0x0, 0x0)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x400, 0x0)
ioctl$UI_SET_SNDBIT(r2, 0x4004556a, 0xff80000000000)
write$P9_RRENAME(r2, &(0x7f00000000c0)={0x7, 0x15, 0x1}, 0x7)
close(r1)
syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0xffffffffffffffff, 0x2)
io_submit(r0, 0x1ffffffffffffe76, &(0x7f0000000b00)=[&(0x7f00000002c0)={0x7fffffffefff, 0x0, 0x0, 0x80000000005, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff9c}])
execve(&(0x7f0000000100)='./file0\x00', &(0x7f00000003c0)=[&(0x7f0000000140)='/dev/radio#\x00', &(0x7f0000000180)="657468318a626465762f7d2a76626f786e657430656d3000", &(0x7f00000001c0)='/dev/mixer\x00', &(0x7f0000000200)='/dev/md0\x00', &(0x7f0000000240)='\'.bdevem0\'\x00', &(0x7f0000000300)='nodevwlan0ppp1!procuser}eth0em0:proceth0\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='/dev/md0\x00'], &(0x7f0000000440)=[&(0x7f0000000400)='/dev/md0\x00'])

[  665.888598] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  665.908526] CR3 = 0x0000000000000000
[  665.912345] RSP = 0x0000000000000f80  RIP = 0x0000000000008000
[  665.921365] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  665.927441] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  665.935361] CS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.944963] DS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.961136] SS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  665.988599] ES:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  666.007421] *** Guest State ***
[  666.010875] FS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  666.019871] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  666.020137] GS:   sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000
[  666.028918] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  666.036922] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[  666.046022] CR3 = 0x0000000000000000
[  666.054494] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[  666.057561] 
[  666.065715] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  666.067081] ======================================================
[  666.067085] WARNING: possible circular locking dependency detected
[  666.067092] 4.20.0-rc1-next-20181109+ #110 Not tainted
[  666.067095] ------------------------------------------------------
[  666.067100] kworker/1:2/6066 is trying to acquire lock:
[  666.067108] 00000000c14d99f1 (&mdev->req_queue_mutex){+.+.}, at: v4l2_release+0x1d7/0x3a0
[  666.075340] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  666.081340] 
[  666.081340] but task is already holding lock:
[  666.081344] 00000000b09772dd ((delayed_fput_work).work){+.+.}, at: process_one_work+0xb9a/0x1c40
[  666.081368] 
[  666.081368] which lock already depends on the new lock.
[  666.081368] 
[  666.081371] 
[  666.081371] the existing dependency chain (in reverse order) is:
[  666.081374] 
[  666.081374] -> #3 ((delayed_fput_work).work){+.+.}:
[  666.081396]        process_one_work+0xc0a/0x1c40
[  666.088040] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  666.092952]        worker_thread+0x17f/0x1390
[  666.092963]        kthread+0x35a/0x440
[  666.092982]        ret_from_fork+0x3a/0x50
[  666.092986] 
[  666.092986] -> #2 ((wq_completion)"events"){+.+.}:
[  666.099597] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  666.104631]        flush_workqueue+0x30a/0x1e10
[  666.104711]        vim2m_stop_streaming+0x7c/0x2c0
[  666.104760]        __vb2_queue_cancel+0x171/0xd20
[  666.113255] Interruptibility = 00000008  ActivityState = 00000000
[  666.120958]        vb2_core_queue_release+0x26/0x80
[  666.120980]        vb2_queue_release+0x15/0x20
[  666.120992]        v4l2_m2m_ctx_release+0x1e/0x35
[  666.121026]        vim2m_release+0xe6/0x150
[  666.127161] *** Host State ***
[  666.135864]        v4l2_release+0x224/0x3a0
[  666.135877]        __fput+0x3bc/0xa70
[  666.135887]        ____fput+0x15/0x20
[  666.135896]        task_work_run+0x1e8/0x2a0
[  666.135919]        exit_to_usermode_loop+0x318/0x380
[  666.144430] RIP = 0xffffffff8120262c  RSP = 0xffff88011c83f390
[  666.151803]        do_syscall_64+0x6be/0x820
[  666.151819]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  666.151823] 
[  666.151823] -> #1 (&dev->dev_mutex){+.+.}:
[  666.151842]        __mutex_lock+0x166/0x16f0
[  666.151851]        mutex_lock_nested+0x16/0x20
[  666.151860]        vim2m_release+0xbc/0x150
[  666.151880]        v4l2_release+0x224/0x3a0
[  666.159132] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  666.163074]        __fput+0x3bc/0xa70
[  666.163085]        ____fput+0x15/0x20
[  666.163100]        task_work_run+0x1e8/0x2a0
[  666.169713] FSBase=00007fafd13ca700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000
[  666.173958]        exit_to_usermode_loop+0x318/0x380
[  666.173972]        do_syscall_64+0x6be/0x820
[  666.173989]        entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  666.177887] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  666.182046] 
[  666.182046] -> #0 (&mdev->req_queue_mutex){+.+.}:
[  666.182068]        lock_acquire+0x1ed/0x520
[  666.182078]        __mutex_lock+0x166/0x16f0
[  666.182101]        mutex_lock_nested+0x16/0x20
[  666.182119]        v4l2_release+0x1d7/0x3a0
[  666.188837] CR0=0000000080050033 CR3=00000001be262000 CR4=00000000001426f0
[  666.195935]        __fput+0x3bc/0xa70
[  666.195947]        delayed_fput+0x55/0x80
[  666.195971]        process_one_work+0xc8b/0x1c40
[  666.201061] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87e01360
[  666.205509]        worker_thread+0x17f/0x1390
[  666.205521]        kthread+0x35a/0x440
[  666.205537]        ret_from_fork+0x3a/0x50
[  666.210669] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  666.216555] 
[  666.216555] other info that might help us debug this:
[  666.216555] 
[  666.216558] Chain exists of:
[  666.216558]   &mdev->req_queue_mutex --> (wq_completion)"events" --> (delayed_fput_work).work
[  666.216558] 
[  666.216574]  Possible unsafe locking scenario:
[  666.216574] 
[  666.216577]        CPU0                    CPU1
[  666.216585]        ----                    ----
[  666.221883] *** Control State ***
[  666.226131]   lock((delayed_fput_work).work);
[  666.226138]                                lock((wq_completion)"events");
[  666.226145]                                lock((delayed_fput_work).work);
[  666.226150]   lock(&mdev->req_queue_mutex);
[  666.231217] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca
[  666.235271] 
[  666.235271]  *** DEADLOCK ***
[  666.235271] 
[  666.235279] 2 locks held by kworker/1:2/6066:
[  666.235283]  #0: 00000000ed0a5637 ((wq_completion)"events"){+.+.}, at: process_one_work+0xb43/0x1c40
[  666.238727] EntryControls=0000d1ff ExitControls=002fefff
[  666.242775]  #1: 00000000b09772dd ((delayed_fput_work).work){+.+.}, at: process_one_work+0xb9a/0x1c40
[  666.242801] 
[  666.242801] stack backtrace:
[  666.246629] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  666.250453] CPU: 1 PID: 6066 Comm: kworker/1:2 Not tainted 4.20.0-rc1-next-20181109+ #110
[  666.250460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  666.250492] Workqueue: events delayed_fput
[  666.250497] Call Trace:
[  666.250511]  dump_stack+0x244/0x39d
[  666.250528]  ? dump_stack_print_info.cold.1+0x20/0x20
[  666.255988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  666.260041]  ? vprintk_func+0x85/0x181
[  666.260059]  print_circular_bug.isra.35.cold.56+0x1bd/0x27d
[  666.266188] VMExit: intr_info=00000000 errcode=00000000 ilen=00000001
[  666.270385]  ? save_trace+0xe0/0x290
[  666.270399]  __lock_acquire+0x3399/0x4c20
[  666.270412]  ? graph_lock+0x270/0x270
[  666.270432]  ? mark_held_locks+0x130/0x130
[  666.276667]         reason=80000021 qualification=0000000000000000
[  666.281814]  ? __update_load_avg_se+0xae0/0xae0
[  666.281870]  ? mcast_work_handler+0xedc/0x20a0
[  666.281886]  ? lock_unpin_lock+0x4a0/0x4a0
[  666.281897]  ? update_load_avg+0x387/0x2470
[  666.281913]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  666.286664] IDTVectoring: info=00000000 errcode=00000000
[  666.290853]  ? attach_entity_load_avg+0x860/0x860
[  666.290866]  ? graph_lock+0x270/0x270
[  666.290877]  ? perf_trace_lock+0x14d/0x7a0
[  666.290916]  ? unwind_dump+0x190/0x190
[  666.290931]  ? lock_is_held_type+0x210/0x210
[  666.295882] TSC Offset = 0xfffffe99ba7adf5b
[  666.299530]  ? graph_lock+0x270/0x270
[  666.299543]  ? lock_is_held_type+0x210/0x210
[  666.299560]  lock_acquire+0x1ed/0x520
[  666.299578]  ? v4l2_release+0x1d7/0x3a0
[  666.306056] EPT pointer = 0x00000001cd7a601e
[  666.309751]  ? lock_release+0xa10/0xa10
[  666.309764]  ? perf_trace_sched_process_exec+0x860/0x860
[  666.309783]  ? print_usage_bug+0xc0/0xc0
[  666.313820] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  666.317950]  ? v4l2_release+0x1d7/0x3a0
[  666.317971]  __mutex_lock+0x166/0x16f0
[  666.326957] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  666.330825]  ? v4l2_release+0x1d7/0x3a0
[  666.330839]  ? v4l2_release+0x1d7/0x3a0
[  666.330853]  ? mutex_trylock+0x2b0/0x2b0
[  666.330863]  ? __lock_acquire+0x62f/0x4c20
[  666.330878]  ? rcu_read_unlock_special+0x370/0x370
[  666.740368]  ? mark_held_locks+0x130/0x130
[  666.744582]  ? perf_trace_lock+0x14d/0x7a0
[  666.748812]  ? lock_is_held_type+0x210/0x210
[  666.753222]  ? mark_held_locks+0x130/0x130
[  666.757442]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  666.762976]  ? check_preemption_disabled+0x48/0x280
[  666.767974]  ? graph_lock+0x270/0x270
[  666.771756]  ? debug_smp_processor_id+0x1c/0x20
[  666.776411]  ? perf_trace_lock+0x14d/0x7a0
[  666.781948]  ? check_preemption_disabled+0x48/0x280
[  666.787730]  ? check_preemption_disabled+0x48/0x280
[  666.792730]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  666.799865]  ? fsnotify+0x50e/0xef0
[  666.803472]  ? __lock_is_held+0xb5/0x140
[  666.807512]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  666.813077]  ? locks_remove_file+0x3c6/0x5c0
[  666.817479]  ? __sanitizer_cov_trace_const_cmp2+0x18/0x20
[  666.823020]  ? ima_file_free+0x132/0x650
[  666.827065]  ? fsnotify_first_mark+0x350/0x350
[  666.831627]  ? ima_file_check+0x130/0x130
[  666.836282]  ? vivid_remove+0x460/0x460
[  666.840239]  mutex_lock_nested+0x16/0x20
[  666.844277]  ? mutex_lock_nested+0x16/0x20
[  666.848491]  v4l2_release+0x1d7/0x3a0
[  666.852272]  __fput+0x3bc/0xa70
[  666.855545]  ? dev_debug_store+0x140/0x140
[  666.859759]  ? get_max_files+0x20/0x20
[  666.863634]  delayed_fput+0x55/0x80
[  666.867247]  process_one_work+0xc8b/0x1c40
[  666.871462]  ? mark_held_locks+0x130/0x130
[  666.875681]  ? pwq_dec_nr_in_flight+0x4a0/0x4a0
[  666.880330]  ? preempt_notifier_register+0x200/0x200
[  666.885414]  ? __switch_to_asm+0x34/0x70
[  666.889463]  ? __switch_to_asm+0x34/0x70
[  666.893502]  ? __switch_to_asm+0x40/0x70
[  666.897538]  ? __switch_to_asm+0x34/0x70
[  666.901593]  ? __switch_to_asm+0x40/0x70
[  666.905635]  ? __switch_to_asm+0x34/0x70
[  666.909677]  ? __switch_to_asm+0x34/0x70
[  666.913723]  ? __switch_to_asm+0x40/0x70
[  666.917767]  ? __switch_to_asm+0x34/0x70
[  666.921811]  ? __switch_to_asm+0x40/0x70
[  666.925848]  ? __switch_to_asm+0x34/0x70
[  666.929889]  ? __switch_to_asm+0x40/0x70
[  666.933933]  ? __switch_to_asm+0x34/0x70
[  666.937977]  ? __sched_text_start+0x8/0x8
[  666.942101]  ? graph_lock+0x270/0x270
[  666.945878]  ? __sched_text_start+0x8/0x8
[  666.950008]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  666.954583]  ? find_held_lock+0x36/0x1c0
[  666.958636]  ? lock_acquire+0x1ed/0x520
[  666.962590]  ? worker_thread+0x3e0/0x1390
[  666.966725]  ? kasan_check_write+0x14/0x20
[  666.970939]  ? do_raw_spin_lock+0x14f/0x350
[  666.975241]  ? __schedule+0x21d0/0x21d0
[  666.979198]  ? rwlock_bug.part.2+0x90/0x90
[  666.983414]  ? trace_hardirqs_on+0x310/0x310
[  666.987807]  worker_thread+0x17f/0x1390
[  666.991768]  ? preempt_notifier_register+0x200/0x200
[  666.996858]  ? process_one_work+0x1c40/0x1c40
[  667.001337]  ? __schedule+0x8d7/0x21d0
[  667.005205]  ? kmem_cache_alloc_trace+0x152/0x750
[  667.010032]  ? __sched_text_start+0x8/0x8
[  667.014185]  ? __kthread_parkme+0xce/0x1a0
[  667.018414]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  667.023500]  ? _raw_spin_unlock_irqrestore+0x82/0xd0
[  667.028585]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  667.033153]  ? trace_hardirqs_on+0xbd/0x310
[  667.037457]  ? kasan_check_read+0x11/0x20
[  667.041588]  ? __kthread_parkme+0xce/0x1a0
03:33:41 executing program 3:
r0 = socket$inet6(0xa, 0x7fc, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = dup2(r0, r1)
clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000040), 0xffffffffffffffff)
r3 = getpid()
listen(r1, 0x0)
sched_setscheduler(r3, 0x5, &(0x7f0000000200))
setsockopt$inet6_group_source_req(r2, 0x29, 0x1a, &(0x7f0000000380)={0x0, {{0xa, 0x0, 0x0, @local}}, {{0xa, 0x0, 0x0, @dev}}}, 0x3)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x0, 0xf}}, 0x20)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
write$RDMA_USER_CM_CMD_CONNECT(r2, &(0x7f0000000240)={0x6, 0x118, 0xfa00, {{0x4, 0x2, "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", 0xbc, 0x9, 0x0, 0x6, 0xf2, 0x1, 0x7fffffff}, r4}}, 0x120)
openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/qat_adf_ctl\x00', 0x2000, 0x0)

03:33:41 executing program 2:
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$KDGKBLED(r0, 0xc0045401, &(0x7f0000000000))
r1 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x3, 0x10000)
ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000140)=0x53ff)
write$P9_RXATTRCREATE(r1, &(0x7f0000000100)={0x7, 0x21, 0x2}, 0x7)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000080)={0xb712, 0xfffffffffffffbff, 0x100})

[  667.045807]  ? trace_hardirqs_off_caller+0x300/0x300
[  667.050891]  ? __schedule+0x21d0/0x21d0
[  667.054851]  ? _raw_spin_unlock_irqrestore+0x6d/0xd0
[  667.059940]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  667.065462]  ? __kthread_parkme+0xfb/0x1a0
[  667.069678]  ? process_one_work+0x1c40/0x1c40
[  667.074158]  kthread+0x35a/0x440
[  667.077509]  ? kthread_stop+0x8f0/0x8f0
[  667.081482]  ret_from_fork+0x3a/0x50
03:33:41 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r2 = msgget$private(0x0, 0x8)
msgrcv(r2, &(0x7f0000000040)={0x0, ""/183}, 0xbf, 0x3, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

03:33:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f00000000c0)=[@in={0x2, 0x4e22, @rand_addr=0xfffffffffffffffd}, @in6={0xa, 0x4e21, 0x0, @remote, 0x80000001}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0xb}}], 0x3c)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r3, 0xae80, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff}, 0x13f, 0x7}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x800, @remote, 0x4}, {0xa, 0x4e24, 0x5, @remote, 0x1}, r4}}, 0x48)
faccessat(r3, &(0x7f0000000080)='./file0\x00', 0x100, 0x100)

03:33:41 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00')
r2 = creat(&(0x7f0000000200)='./file0\x00', 0x80)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB='M\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="070f0000000000000000080000001400010008000500000000000800010002000000"], 0x28}}, 0x0)
openat$cgroup_procs(r2, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
r3 = accept$inet6(0xffffffffffffff9c, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000100)=0x1c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
fanotify_mark(r2, 0x8, 0x40000000, r2, &(0x7f0000000280)='./file0/file0\x00')

[  667.092806] kobject: 'loop5' (00000000c7642185): kobject_uevent_env
[  667.110303] kobject: 'loop5' (00000000c7642185): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  667.112750] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.134353] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
03:33:41 executing program 2:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/fuse\x00', 0x2, 0x0)
r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x1)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x400100, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000180)={{0xbaa, 0x5, 0x4, 0x10000}, 'syz1\x00', 0x41})
getxattr(&(0x7f0000000700)='./file0\x00', 0x0, &(0x7f0000000380)=""/88, 0x58)
perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x2, 0x0, 0x0, 0xffffffffffffffe0, 0x0, 0x6997, 0x4, 0x0, 0x3, 0x0, 0x8, 0x1f, 0xfffffffffffffcd1, 0x800, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x7f, 0x7fffffff, 0x6, 0x6, 0xae1, 0x0, 0x5, 0x0, 0x4, 0xee, 0x0, 0xffffffffffffffff, 0xe, 0x0, 0x200, 0x1, 0x0, 0x401, 0x4, @perf_config_ext={0x9, 0x7}, 0x1, 0x5, 0xfffffffffffffffb, 0x6, 0x4, 0x0, 0x7f}, 0x0, 0x7, r1, 0x8)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000500)={0x0, 0xffffffffffffffff, 0x3}, 0x14)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000580)=0x100000001)
fstat(r2, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000540)='fuse\x00', 0x803d, &(0x7f0000000cc0)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4002}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r3}})
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50)
umount2(&(0x7f0000000680)='./file0\x00', 0x3)
stat(&(0x7f0000000480)='./file0\x00', &(0x7f00000005c0))
getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000300)={<r4=>0x0, 0x9}, &(0x7f0000000340)=0x8)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000400)={r4, 0x8}, 0x8)

03:33:41 executing program 3:
r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
connect$l2tp(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e22, @broadcast}, 0x4}}, 0xffffffffffffffc2)
ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback})
io_setup(0x0, &(0x7f0000000000))
ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000280)={&(0x7f0000ffc000/0x3000)=nil, 0x7fffffff, 0x5, 0x40, &(0x7f0000ffc000/0x3000)=nil, 0x9})
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000180)=[@mss, @mss, @mss], 0x3)
getsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000080), &(0x7f00000001c0)=0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
r3 = userfaultfd(0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000c34000))
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
close(r3)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000900)=ANY=[@ANYRES32=<r6=>0x0, @ANYBLOB="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"], &(0x7f00000007c0)=0xe4)
setsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f0000000300)=0x2, 0x4)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000840)={r6, 0x3c, "be6eaedd07da101044793caf5ba1b3b1bf0083332c0761b32e7d93e33096742eeaae50a44cf4d5b87c8ba51212569a84c0fa4aafe3e35c737ac3deac"}, &(0x7f00000008c0)=0x44)
write(r4, &(0x7f0000000400)="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", 0x200)
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000240))
sendfile(r4, r5, 0x0, 0x1000f)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x25dfdbff, 0x40000}, 0xc)

[  667.164451] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.167918] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.178357] kobject: 'loop2' (00000000136ae17f): kobject_uevent_env
[  667.186556] kobject: 'loop2' (00000000136ae17f): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  667.197426] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
03:33:41 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x3, 0x8}, {0x7f, 0x2f7}, 0xffffffffffffff22, 0x4, 0x10000})
ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000080)={0x1, 0x10001, 0x8001, 0x3, 0x18, 0x7fff})

[  667.205801] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.216640] kobject: 'loop3' (000000003900671f): kobject_uevent_env
[  667.224149] kobject: 'loop3' (000000003900671f): fill_kobj_path: path = '/devices/virtual/block/loop3'
[  667.249299] kobject: 'þ€' (000000001aa6c739): kobject_add_internal: parent: 'net', set: 'devices'
[  667.259914] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.268756] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  667.280173] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.286010] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  667.302964] audit: type=1800 audit(2000000021.260:75): pid=22983 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor3" name="file0" dev="sda1" ino=16687 res=0
[  667.314919] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  667.325060] kobject: 'þ€' (000000001aa6c739): kobject_uevent_env
03:33:41 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x3, 0x8}, {0x7f, 0x2f7}, 0xffffffffffffff22, 0x4, 0x10000})
ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000080)={0x1, 0x10001, 0x8001, 0x3, 0x18, 0x7fff})

[  667.358964] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.368223] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.374361] audit: type=1804 audit(2000000021.260:76): pid=22983 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor3" name="/root/syzkaller-testdir816342802/syzkaller.OdVkqM/282/file0" dev="sda1" ino=16687 res=1
[  667.379751] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
03:33:41 executing program 2:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080)='/dev/urandom\x00', 0x0, 0x0)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x40, 0x0)
ioctl$DRM_IOCTL_ADD_BUFS(r1, 0xc0206416, &(0x7f0000000040)={0x15, 0x7, 0x5, 0x2, 0x14, 0x6})
recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0, 0x0, 0x0, 0xd5}}], 0x1, 0x0, 0x0)
readv(r0, &(0x7f00000007c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x30e)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000440)={{{@in6=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{}, 0x0, @in6=@mcast1}}, &(0x7f0000000540)=0xe8)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x7, 0x2, &(0x7f0000000140)=ANY=[@ANYBLOB="e1840812e98233a6bc27b459e8228bee0444fe54631a53e41277ca0c3578afc39e36ebb4048b6c9262f6c5586eb548fdc3daf172cac0eb098ec4f0a49752bb4957f40230457ffddb5ee7414a8b5f52c86b7380842e590a87fa58b1570e6763fd59b064b1c1ed86bac073b0dc1b285e57f692e8a285497609f3"], &(0x7f0000000100)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41f00, 0x1, [], r2, 0x8}, 0xffffffd2)
socket$inet6_dccp(0xa, 0x6, 0x0)

[  667.402429] kobject: 'þ€' (000000001aa6c739): fill_kobj_path: path = '/devices/virtual/net/þ€'
[  667.409591] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.428902] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.430579] kobject: 'loop2' (00000000136ae17f): kobject_uevent_env
[  667.438993] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.453978] GDTR:                           limit=0x00000002, base=0x0000000000000000
[  667.458897] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.465281] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  667.470245] kobject: 'loop2' (00000000136ae17f): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  667.478260] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  667.492325] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.507651] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  667.533291] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  667.541612] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  667.544448] kobject: 'loop4' (00000000d9f5812f): kobject_uevent_env
[  667.550890] Interruptibility = 00000000  ActivityState = 00000000
[  667.561760] kobject: 'loop4' (00000000d9f5812f): fill_kobj_path: path = '/devices/virtual/block/loop4'
[  667.573243] kobject: 'queues' (000000000013d2bc): kobject_add_internal: parent: 'þ€', set: '<NULL>'
[  667.574551] *** Host State ***
[  667.588448] RIP = 0xffffffff8120262c  RSP = 0xffff8801c3737390
[  667.596504] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  667.603812] kobject: 'queues' (000000000013d2bc): kobject_uevent_env
[  667.605729] FSBase=00007fecb7d96700 GSBase=ffff8801dae00000 TRBase=fffffe0000033000
[  667.618830] kobject: 'queues' (000000000013d2bc): kobject_uevent_env: filter function caused the event to drop!
[  667.640518] kobject: 'rx-0' (000000007ed047bd): kobject_add_internal: parent: 'queues', set: 'queues'
[  667.648442] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
[  667.657864] CR0=0000000080050033 CR3=00000001b685c000 CR4=00000000001426f0
[  667.661713] kobject: 'rx-0' (000000007ed047bd): kobject_uevent_env
[  667.666538] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  667.679511] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  667.681803] kobject: 'rx-0' (000000007ed047bd): fill_kobj_path: path = '/devices/virtual/net/þ€/queues/rx-0'
[  667.687142] *** Control State ***
[  667.700727] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  667.710588] EntryControls=0000d1ff ExitControls=002fefff
[  667.711958] kobject: 'tx-0' (00000000c8779190): kobject_add_internal: parent: 'queues', set: 'queues'
[  667.716042] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  667.716051] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  667.716059] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  667.716066]         reason=80000021 qualification=0000000000000000
[  667.716073] IDTVectoring: info=00000000 errcode=00000000
03:33:41 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="638b6775d66d66de77173e70b603f3e6483b69849743a7b90398af49cfba40f42b3f19768403d8d7d5080ebf34cdbd2c85f5621fbe3002790a4f40a46b5fbc98ffc9472f3d8baf64994b6fbbb06fe61cef1c1423b9d23428f8d69cb1e306965e"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:41 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x3, 0x8}, {0x7f, 0x2f7}, 0xffffffffffffff22, 0x4, 0x10000})
ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000080)={0x1, 0x10001, 0x8001, 0x3, 0x18, 0x7fff})

03:33:41 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="dd3812736c2c81819abb932f0a85c0e1ebf8c47f8430375ba9c17cfd54ba36ca8a82d86e2e28b9141dd127f84f7c7c4d43d5d217a902bebb3f1f56f81a96bdac60b205636d9c02592435b91e72d12048f2eb98851224adb36a6087435c5543d5ab331ffd5b88b655d9d05b687f2c11b3731e9dafd5ea8290507326303cb5b6a54e4685e82df86e74a508821c9f519207e3881918d77157c53ded482bcfcc56712da402c333fb2d33f25af12fe046a0615805393c6f41c27109d339ca003cdcc74b2391daf90d79790493bcda056ff433b6dddcf9e211d6af72cb79a9d3692cabb6ea65c59460926ca8d87e4e98c8a978bca4a08f1de73c882d1611f1579e60ca5de8095d95933e556fc674b00856a36bac1f7d854fdb91cbc7ff4737e01d1b661dc9d20ee3f0a598e4ec5ccaa26b7efe2784951090f89f196e7314279a35c9a4305e40c29fb60a2a3daf2c80e14dc6069733cc269cd88aed700e1d512096d86a29a4a3151df0eeb4b766ec2d100432e120694208180a98fd29a35dd8e950fde0490dd89fce8ea19ebbc8411f49d617e3139a0e7a191de8d03658d3deb43bdbcf1de15e952c161bf610eea88f6d35a59df5ef7744d545ff97932cf90dceb305b9ed68b81667ba5c85e97066fbc5324ca7b50e9b8a7f8c914d30e004166601ce743ae5321aaaeb270f9eb577b9123f52d25916030d0eb5db2350a240142b5bebc4fdf48974c02cfa4b698a6006cf5a0e91e96d212bcd80d4e26db27a275be3177e1860829180a0671afae5735f9b21608647b404271a5540ccbe241cc276c177beedf6b5f59258b2054e44a1542f6e00c80a08aa5df700a06e200dc835554064a43fa9a739531e5a25a8043e27d7e177c462ed242846554b9875346341e847cfbd64f8d87131d21fb6ce509cac54659d41b51b2481a28c49e1bd12c15cb60783789519fe7c171c760d05ef7746afd483cdbab66771badaca8557983105e5b10b51d114edd2cd8b9bd967ee95783adf6778d78a178d00e94bacf810a1a3b17bd89aed3bf7c883ee013655b2fda468f909b2fc53fe098b02b165fde7e1468669b180765cda37093be8cd7d42d1205bcbbc44ca3730f9b5829e041fa2546142ac2259b47b481b3847f9d975298c80974f16cd5cf55a64a2574fdae6738f46c9c8cc1670ac7a9988adc2e9a43d73b48a203934638d85d2dccfe0e01b6036f9f290395eb1146540f13656103594bdd18cf8ab11c3bc2ff715e4ea2125f03c1f45f347958d34fc0818ebed3084d1fe06ad6645f642f9096869d0eb8e29e37736e21d0ace9ff6dec338acb78791ea92a2a97c0d1aab62409b55a209e71b224198dd873ead725ecc8561a88e82ec44c5420a18932cba141d05dd6689c47dc4c77fc837c0b186af2ae61ba28706753a2feb79c85fec35fcb611e56bbe378f2990b1e044c927945be82b20a6f8c153a6764f7c2b07a670eda0af7d08d37bfa77509fd46084aaad824e98b312078775859d1a938e53d8675006c8a8ca9529b97a40f28166c350b38f0f054fca66ee8f5d2da2861b9a262d74b9884e63d1138be4519e0f76e43629ed0246ffd61a496a7c660554012223ccd33f33c0c618c3c2afbc19b4a477c472454eb0977cffe4079950d840a6798e49925c175e59b7ac55a19374c7252533ecf7ef9cc01cd53ad2cb38a7a5e2e615d64a54d6c4d81bd7945920e7e20e214cc4529c94b9afc7b2ec5a4a1979544ca19a978612daac4003b64f86ae89d9d5f82592854ed7fc1c571419711be5657875cdab31cd72658445183696e5f2fc40f5063379ce2d5c79c32706703f85631283ddfbcca206ea2c505985ab5c00887dd8bb5ec06e3b19e13a6a90ef8a7f3cd95b35c4104e81febf009716284e966c2941135f1889b6a900eadbb61ea8eb8a19c0a4b2989b07002f64d571a4b30b389c108207acc3c436314f555c05ad69ccbbaf6e5ae6b7c89ddb39ecbfdda9b2765bd69f14ee777aba9f8eed4e2f5369cb72d4b9cca9f107e756e55797df19a00dbde93ac42be4c520425ce9c8551e94005a89c172c9cb6ca0fcf19b08c42a37de4097293c8a460c1be8506b522aace08e20e409f34ab179a3d1eda32879900cc0e9d9d596a09ffec8ddc5d5b4563414cfcf17f12efaee1fc38a453b8c505339ef34176cab6f69792aec152fabd940620017ec5847cece70364494e6699e4dc7c41184e2a9812d4b946d18941fc7b67493b437edd9639dd4c4de5efe310fb7c240ed5f0b60aa2bf10905353bc701a117f5585e3dca70fef575e190146b67feedb5b1ad1b8cdeb842ffc2820a4cc020df12df0dfe23b72acb97b22cc6a6fcda0ded766831bcf29acad02450be8ada7138054ec327a5dd97410fe358082e41b1b92d1c2563c9d1f9bb6ed5e643843966353a33ea5ef44c79489633cd413b67659579378476c3b8c8a286ea666d010e182b59020c6a686f4a0c25dfab00286bdf505753922a58a3e12d7888d986f300ba36854f336c32aefef8b675326668281d593a02bc0ee0cbba0af4fd5d107333f5361f040a62c08233429501806f4f92bc4e844ddb3ff4db887e38e930ef318218a11365ab1c69bc5bda8c9823681acd518f498bd9ca72273b99f11cf378704df41d3ab5ba0a3c2d1d91754e1e6bd1adf39e58ea5e91b6989d5a6e38089784abed62ff388fa9e72fe4a36e501b08b6a8c1a95ceb9a6bbe91f243add11dbcb5307c16e649ab2d410b749989d1bc66e7d970dd614761223f2e944042fabf0f27d72d3bd2edc0d8fc64d9faebd2aa58e837459ed24bb6f10ab711b07ae5882a46e8d0315028a6de5d7b81667dc0d6264babc18e8730a12159e0ea04acb3cdf92f7bd5abc32b0c5fd449abc9845edf70660ca1c7f46f8af89717731e3b125efabc87bd1db4c4c32fd8ac375b07e69966d49e6ad477b72d47ec068f4f2be56dd39afc724b6e6956ce89a5542c4f268c5969c28ed98bec3b42bc08ba24b7516dd7be4fe2205f617d08c46146ff2436587fc8c486e35152226679a6a7477d8b7ec9451210f4b54543a5608509d49e031f7136d172b173841b382a157a781087e43bd06c1c545d93d873cf5c66b7210cd04fcb6cf3bc0445540bd86dfd7e9ebf0c836788f06535bf852c923e230922d30f2b7625c4e2ed80084db6b4a6d8bd6eddf7180916587edf49d9a93483a963a6ab2e2621f6bea7b85a62d1f845518bce7f6000bce3c7dc4a5747fff022f9e805bcfb3be03402c7e98fd531ce04199e6ba263a9cc41dbfbdecd7f44115f095108539a62211c3755383a86e7a14ebe456d539a74eccac4d6842196b73613b42ed6e5953e794dca9e0193ae726bd3cdb428ac7f5a23f91328bf586df0ba017199e9b8d600dca81c231b705ed37f6c3bfd8147cbb2befba6e85cb4e2e8ade83c49fefbce5c0260944190843781e90342bdcff251f34e7385161fa084f486ef071134efff0821fb66e0365d4b9b0bf658d41484419cc08a2d72be509139f5fe72cdbd2bde305b27495094513cc4309892422a6a93d66388c31b7d29f07c9a581528d876939fd9b27343194a086b9c78307b8063605fa337dc0852e69c6e4591cf2347346639709a440e3e6c9776933165f4a714e3d2681c07f087c18b3a0ac9f0ec49c38b9bee6b1327b1d0d83756c1daeeda339a8332536c60fb1798016907cc7e1c939f46357b51f478a67b76a13bbf68fbd01511132410f6ab6068f81d34572c9499128cfbebed82b3b7f08463d93c83f8e4745dbef95de0e64b480a0bdb732196e71c691d92725d15a3a0e877fc1322b6d195cbcf4ecffd985f0edcd515536849285b138128ff7152615d8dafaba6587f0bae4eea415bc85e3f22ade20a1a8f2c944d0523a3db809424ca37e03d7cfe4b8670f0404fdd8e933ab2c1ce043795619ca0654814fc4836b55405f713699c0d134600bb2e0f071c8c1a64d2539a3d4ccf2fcd52603c225c5ebe096bc3308e2fca9cef2ad6cf04936afed5999d533803d38a09974a0a87f8d57740e1e3865ec940db94b246eaf3708b790dbaff24819a095abb79f1fa25bb5ee89047bb939afd7c935b29fd579b4cbfa56b989b23c424f60bf64616ecf985819136fd37d3c2cff842dfced7e6cb5032fc01e46d2b45d793469679f54f961b6d33ea59c921e175315c0833e269f77fac5ad7fb2c2be9084c0f0f1899ecd09147d279afa3ca7b15c9837f0c9551becabf52178e20449011550b8af707657738bc13a2191d079cd6f7460b00c98c3735770d771f1d867af91ae37350d5916e13cbbb9bc410c10788b28fefd8cd2b1be8bbaadaf4fe249d8c0d1c68fc220f46656828255a2a28aec28d6bef5780d2fa73ed97b408de90edb90dfbf71674276456cf2f2e6e2cdf7ea297a9ee925a6587b1e8511298f60c5ed55ddfb547258a033e78f61585eb7ba5e4fb69fdf356f94d0b57cc2e2117dedacf64b604f56e0b9507e335389dfd8fcbd808c974124d0674bb10bb9cffed231c855a93314be2fe989c286952c3be5c0578721679eae6564badb36f9cf226473d751477928385d7e29dfa22fb12bb9426b91e5d233329909830f93ff0ae07cf5e1527557e6af9170475bb44b6f0cba43d7586b3ca8454e74bc281c71e7e8d3f9d83f261649e7326a1dbd6608474323f3d4b8ee5b2c11fd229cd21a890b117790b30e3c61117d73f7d7d454859859b57a3a93a5b07a957ea6d8687150a2f75b954430f938e933301671f3d2478f184dcdc742afd3c47f402bb9e0991fd33a6c1411a43fcf2028ea29c3d05ee4925029219721b5d9be3562ca78f58ddc8691f28c77413c8bc5d2f7956acc96137f252a60da56b53e1dac5739e0006b8cfd5f136939e631160be1dd5ff4933509d7f854cec5d61ee467835d56e2315352452e840f60fd22e906be50b11a99644b75785c145ba0970a08fdb2023a24266bb96367fb91dc514a33a20231519c22f3c2781ca9e565807235551c5673772bc29231b107bd0bb1d2cc0d4eb03b9f56b21e79f6eb4cee0fb9546086aa54d35ad5cb0a01b488a5b9dfe4caef06470a09b58337c938ed4b362d2a669960a3dcf5dd679ca2b68f9b4c5530e0fce222a992a2f273711904c891b94581f6b36de2cb5439578ffd6f7579e4d11d962168659a5560ef5ad49f4aa32d5bf2ea98b57e7dfe2474aa01f268f8359bdf29d9110b87d38f392ceeb54e003203c302aec44437d691583405f1aa0636a55012ac96e2f3427fcb56fd92a4751a3bb24a486e89b45e9938be421493d16356c033813e71a2bbb0fcd8d24f178d021e66432176975c466ce355f91a9710d650f9a712707d87b04b9260157c1e73927f14094de26d55f2e2a4b9e50f8ea89530553e96190a0c580e87f2188eee7350712161f98b729915d482edde4c945737f1a1dea07a07031c01745c6d566e87fd128dc47205db090495f03dba8b62a31cdcbbe6d0cc582854ea21d07a1efac7f4aa8f65b90a4f1b7a8bc67d49583aeeeba077ec1460c3eb02a76d5b54a64dc0a5f6de40230372eea566e8800dd2dbabb4aacffac26d19f40657d9fee495a82962db0a760241925c2adaeade712fbe86f96543d98492968bb6feef15fb58a17dcab5e58bcc8d3ff2d68cdbdf6891c263a53325ec1e28bd6e46bec26a5573da7d9fa8c99abc86cc5e395db38950238ba342d515fbbdfe0caadb6b8744205fdfc52e82b8239712dc0a851f5efb9a0bad347f844c63fdd117772deb47637fcb2e7310288dbc20d76c5c518682875315b1c77a0ec1e28c82efb", 0x1000}, {&(0x7f0000000280)="097497ed39e6025b3b408c4a062cc8f796ffe49b7a8bb9f24bf261e38cedb8ca2aa13100be4d861e9026a57e82aba96ab299d85d0cd93f1e93f914860f139e482b1ba3767e4434c272240f7bba9b61ca911d40a602db560e5d4873d0d3861ed30116d590908c62b3430aeaf62e76ba30a907e7fe1fd6a43c7fca8abd4454eae4bf3d339b167cc7b6bf747776dfac51e7eec7560c2865ee84c06e422278563c5d7a07ea334ffcfa82dbe919c96bb82cb58c45cce6c00096ed2a2bbb81eafdd627aa23e9e33bdb715e7b4cff235e34c239f9d45da56166a8e9554ca8a162e7a40664c8e3", 0xe3}, {&(0x7f00000013c0)="021de94c27785761066a98978139c81d9d05c1eeaa28a281d4e5f64c67aa2b3d5e051f35913df261ae1e429a1d09fb9ff59dcc634864c50ae5eef8eec1cbd4a27df98629193642bb1703697a9a1c8a1153da08f1b745430293288c3b87bf9213ec553d2bb03d176d5bcd250fe5e9e9fe5f52ac7ac480ad", 0x77}, {&(0x7f0000001440)="9167842825d40333557ea524611ce621aeaacdffc25d5821214fcf6c7c7d18d8374af7937d697e9a97106e7b74ed1151b955c0e28ad18446770581b6270922269d392c331788d3d287f1a6710dcfc4c45d5734a4ef9aa9f92f02bbb80ad136cba3d59f4e7ceeb13e4d4e45e14397ab840ebc1ed152d22faff6c57568dfce23b499ae5e75820cc501a61e1fa8cfcab462fdeee50a2260a961decbd8fe5cc24d2c0ff0d42912c3aa", 0xa7}, {&(0x7f0000001500)="5a6f0c375c0d7bf98422df598fbec0fe165ceaa91a236148971a5ce3cb78d73d90080c1700d5a898a99412cde64439643b90a9216f8e3b652c814d8d9a2e9c16687d0a5b6bbb9ebd97a33632000a7e055aac1d00506441bdfd1fcfec599a9339c4cbac757249a67502feb4dfc64e26b66232111ae710c3e0ab8b4d497be848c6cd511725e7cb720fa703", 0x8a}], 0x8, &(0x7f0000001640)=[@iv={0xc0, 0x117, 0x2, 0xac, "967e8e13353c6d5ccb3f26be93f76a87813c5188d3b443dddf2f0e6e96301afbc27af82ca2c5db33e8c531514eec0319f9ea2fc501e0d38bd4bf24212b3108d70c89352d7c6bc14258354e1a88ee246d3b551430b5117cf0bb87db70918670e84197fe0b272e69e72134061ce2854bf79544b68977da72dbd6952aa9b0d4616c0b456de35e063064dcc0fd50b70b0abf217590ade313f7bfedf88104cd20c480dff3efb11e649d8c80b50c15"}, @assoc={0x18, 0x117, 0x4, 0x282f}, @op={0x18, 0x117, 0x3, 0x1}], 0xf0}, 0x20000800)
write(r0, &(0x7f0000805000), 0xfe55)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000017c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001780), 0x13f, 0x3}}, 0x20)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000785000), 0x34a)
sendmmsg$alg(r0, &(0x7f0000000380)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_open_pts(r0, 0x200400)
sysfs$3(0x3)
read(r1, &(0x7f0000000000)=""/253, 0xfd)

03:33:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_IRQ_BUSID(r3, 0xc0106403, &(0x7f00000000c0)={0xffff, 0x5, 0x505cab56, 0x3})
r4 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f0000000340)="0f01bca116ff7509b8f3000f00d8670f2016360f080fc7abbe27d9f16766c7442400530000006766c74424020060d3db6766c744240600000000670f011c24de006664c405", 0x45}], 0xaaaac3f, 0x24, 0x0, 0xfffffffffffffed6)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$SG_SCSI_RESET(r4, 0x2284, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000400)={0x0, {{0xa, 0x4e21, 0x0, @local, 0x4f2}}, 0x1, 0x1, [{{0xa, 0x4e23, 0x100000001, @mcast1, 0x7}}]}, 0x110)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$DRM_IOCTL_GET_UNIQUE(r2, 0xc0106401, &(0x7f0000000300)={0xc0, &(0x7f0000000180)=""/192})
openat$ppp(0xffffffffffffff9c, &(0x7f0000000540)='/dev/ppp\x00', 0x400000, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x800000000000000)
lseek(r4, 0x0, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000240)='/dev/fuse\x00', 0x2, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  667.716078] TSC Offset = 0xfffffe993c70a9c4
[  667.716086] EPT pointer = 0x000000017fc1401e
[  667.716199] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.717141] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.735279] kobject: 'tx-0' (00000000c8779190): kobject_uevent_env
[  667.803149] kobject: 'loop1' (000000006ca20896): kobject_uevent_env
[  667.816014] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.820473] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.824591] kobject: 'loop1' (000000006ca20896): fill_kobj_path: path = '/devices/virtual/block/loop1'
[  667.839772] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.850487] kobject: 'tx-0' (00000000c8779190): fill_kobj_path: path = '/devices/virtual/net/þ€/queues/tx-0'
[  667.862791] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.895184] kobject: 'loop2' (00000000136ae17f): kobject_uevent_env
[  667.903337] kobject: 'loop2' (00000000136ae17f): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  667.904959] kobject: 'brif' (00000000d168a7b5): kobject_add_internal: parent: 'þ€', set: '<NULL>'
[  667.922795] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.939235] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.943861] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.951339] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  667.973672] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  667.977505] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.008560] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.010150] *** Guest State ***
[  668.014875] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.021450] CR0: actual=0x0000000000000030, shadow=0x0000000000000010, gh_mask=fffffffffffffff7
[  668.033108] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.049697] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.052844] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  668.059259] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.071321] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.075681] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.082708] audit: type=1804 audit(2000000022.040:77): pid=22985 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor3" name="/root/syzkaller-testdir816342802/syzkaller.OdVkqM/282/file0" dev="sda1" ino=16687 res=1
[  668.086539] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.114960] CR3 = 0x0000000000000000
[  668.122040] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.126618] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.143635] RSP = 0x0000000000000000  RIP = 0x0000000000000000
[  668.150034] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  668.156214] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  668.187636] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.195774] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.203864] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.210274] kobject: 'loop4' (00000000d9f5812f): kobject_uevent_env
[  668.218632] kobject: 'loop4' (00000000d9f5812f): fill_kobj_path: path = '/devices/virtual/block/loop4'
[  668.230686] kobject: 'loop3' (000000003900671f): kobject_uevent_env
[  668.234529] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.237119] kobject: 'loop3' (000000003900671f): fill_kobj_path: path = '/devices/virtual/block/loop3'
[  668.245601] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.265876] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.274167] GDTR:                           limit=0x00000002, base=0x0000000000000000
03:33:42 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
ioctl$KVM_SET_NR_MMU_PAGES(r3, 0xae44, 0x4)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:42 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x3, 0x8}, {0x7f, 0x2f7}, 0xffffffffffffff22, 0x4, 0x10000})
ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000080)={0x1, 0x10001, 0x8001, 0x3, 0x18, 0x7fff})

03:33:42 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="dd3812736c2c81819abb932f0a85c0e1ebf8c47f8430375ba9c17cfd54ba36ca8a82d86e2e28b9141dd127f84f7c7c4d43d5d217a902bebb3f1f56f81a96bdac60b205636d9c02592435b91e72d12048f2eb98851224adb36a6087435c5543d5ab331ffd5b88b655d9d05b687f2c11b3731e9dafd5ea8290507326303cb5b6a54e4685e82df86e74a508821c9f519207e3881918d77157c53ded482bcfcc56712da402c333fb2d33f25af12fe046a0615805393c6f41c27109d339ca003cdcc74b2391daf90d79790493bcda056ff433b6dddcf9e211d6af72cb79a9d3692cabb6ea65c59460926ca8d87e4e98c8a978bca4a08f1de73c882d1611f1579e60ca5de8095d95933e556fc674b00856a36bac1f7d854fdb91cbc7ff4737e01d1b661dc9d20ee3f0a598e4ec5ccaa26b7efe2784951090f89f196e7314279a35c9a4305e40c29fb60a2a3daf2c80e14dc6069733cc269cd88aed700e1d512096d86a29a4a3151df0eeb4b766ec2d100432e120694208180a98fd29a35dd8e950fde0490dd89fce8ea19ebbc8411f49d617e3139a0e7a191de8d03658d3deb43bdbcf1de15e952c161bf610eea88f6d35a59df5ef7744d545ff97932cf90dceb305b9ed68b81667ba5c85e97066fbc5324ca7b50e9b8a7f8c914d30e004166601ce743ae5321aaaeb270f9eb577b9123f52d25916030d0eb5db2350a240142b5bebc4fdf48974c02cfa4b698a6006cf5a0e91e96d212bcd80d4e26db27a275be3177e1860829180a0671afae5735f9b21608647b404271a5540ccbe241cc276c177beedf6b5f59258b2054e44a1542f6e00c80a08aa5df700a06e200dc835554064a43fa9a739531e5a25a8043e27d7e177c462ed242846554b9875346341e847cfbd64f8d87131d21fb6ce509cac54659d41b51b2481a28c49e1bd12c15cb60783789519fe7c171c760d05ef7746afd483cdbab66771badaca8557983105e5b10b51d114edd2cd8b9bd967ee95783adf6778d78a178d00e94bacf810a1a3b17bd89aed3bf7c883ee013655b2fda468f909b2fc53fe098b02b165fde7e1468669b180765cda37093be8cd7d42d1205bcbbc44ca3730f9b5829e041fa2546142ac2259b47b481b3847f9d975298c80974f16cd5cf55a64a2574fdae6738f46c9c8cc1670ac7a9988adc2e9a43d73b48a203934638d85d2dccfe0e01b6036f9f290395eb1146540f13656103594bdd18cf8ab11c3bc2ff715e4ea2125f03c1f45f347958d34fc0818ebed3084d1fe06ad6645f642f9096869d0eb8e29e37736e21d0ace9ff6dec338acb78791ea92a2a97c0d1aab62409b55a209e71b224198dd873ead725ecc8561a88e82ec44c5420a18932cba141d05dd6689c47dc4c77fc837c0b186af2ae61ba28706753a2feb79c85fec35fcb611e56bbe378f2990b1e044c927945be82b20a6f8c153a6764f7c2b07a670eda0af7d08d37bfa77509fd46084aaad824e98b312078775859d1a938e53d8675006c8a8ca9529b97a40f28166c350b38f0f054fca66ee8f5d2da2861b9a262d74b9884e63d1138be4519e0f76e43629ed0246ffd61a496a7c660554012223ccd33f33c0c618c3c2afbc19b4a477c472454eb0977cffe4079950d840a6798e49925c175e59b7ac55a19374c7252533ecf7ef9cc01cd53ad2cb38a7a5e2e615d64a54d6c4d81bd7945920e7e20e214cc4529c94b9afc7b2ec5a4a1979544ca19a978612daac4003b64f86ae89d9d5f82592854ed7fc1c571419711be5657875cdab31cd72658445183696e5f2fc40f5063379ce2d5c79c32706703f85631283ddfbcca206ea2c505985ab5c00887dd8bb5ec06e3b19e13a6a90ef8a7f3cd95b35c4104e81febf009716284e966c2941135f1889b6a900eadbb61ea8eb8a19c0a4b2989b07002f64d571a4b30b389c108207acc3c436314f555c05ad69ccbbaf6e5ae6b7c89ddb39ecbfdda9b2765bd69f14ee777aba9f8eed4e2f5369cb72d4b9cca9f107e756e55797df19a00dbde93ac42be4c520425ce9c8551e94005a89c172c9cb6ca0fcf19b08c42a37de4097293c8a460c1be8506b522aace08e20e409f34ab179a3d1eda32879900cc0e9d9d596a09ffec8ddc5d5b4563414cfcf17f12efaee1fc38a453b8c505339ef34176cab6f69792aec152fabd940620017ec5847cece70364494e6699e4dc7c41184e2a9812d4b946d18941fc7b67493b437edd9639dd4c4de5efe310fb7c240ed5f0b60aa2bf10905353bc701a117f5585e3dca70fef575e190146b67feedb5b1ad1b8cdeb842ffc2820a4cc020df12df0dfe23b72acb97b22cc6a6fcda0ded766831bcf29acad02450be8ada7138054ec327a5dd97410fe358082e41b1b92d1c2563c9d1f9bb6ed5e643843966353a33ea5ef44c79489633cd413b67659579378476c3b8c8a286ea666d010e182b59020c6a686f4a0c25dfab00286bdf505753922a58a3e12d7888d986f300ba36854f336c32aefef8b675326668281d593a02bc0ee0cbba0af4fd5d107333f5361f040a62c08233429501806f4f92bc4e844ddb3ff4db887e38e930ef318218a11365ab1c69bc5bda8c9823681acd518f498bd9ca72273b99f11cf378704df41d3ab5ba0a3c2d1d91754e1e6bd1adf39e58ea5e91b6989d5a6e38089784abed62ff388fa9e72fe4a36e501b08b6a8c1a95ceb9a6bbe91f243add11dbcb5307c16e649ab2d410b749989d1bc66e7d970dd614761223f2e944042fabf0f27d72d3bd2edc0d8fc64d9faebd2aa58e837459ed24bb6f10ab711b07ae5882a46e8d0315028a6de5d7b81667dc0d6264babc18e8730a12159e0ea04acb3cdf92f7bd5abc32b0c5fd449abc9845edf70660ca1c7f46f8af89717731e3b125efabc87bd1db4c4c32fd8ac375b07e69966d49e6ad477b72d47ec068f4f2be56dd39afc724b6e6956ce89a5542c4f268c5969c28ed98bec3b42bc08ba24b7516dd7be4fe2205f617d08c46146ff2436587fc8c486e35152226679a6a7477d8b7ec9451210f4b54543a5608509d49e031f7136d172b173841b382a157a781087e43bd06c1c545d93d873cf5c66b7210cd04fcb6cf3bc0445540bd86dfd7e9ebf0c836788f06535bf852c923e230922d30f2b7625c4e2ed80084db6b4a6d8bd6eddf7180916587edf49d9a93483a963a6ab2e2621f6bea7b85a62d1f845518bce7f6000bce3c7dc4a5747fff022f9e805bcfb3be03402c7e98fd531ce04199e6ba263a9cc41dbfbdecd7f44115f095108539a62211c3755383a86e7a14ebe456d539a74eccac4d6842196b73613b42ed6e5953e794dca9e0193ae726bd3cdb428ac7f5a23f91328bf586df0ba017199e9b8d600dca81c231b705ed37f6c3bfd8147cbb2befba6e85cb4e2e8ade83c49fefbce5c0260944190843781e90342bdcff251f34e7385161fa084f486ef071134efff0821fb66e0365d4b9b0bf658d41484419cc08a2d72be509139f5fe72cdbd2bde305b27495094513cc4309892422a6a93d66388c31b7d29f07c9a581528d876939fd9b27343194a086b9c78307b8063605fa337dc0852e69c6e4591cf2347346639709a440e3e6c9776933165f4a714e3d2681c07f087c18b3a0ac9f0ec49c38b9bee6b1327b1d0d83756c1daeeda339a8332536c60fb1798016907cc7e1c939f46357b51f478a67b76a13bbf68fbd01511132410f6ab6068f81d34572c9499128cfbebed82b3b7f08463d93c83f8e4745dbef95de0e64b480a0bdb732196e71c691d92725d15a3a0e877fc1322b6d195cbcf4ecffd985f0edcd515536849285b138128ff7152615d8dafaba6587f0bae4eea415bc85e3f22ade20a1a8f2c944d0523a3db809424ca37e03d7cfe4b8670f0404fdd8e933ab2c1ce043795619ca0654814fc4836b55405f713699c0d134600bb2e0f071c8c1a64d2539a3d4ccf2fcd52603c225c5ebe096bc3308e2fca9cef2ad6cf04936afed5999d533803d38a09974a0a87f8d57740e1e3865ec940db94b246eaf3708b790dbaff24819a095abb79f1fa25bb5ee89047bb939afd7c935b29fd579b4cbfa56b989b23c424f60bf64616ecf985819136fd37d3c2cff842dfced7e6cb5032fc01e46d2b45d793469679f54f961b6d33ea59c921e175315c0833e269f77fac5ad7fb2c2be9084c0f0f1899ecd09147d279afa3ca7b15c9837f0c9551becabf52178e20449011550b8af707657738bc13a2191d079cd6f7460b00c98c3735770d771f1d867af91ae37350d5916e13cbbb9bc410c10788b28fefd8cd2b1be8bbaadaf4fe249d8c0d1c68fc220f46656828255a2a28aec28d6bef5780d2fa73ed97b408de90edb90dfbf71674276456cf2f2e6e2cdf7ea297a9ee925a6587b1e8511298f60c5ed55ddfb547258a033e78f61585eb7ba5e4fb69fdf356f94d0b57cc2e2117dedacf64b604f56e0b9507e335389dfd8fcbd808c974124d0674bb10bb9cffed231c855a93314be2fe989c286952c3be5c0578721679eae6564badb36f9cf226473d751477928385d7e29dfa22fb12bb9426b91e5d233329909830f93ff0ae07cf5e1527557e6af9170475bb44b6f0cba43d7586b3ca8454e74bc281c71e7e8d3f9d83f261649e7326a1dbd6608474323f3d4b8ee5b2c11fd229cd21a890b117790b30e3c61117d73f7d7d454859859b57a3a93a5b07a957ea6d8687150a2f75b954430f938e933301671f3d2478f184dcdc742afd3c47f402bb9e0991fd33a6c1411a43fcf2028ea29c3d05ee4925029219721b5d9be3562ca78f58ddc8691f28c77413c8bc5d2f7956acc96137f252a60da56b53e1dac5739e0006b8cfd5f136939e631160be1dd5ff4933509d7f854cec5d61ee467835d56e2315352452e840f60fd22e906be50b11a99644b75785c145ba0970a08fdb2023a24266bb96367fb91dc514a33a20231519c22f3c2781ca9e565807235551c5673772bc29231b107bd0bb1d2cc0d4eb03b9f56b21e79f6eb4cee0fb9546086aa54d35ad5cb0a01b488a5b9dfe4caef06470a09b58337c938ed4b362d2a669960a3dcf5dd679ca2b68f9b4c5530e0fce222a992a2f273711904c891b94581f6b36de2cb5439578ffd6f7579e4d11d962168659a5560ef5ad49f4aa32d5bf2ea98b57e7dfe2474aa01f268f8359bdf29d9110b87d38f392ceeb54e003203c302aec44437d691583405f1aa0636a55012ac96e2f3427fcb56fd92a4751a3bb24a486e89b45e9938be421493d16356c033813e71a2bbb0fcd8d24f178d021e66432176975c466ce355f91a9710d650f9a712707d87b04b9260157c1e73927f14094de26d55f2e2a4b9e50f8ea89530553e96190a0c580e87f2188eee7350712161f98b729915d482edde4c945737f1a1dea07a07031c01745c6d566e87fd128dc47205db090495f03dba8b62a31cdcbbe6d0cc582854ea21d07a1efac7f4aa8f65b90a4f1b7a8bc67d49583aeeeba077ec1460c3eb02a76d5b54a64dc0a5f6de40230372eea566e8800dd2dbabb4aacffac26d19f40657d9fee495a82962db0a760241925c2adaeade712fbe86f96543d98492968bb6feef15fb58a17dcab5e58bcc8d3ff2d68cdbdf6891c263a53325ec1e28bd6e46bec26a5573da7d9fa8c99abc86cc5e395db38950238ba342d515fbbdfe0caadb6b8744205fdfc52e82b8239712dc0a851f5efb9a0bad347f844c63fdd117772deb47637fcb2e7310288dbc20d76c5c518682875315b1c77a0ec1e28c82efb", 0x1000}, {&(0x7f0000000280)="097497ed39e6025b3b408c4a062cc8f796ffe49b7a8bb9f24bf261e38cedb8ca2aa13100be4d861e9026a57e82aba96ab299d85d0cd93f1e93f914860f139e482b1ba3767e4434c272240f7bba9b61ca911d40a602db560e5d4873d0d3861ed30116d590908c62b3430aeaf62e76ba30a907e7fe1fd6a43c7fca8abd4454eae4bf3d339b167cc7b6bf747776dfac51e7eec7560c2865ee84c06e422278563c5d7a07ea334ffcfa82dbe919c96bb82cb58c45cce6c00096ed2a2bbb81eafdd627aa23e9e33bdb715e7b4cff235e34c239f9d45da56166a8e9554ca8a162e7a40664c8e3", 0xe3}, {&(0x7f00000013c0)="021de94c27785761066a98978139c81d9d05c1eeaa28a281d4e5f64c67aa2b3d5e051f35913df261ae1e429a1d09fb9ff59dcc634864c50ae5eef8eec1cbd4a27df98629193642bb1703697a9a1c8a1153da08f1b745430293288c3b87bf9213ec553d2bb03d176d5bcd250fe5e9e9fe5f52ac7ac480ad", 0x77}, {&(0x7f0000001440)="9167842825d40333557ea524611ce621aeaacdffc25d5821214fcf6c7c7d18d8374af7937d697e9a97106e7b74ed1151b955c0e28ad18446770581b6270922269d392c331788d3d287f1a6710dcfc4c45d5734a4ef9aa9f92f02bbb80ad136cba3d59f4e7ceeb13e4d4e45e14397ab840ebc1ed152d22faff6c57568dfce23b499ae5e75820cc501a61e1fa8cfcab462fdeee50a2260a961decbd8fe5cc24d2c0ff0d42912c3aa", 0xa7}, {&(0x7f0000001500)="5a6f0c375c0d7bf98422df598fbec0fe165ceaa91a236148971a5ce3cb78d73d90080c1700d5a898a99412cde64439643b90a9216f8e3b652c814d8d9a2e9c16687d0a5b6bbb9ebd97a33632000a7e055aac1d00506441bdfd1fcfec599a9339c4cbac757249a67502feb4dfc64e26b66232111ae710c3e0ab8b4d497be848c6cd511725e7cb720fa703", 0x8a}], 0x8, &(0x7f0000001640)=[@iv={0xc0, 0x117, 0x2, 0xac, "967e8e13353c6d5ccb3f26be93f76a87813c5188d3b443dddf2f0e6e96301afbc27af82ca2c5db33e8c531514eec0319f9ea2fc501e0d38bd4bf24212b3108d70c89352d7c6bc14258354e1a88ee246d3b551430b5117cf0bb87db70918670e84197fe0b272e69e72134061ce2854bf79544b68977da72dbd6952aa9b0d4616c0b456de35e063064dcc0fd50b70b0abf217590ade313f7bfedf88104cd20c480dff3efb11e649d8c80b50c15"}, @assoc={0x18, 0x117, 0x4, 0x282f}, @op={0x18, 0x117, 0x3, 0x1}], 0xf0}, 0x20000800)
write(r0, &(0x7f0000805000), 0xfe55)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000017c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001780), 0x13f, 0x3}}, 0x20)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000785000), 0x34a)
sendmmsg$alg(r0, &(0x7f0000000380)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_open_pts(r0, 0x200400)
sysfs$3(0x3)
read(r1, &(0x7f0000000000)=""/253, 0xfd)

03:33:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000004c0)={<r4=>0x0, 0x10000, 0x0, 0x7, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000340)={'filter\x00'}, &(0x7f0000000400)=0x78)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000300)=ANY=[@ANYRES64=0x0, @ANYPTR=&(0x7f00000001c0)=ANY=[@ANYRES32=r0, @ANYRES64=r4, @ANYPTR=&(0x7f0000000180)=ANY=[@ANYBLOB="4f95485c212b6595f460875a566cb392e9be72385a5dabf19884065b26983be77020feb31dad1bda", @ANYPTR64, @ANYRES32=r3], @ANYRES32=r0], @ANYRES16=r4, @ANYPTR64=&(0x7f0000000200)=ANY=[@ANYRES32, @ANYRES32=r5]])
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000480)={&(0x7f00000003c0)=""/24, 0x8000, 0x1000, 0xa5}, 0x18)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:42 executing program 3:
r0 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x0, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
connect$l2tp(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e22, @broadcast}, 0x4}}, 0xffffffffffffffc2)
ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, &(0x7f0000000100)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @empty, @loopback})
io_setup(0x0, &(0x7f0000000000))
ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000280)={&(0x7f0000ffc000/0x3000)=nil, 0x7fffffff, 0x5, 0x40, &(0x7f0000ffc000/0x3000)=nil, 0x9})
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000180)=[@mss, @mss, @mss], 0x3)
getsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000080), &(0x7f00000001c0)=0x4)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0)
r3 = userfaultfd(0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000c34000))
r4 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
close(r3)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000900)=ANY=[@ANYRES32=<r6=>0x0, @ANYBLOB="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"], &(0x7f00000007c0)=0xe4)
setsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f0000000300)=0x2, 0x4)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000840)={r6, 0x3c, "be6eaedd07da101044793caf5ba1b3b1bf0083332c0761b32e7d93e33096742eeaae50a44cf4d5b87c8ba51212569a84c0fa4aafe3e35c737ac3deac"}, &(0x7f00000008c0)=0x44)
write(r4, &(0x7f0000000400)="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", 0x200)
socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000240))
sendfile(r4, r5, 0x0, 0x1000f)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0)
bind$netlink(r0, &(0x7f0000000200)={0x10, 0x0, 0x25dfdbff, 0x40000}, 0xc)

[  668.284187] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  668.292416] IDTR:                           limit=0x00000000, base=0x0000000060000011
[  668.302904] TR:   sel=0x0000, attr=0x10000, limit=0x00000400, base=0x0000000000000000
[  668.312582] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  668.323844] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  668.325681] kobject: 'brif' (00000000d168a7b5): kobject_cleanup, parent 000000001aa6c739
[  668.342700] kobject: 'loop5' (00000000c7642185): kobject_uevent_env
[  668.343747] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.355624] kobject: 'loop5' (00000000c7642185): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  668.365593] Interruptibility = 00000000  ActivityState = 00000000
[  668.372049] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.376913] *** Host State ***
03:33:42 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r1, 0x40505330, &(0x7f0000000000)={{0x3, 0x8}, {0x7f, 0x2f7}, 0xffffffffffffff22, 0x4, 0x10000})

03:33:42 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f0000000280)="097497ed39e6025b3b408c4a062cc8f796ffe49b7a8bb9f24bf261e38cedb8ca2aa13100be4d861e9026a57e82aba96ab299d85d0cd93f1e93f914860f139e482b1ba3767e4434c272240f7bba9b61ca911d40a602db560e5d4873d0d3861ed30116d590908c62b3430aeaf62e76ba30a907e7fe1fd6a43c7fca8abd4454eae4bf3d339b167cc7b6bf747776dfac51e7eec7560c2865ee84c06e422278563c5d7a07ea334ffcfa82dbe919c96bb82cb58c45cce6c00096ed2a2bbb81eafdd627aa23e9e33bdb715e7b4cff235e34c239f9d45da56166a8e9554ca8a162e7a40664c8e3", 0xe3}, {&(0x7f00000013c0)="021de94c27785761066a98978139c81d9d05c1eeaa28a281d4e5f64c67aa2b3d5e051f35913df261ae1e429a1d09fb9ff59dcc634864c50ae5eef8eec1cbd4a27df98629193642bb1703697a9a1c8a1153da08f1b745430293288c3b87bf9213ec553d2bb03d176d5bcd250fe5e9e9fe5f52ac7ac480ad", 0x77}, {&(0x7f0000001440)="9167842825d40333557ea524611ce621aeaacdffc25d5821214fcf6c7c7d18d8374af7937d697e9a97106e7b74ed1151b955c0e28ad18446770581b6270922269d392c331788d3d287f1a6710dcfc4c45d5734a4ef9aa9f92f02bbb80ad136cba3d59f4e7ceeb13e4d4e45e14397ab840ebc1ed152d22faff6c57568dfce23b499ae5e75820cc501a61e1fa8cfcab462fdeee50a2260a961decbd8fe5cc24d2c0ff0d42912c3aa", 0xa7}, {&(0x7f0000001500)="5a6f0c375c0d7bf98422df598fbec0fe165ceaa91a236148971a5ce3cb78d73d90080c1700d5a898a99412cde64439643b90a9216f8e3b652c814d8d9a2e9c16687d0a5b6bbb9ebd97a33632000a7e055aac1d00506441bdfd1fcfec599a9339c4cbac757249a67502feb4dfc64e26b66232111ae710c3e0ab8b4d497be848c6cd511725e7cb720fa703", 0x8a}], 0x8, &(0x7f0000001640)=[@iv={0xc0, 0x117, 0x2, 0xac, "967e8e13353c6d5ccb3f26be93f76a87813c5188d3b443dddf2f0e6e96301afbc27af82ca2c5db33e8c531514eec0319f9ea2fc501e0d38bd4bf24212b3108d70c89352d7c6bc14258354e1a88ee246d3b551430b5117cf0bb87db70918670e84197fe0b272e69e72134061ce2854bf79544b68977da72dbd6952aa9b0d4616c0b456de35e063064dcc0fd50b70b0abf217590ade313f7bfedf88104cd20c480dff3efb11e649d8c80b50c15"}, @assoc={0x18, 0x117, 0x4, 0x282f}, @op={0x18, 0x117, 0x3, 0x1}], 0xf0}, 0x20000800)
write(r0, &(0x7f0000805000), 0xfe55)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000017c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001780), 0x13f, 0x3}}, 0x20)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000785000), 0x34a)
sendmmsg$alg(r0, &(0x7f0000000380)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_open_pts(r0, 0x200400)
sysfs$3(0x3)
read(r1, &(0x7f0000000000)=""/253, 0xfd)

[  668.382153] kobject: 'brif' (00000000d168a7b5): auto cleanup kobject_del
[  668.387061] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.401705] kobject: 'loop2' (00000000136ae17f): kobject_uevent_env
[  668.408136] kobject: 'loop2' (00000000136ae17f): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  668.413239] RIP = 0xffffffff8120262c  RSP = 0xffff88011a41f390
[  668.423456] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.425816] kobject: 'brif' (00000000d168a7b5): calling ktype release
[  668.440888] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  668.449857] FSBase=00007fecb7d33700 GSBase=ffff8801daf00000 TRBase=fffffe0000033000
[  668.451887] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.458004] kobject: (00000000d168a7b5): dynamic_kobj_release
[  668.468088] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.478907] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000
03:33:42 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
fcntl$dupfd(r0, 0x406, r0)

[  668.484948] CR0=0000000080050033 CR3=00000001c36d4000 CR4=00000000001426e0
[  668.504771] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87e01360
[  668.507055] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.512182] kobject: 'brif': free name
[  668.525144] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.536383] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  668.549048] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.552399] *** Control State ***
[  668.558061] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.565179] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.574288] audit: type=1800 audit(2000000022.530:78): pid=23041 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor3" name="file0" dev="sda1" ino=16690 res=0
[  668.594701] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.608251] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2
[  668.628491] audit: type=1804 audit(2000000022.540:79): pid=23041 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor3" name="/root/syzkaller-testdir816342802/syzkaller.OdVkqM/283/file0" dev="sda1" ino=16690 res=1
[  668.640948] EntryControls=0000d1ff ExitControls=002fefff
[  668.662871] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  668.671426] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  668.680236] VMExit: intr_info=80000306 errcode=00000000 ilen=00000003
[  668.688219]         reason=80000021 qualification=0000000000000000
[  668.692486] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.697325] IDTVectoring: info=00000000 errcode=00000000
[  668.707269] TSC Offset = 0xfffffe982e63a1c8
[  668.707728] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.712340] kobject: 'rx-0' (000000007ed047bd): kobject_cleanup, parent 000000000013d2bc
[  668.722139] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.729027] EPT pointer = 0x00000001c27f801e
[  668.741139] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.741989] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.747396] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.787030] kobject: 'loop5' (00000000c7642185): kobject_uevent_env
[  668.794564] kobject: 'rx-0' (000000007ed047bd): auto cleanup 'remove' event
[  668.806900] kobject: 'loop5' (00000000c7642185): fill_kobj_path: path = '/devices/virtual/block/loop5'
[  668.821594] kobject: 'loop4' (00000000d9f5812f): kobject_uevent_env
03:33:42 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x1001, 0x80000)
syz_open_dev$sndpcmc(0x0, 0x0, 0x4400)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, &(0x7f0000000100), 0x1000000000000046)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = add_key$user(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRESOCT=r0, @ANYBLOB="e6f778d173a0dfc838712015969ababea351344798a6e203783d6ce06b6d2aebc8e3e57a51d48a30691ca5f0c1b8cd72cc7da54344a69a62acf13fe3be2e1a71481a7e715e9d0bd52474b961b982c0a476567b1864496fbfe82cc58f18d447651db6d736831f3aa6fec66b535934e9c5e7db5739853ba4a9587dd3816eb15d4f516ff4ea704aabbcacfaa3cb5d49159de96fd6bf141b85b14ed87b14c974b4ddf2398d46fb093bfc132ea770f83599259849b349e2ac126029488e7a0964c745c3c67a6be8dfb5288e1367698a09ca6738", @ANYRES32=r3])
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

03:33:42 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f0000000280)="097497ed39e6025b3b408c4a062cc8f796ffe49b7a8bb9f24bf261e38cedb8ca2aa13100be4d861e9026a57e82aba96ab299d85d0cd93f1e93f914860f139e482b1ba3767e4434c272240f7bba9b61ca911d40a602db560e5d4873d0d3861ed30116d590908c62b3430aeaf62e76ba30a907e7fe1fd6a43c7fca8abd4454eae4bf3d339b167cc7b6bf747776dfac51e7eec7560c2865ee84c06e422278563c5d7a07ea334ffcfa82dbe919c96bb82cb58c45cce6c00096ed2a2bbb81eafdd627aa23e9e33bdb715e7b4cff235e34c239f9d45da56166a8e9554ca8a162e7a40664c8e3", 0xe3}, {&(0x7f00000013c0)="021de94c27785761066a98978139c81d9d05c1eeaa28a281d4e5f64c67aa2b3d5e051f35913df261ae1e429a1d09fb9ff59dcc634864c50ae5eef8eec1cbd4a27df98629193642bb1703697a9a1c8a1153da08f1b745430293288c3b87bf9213ec553d2bb03d176d5bcd250fe5e9e9fe5f52ac7ac480ad", 0x77}, {&(0x7f0000001440)="9167842825d40333557ea524611ce621aeaacdffc25d5821214fcf6c7c7d18d8374af7937d697e9a97106e7b74ed1151b955c0e28ad18446770581b6270922269d392c331788d3d287f1a6710dcfc4c45d5734a4ef9aa9f92f02bbb80ad136cba3d59f4e7ceeb13e4d4e45e14397ab840ebc1ed152d22faff6c57568dfce23b499ae5e75820cc501a61e1fa8cfcab462fdeee50a2260a961decbd8fe5cc24d2c0ff0d42912c3aa", 0xa7}, {&(0x7f0000001500)="5a6f0c375c0d7bf98422df598fbec0fe165ceaa91a236148971a5ce3cb78d73d90080c1700d5a898a99412cde64439643b90a9216f8e3b652c814d8d9a2e9c16687d0a5b6bbb9ebd97a33632000a7e055aac1d00506441bdfd1fcfec599a9339c4cbac757249a67502feb4dfc64e26b66232111ae710c3e0ab8b4d497be848c6cd511725e7cb720fa703", 0x8a}], 0x8, &(0x7f0000001640)=[@iv={0xc0, 0x117, 0x2, 0xac, "967e8e13353c6d5ccb3f26be93f76a87813c5188d3b443dddf2f0e6e96301afbc27af82ca2c5db33e8c531514eec0319f9ea2fc501e0d38bd4bf24212b3108d70c89352d7c6bc14258354e1a88ee246d3b551430b5117cf0bb87db70918670e84197fe0b272e69e72134061ce2854bf79544b68977da72dbd6952aa9b0d4616c0b456de35e063064dcc0fd50b70b0abf217590ade313f7bfedf88104cd20c480dff3efb11e649d8c80b50c15"}, @assoc={0x18, 0x117, 0x4, 0x282f}, @op={0x18, 0x117, 0x3, 0x1}], 0xf0}, 0x20000800)
write(r0, &(0x7f0000805000), 0xfe55)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000017c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001780), 0x13f, 0x3}}, 0x20)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000785000), 0x34a)
sendmmsg$alg(r0, &(0x7f0000000380)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_open_pts(r0, 0x200400)
sysfs$3(0x3)
read(r1, &(0x7f0000000000)=""/253, 0xfd)

03:33:42 executing program 0:
r0 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000100), 0x4)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

03:33:42 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mbind(&(0x7f0000015000/0x4000)=nil, 0x4000, 0x4003, &(0x7f0000000040)=0x3, 0xd3, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000500))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

03:33:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x4400)
ioctl$sock_inet_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000080))
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000003c0)={0x0, 0x10000, 0x0, 0x0, 0x4}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1000000000010004, 0x0, 0x0, 0x2000, &(0x7f0000017000/0x2000)=nil})
socketpair$unix(0x1, 0x0, 0x0, 0x0)
add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000800)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  668.828038] kobject: 'loop4' (00000000d9f5812f): fill_kobj_path: path = '/devices/virtual/block/loop4'
[  668.849930] kobject: 'rx-0' (000000007ed047bd): kobject_uevent_env
[  668.861510] kobject: 'rx-0' (000000007ed047bd): fill_kobj_path: path = '/devices/virtual/net/þ€/queues/rx-0'
[  668.880535] kobject: 'rx-0' (000000007ed047bd): auto cleanup kobject_del
03:33:42 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="dd3812736c2c81819abb932f0a85c0e1ebf8c47f8430375ba9c17cfd54ba36ca8a82d86e2e28b9141dd127f84f7c7c4d43d5d217a902bebb3f1f56f81a96bdac60b205636d9c02592435b91e72d12048f2eb98851224adb36a6087435c5543d5ab331ffd5b88b655d9d05b687f2c11b3731e9dafd5ea8290507326303cb5b6a54e4685e82df86e74a508821c9f519207e3881918d77157c53ded482bcfcc56712da402c333fb2d33f25af12fe046a0615805393c6f41c27109d339ca003cdcc74b2391daf90d79790493bcda056ff433b6dddcf9e211d6af72cb79a9d3692cabb6ea65c59460926ca8d87e4e98c8a978bca4a08f1de73c882d1611f1579e60ca5de8095d95933e556fc674b00856a36bac1f7d854fdb91cbc7ff4737e01d1b661dc9d20ee3f0a598e4ec5ccaa26b7efe2784951090f89f196e7314279a35c9a4305e40c29fb60a2a3daf2c80e14dc6069733cc269cd88aed700e1d512096d86a29a4a3151df0eeb4b766ec2d100432e120694208180a98fd29a35dd8e950fde0490dd89fce8ea19ebbc8411f49d617e3139a0e7a191de8d03658d3deb43bdbcf1de15e952c161bf610eea88f6d35a59df5ef7744d545ff97932cf90dceb305b9ed68b81667ba5c85e97066fbc5324ca7b50e9b8a7f8c914d30e004166601ce743ae5321aaaeb270f9eb577b9123f52d25916030d0eb5db2350a240142b5bebc4fdf48974c02cfa4b698a6006cf5a0e91e96d212bcd80d4e26db27a275be3177e1860829180a0671afae5735f9b21608647b404271a5540ccbe241cc276c177beedf6b5f59258b2054e44a1542f6e00c80a08aa5df700a06e200dc835554064a43fa9a739531e5a25a8043e27d7e177c462ed242846554b9875346341e847cfbd64f8d87131d21fb6ce509cac54659d41b51b2481a28c49e1bd12c15cb60783789519fe7c171c760d05ef7746afd483cdbab66771badaca8557983105e5b10b51d114edd2cd8b9bd967ee95783adf6778d78a178d00e94bacf810a1a3b17bd89aed3bf7c883ee013655b2fda468f909b2fc53fe098b02b165fde7e1468669b180765cda37093be8cd7d42d1205bcbbc44ca3730f9b5829e041fa2546142ac2259b47b481b3847f9d975298c80974f16cd5cf55a64a2574fdae6738f46c9c8cc1670ac7a9988adc2e9a43d73b48a203934638d85d2dccfe0e01b6036f9f290395eb1146540f13656103594bdd18cf8ab11c3bc2ff715e4ea2125f03c1f45f347958d34fc0818ebed3084d1fe06ad6645f642f9096869d0eb8e29e37736e21d0ace9ff6dec338acb78791ea92a2a97c0d1aab62409b55a209e71b224198dd873ead725ecc8561a88e82ec44c5420a18932cba141d05dd6689c47dc4c77fc837c0b186af2ae61ba28706753a2feb79c85fec35fcb611e56bbe378f2990b1e044c927945be82b20a6f8c153a6764f7c2b07a670eda0af7d08d37bfa77509fd46084aaad824e98b312078775859d1a938e53d8675006c8a8ca9529b97a40f28166c350b38f0f054fca66ee8f5d2da2861b9a262d74b9884e63d1138be4519e0f76e43629ed0246ffd61a496a7c660554012223ccd33f33c0c618c3c2afbc19b4a477c472454eb0977cffe4079950d840a6798e49925c175e59b7ac55a19374c7252533ecf7ef9cc01cd53ad2cb38a7a5e2e615d64a54d6c4d81bd7945920e7e20e214cc4529c94b9afc7b2ec5a4a1979544ca19a978612daac4003b64f86ae89d9d5f82592854ed7fc1c571419711be5657875cdab31cd72658445183696e5f2fc40f5063379ce2d5c79c32706703f85631283ddfbcca206ea2c505985ab5c00887dd8bb5ec06e3b19e13a6a90ef8a7f3cd95b35c4104e81febf009716284e966c2941135f1889b6a900eadbb61ea8eb8a19c0a4b2989b07002f64d571a4b30b389c108207acc3c436314f555c05ad69ccbbaf6e5ae6b7c89ddb39ecbfdda9b2765bd69f14ee777aba9f8eed4e2f5369cb72d4b9cca9f107e756e55797df19a00dbde93ac42be4c520425ce9c8551e94005a89c172c9cb6ca0fcf19b08c42a37de4097293c8a460c1be8506b522aace08e20e409f34ab179a3d1eda32879900cc0e9d9d596a09ffec8ddc5d5b4563414cfcf17f12efaee1fc38a453b8c505339ef34176cab6f69792aec152fabd940620017ec5847cece70364494e6699e4dc7c41184e2a9812d4b946d18941fc7b67493b437edd9639dd4c4de5efe310fb7c240ed5f0b60aa2bf10905353bc701a117f5585e3dca70fef575e190146b67feedb5b1ad1b8cdeb842ffc2820a4cc020df12df0dfe23b72acb97b22cc6a6fcda0ded766831bcf29acad02450be8ada7138054ec327a5dd97410fe358082e41b1b92d1c2563c9d1f9bb6ed5e643843966353a33ea5ef44c79489633cd413b67659579378476c3b8c8a286ea666d010e182b59020c6a686f4a0c25dfab00286bdf505753922a58a3e12d7888d986f300ba36854f336c32aefef8b675326668281d593a02bc0ee0cbba0af4fd5d107333f5361f040a62c08233429501806f4f92bc4e844ddb3ff4db887e38e930ef318218a11365ab1c69bc5bda8c9823681acd518f498bd9ca72273b99f11cf378704df41d3ab5ba0a3c2d1d91754e1e6bd1adf39e58ea5e91b6989d5a6e38089784abed62ff388fa9e72fe4a36e501b08b6a8c1a95ceb9a6bbe91f243add11dbcb5307c16e649ab2d410b749989d1bc66e7d970dd614761223f2e944042fabf0f27d72d3bd2edc0d8fc64d9faebd2aa58e837459ed24bb6f10ab711b07ae5882a46e8d0315028a6de5d7b81667dc0d6264babc18e8730a12159e0ea04acb3cdf92f7bd5abc32b0c5fd449abc9845edf70660ca1c7f46f8af89717731e3b125efabc87bd1db4c4c32fd8ac375b07e69966d49e6ad477b72d47ec068f4f2be56dd39afc724b6e6956ce89a5542c4f268c5969c28ed98bec3b42bc08ba24b7516dd7be4fe2205f617d08c46146ff2436587fc8c486e35152226679a6a7477d8b7ec9451210f4b54543a5608509d49e031f7136d172b173841b382a157a781087e43bd06c1c545d93d873cf5c66b7210cd04fcb6cf3bc0445540bd86dfd7e9ebf0c836788f06535bf852c923e230922d30f2b7625c4e2ed80084db6b4a6d8bd6eddf7180916587edf49d9a93483a963a6ab2e2621f6bea7b85a62d1f845518bce7f6000bce3c7dc4a5747fff022f9e805bcfb3be03402c7e98fd531ce04199e6ba263a9cc41dbfbdecd7f44115f095108539a62211c3755383a86e7a14ebe456d539a74eccac4d6842196b73613b42ed6e5953e794dca9e0193ae726bd3cdb428ac7f5a23f91328bf586df0ba017199e9b8d600dca81c231b705ed37f6c3bfd8147cbb2befba6e85cb4e2e8ade83c49fefbce5c0260944190843781e90342bdcff251f34e7385161fa084f486ef071134efff0821fb66e0365d4b9b0bf658d41484419cc08a2d72be509139f5fe72cdbd2bde305b27495094513cc4309892422a6a93d66388c31b7d29f07c9a581528d876939fd9b27343194a086b9c78307b8063605fa337dc0852e69c6e4591cf2347346639709a440e3e6c9776933165f4a714e3d2681c07f087c18b3a0ac9f0ec49c38b9bee6b1327b1d0d83756c1daeeda339a8332536c60fb1798016907cc7e1c939f46357b51f478a67b76a13bbf68fbd01511132410f6ab6068f81d34572c9499128cfbebed82b3b7f08463d93c83f8e4745dbef95de0e64b480a0bdb732196e71c691d92725d15a3a0e877fc1322b6d195cbcf4ecffd985f0edcd515536849285b138128ff7152615d8dafaba6587f0bae4eea415bc85e3f22ade20a1a8f2c944d0523a3db809424ca37e03d7cfe4b8670f0404fdd8e933ab2c1ce043795619ca0654814fc4836b55405f713699c0d134600bb2e0f071c8c1a64d2539a3d4ccf2fcd52603c225c5ebe096bc3308e2fca9cef2ad6cf04936afed5999d533803d38a09974a0a87f8d57740e1e3865ec940db94b246eaf3708b790dbaff24819a095abb79f1fa25bb5ee89047bb939afd7c935b29fd579b4cbfa56b989b23c424f60bf64616ecf985819136fd37d3c2cff842dfced7e6cb5032fc01e46d2b45d793469679f54f961b6d33ea59c921e175315c0833e269f77fac5ad7fb2c2be9084c0f0f1899ecd09147d279afa3ca7b15c9837f0c9551becabf52178e20449011550b8af707657738bc13a2191d079cd6f7460b00c98c3735770d771f1d867af91ae37350d5916e13cbbb9bc410c10788b28fefd8cd2b1be8bbaadaf4fe249d8c0d1c68fc220f46656828255a2a28aec28d6bef5780d2fa73ed97b408de90edb90dfbf71674276456cf2f2e6e2cdf7ea297a9ee925a6587b1e8511298f60c5ed55ddfb547258a033e78f61585eb7ba5e4fb69fdf356f94d0b57cc2e2117dedacf64b604f56e0b9507e335389dfd8fcbd808c974124d0674bb10bb9cffed231c855a93314be2fe989c286952c3be5c0578721679eae6564badb36f9cf226473d751477928385d7e29dfa22fb12bb9426b91e5d233329909830f93ff0ae07cf5e1527557e6af9170475bb44b6f0cba43d7586b3ca8454e74bc281c71e7e8d3f9d83f261649e7326a1dbd6608474323f3d4b8ee5b2c11fd229cd21a890b117790b30e3c61117d73f7d7d454859859b57a3a93a5b07a957ea6d8687150a2f75b954430f938e933301671f3d2478f184dcdc742afd3c47f402bb9e0991fd33a6c1411a43fcf2028ea29c3d05ee4925029219721b5d9be3562ca78f58ddc8691f28c77413c8bc5d2f7956acc96137f252a60da56b53e1dac5739e0006b8cfd5f136939e631160be1dd5ff4933509d7f854cec5d61ee467835d56e2315352452e840f60fd22e906be50b11a99644b75785c145ba0970a08fdb2023a24266bb96367fb91dc514a33a20231519c22f3c2781ca9e565807235551c5673772bc29231b107bd0bb1d2cc0d4eb03b9f56b21e79f6eb4cee0fb9546086aa54d35ad5cb0a01b488a5b9dfe4caef06470a09b58337c938ed4b362d2a669960a3dcf5dd679ca2b68f9b4c5530e0fce222a992a2f273711904c891b94581f6b36de2cb5439578ffd6f7579e4d11d962168659a5560ef5ad49f4aa32d5bf2ea98b57e7dfe2474aa01f268f8359bdf29d9110b87d38f392ceeb54e003203c302aec44437d691583405f1aa0636a55012ac96e2f3427fcb56fd92a4751a3bb24a486e89b45e9938be421493d16356c033813e71a2bbb0fcd8d24f178d021e66432176975c466ce355f91a9710d650f9a712707d87b04b9260157c1e73927f14094de26d55f2e2a4b9e50f8ea89530553e96190a0c580e87f2188eee7350712161f98b729915d482edde4c945737f1a1dea07a07031c01745c6d566e87fd128dc47205db090495f03dba8b62a31cdcbbe6d0cc582854ea21d07a1efac7f4aa8f65b90a4f1b7a8bc67d49583aeeeba077ec1460c3eb02a76d5b54a64dc0a5f6de40230372eea566e8800dd2dbabb4aacffac26d19f40657d9fee495a82962db0a760241925c2adaeade712fbe86f96543d98492968bb6feef15fb58a17dcab5e58bcc8d3ff2d68cdbdf6891c263a53325ec1e28bd6e46bec26a5573da7d9fa8c99abc86cc5e395db38950238ba342d515fbbdfe0caadb6b8744205fdfc52e82b8239712dc0a851f5efb9a0bad347f844c63fdd117772deb47637fcb2e7310288dbc20d76c5c518682875315b1c77a0ec1e28c82efb", 0x1000}, {&(0x7f0000000280)="097497ed39e6025b3b408c4a062cc8f796ffe49b7a8bb9f24bf261e38cedb8ca2aa13100be4d861e9026a57e82aba96ab299d85d0cd93f1e93f914860f139e482b1ba3767e4434c272240f7bba9b61ca911d40a602db560e5d4873d0d3861ed30116d590908c62b3430aeaf62e76ba30a907e7fe1fd6a43c7fca8abd4454eae4bf3d339b167cc7b6bf747776dfac51e7eec7560c2865ee84c06e422278563c5d7a07ea334ffcfa82dbe919c96bb82cb58c45cce6c00096ed2a2bbb81eafdd627aa23e9e33bdb715e7b4cff235e34c239f9d45da56166a8e9554ca8a162e7a40664c8e3", 0xe3}, {&(0x7f00000013c0)="021de94c27785761066a98978139c81d9d05c1eeaa28a281d4e5f64c67aa2b3d5e051f35913df261ae1e429a1d09fb9ff59dcc634864c50ae5eef8eec1cbd4a27df98629193642bb1703697a9a1c8a1153da08f1b745430293288c3b87bf9213ec553d2bb03d176d5bcd250fe5e9e9fe5f52ac7ac480ad", 0x77}, {&(0x7f0000001440)="9167842825d40333557ea524611ce621aeaacdffc25d5821214fcf6c7c7d18d8374af7937d697e9a97106e7b74ed1151b955c0e28ad18446770581b6270922269d392c331788d3d287f1a6710dcfc4c45d5734a4ef9aa9f92f02bbb80ad136cba3d59f4e7ceeb13e4d4e45e14397ab840ebc1ed152d22faff6c57568dfce23b499ae5e75820cc501a61e1fa8cfcab462fdeee50a2260a961decbd8fe5cc24d2c0ff0d42912c3aa", 0xa7}, {&(0x7f0000001500)="5a6f0c375c0d7bf98422df598fbec0fe165ceaa91a236148971a5ce3cb78d73d90080c1700d5a898a99412cde64439643b90a9216f8e3b652c814d8d9a2e9c16687d0a5b6bbb9ebd97a33632000a7e055aac1d00506441bdfd1fcfec599a9339c4cbac757249a67502feb4dfc64e26b66232111ae710c3e0ab8b4d497be848c6cd511725e7cb720fa703", 0x8a}], 0x8, &(0x7f0000001640)=[@iv={0xc0, 0x117, 0x2, 0xac, "967e8e13353c6d5ccb3f26be93f76a87813c5188d3b443dddf2f0e6e96301afbc27af82ca2c5db33e8c531514eec0319f9ea2fc501e0d38bd4bf24212b3108d70c89352d7c6bc14258354e1a88ee246d3b551430b5117cf0bb87db70918670e84197fe0b272e69e72134061ce2854bf79544b68977da72dbd6952aa9b0d4616c0b456de35e063064dcc0fd50b70b0abf217590ade313f7bfedf88104cd20c480dff3efb11e649d8c80b50c15"}, @assoc={0x18, 0x117, 0x4, 0x282f}, @op={0x18, 0x117, 0x3, 0x1}], 0xf0}, 0x20000800)
write(r0, &(0x7f0000805000), 0xfe55)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000017c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000001780), 0x13f, 0x3}}, 0x20)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000785000), 0x34a)
sendmmsg$alg(r0, &(0x7f0000000380)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
syz_open_pts(r0, 0x200400)
sysfs$3(0x3)

[  668.912705] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.926842] kobject: 'loop1' (000000006ca20896): kobject_uevent_env
[  668.927143] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  668.938331] kobject: 'loop1' (000000006ca20896): fill_kobj_path: path = '/devices/virtual/block/loop1'
[  668.940766] kobject: 'rx-0' (000000007ed047bd): calling ktype release
03:33:42 executing program 0:
socket$inet6(0xa, 0x80003, 0xff)
syz_emit_ethernet(0x4a, &(0x7f0000000240)={@link_local, @random="6f7e6256f32e", [], {@ipv6={0x86dd, {0x0, 0x6, "6d570e", 0x14, 0xff, 0x0, @empty, @mcast2, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  668.989148] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  668.993077] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  669.009866] kobject: 'loop2' (00000000136ae17f): kobject_uevent_env
[  669.016711] kobject: 'rx-0': free name
[  669.032689] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  669.042019] kobject: 'loop2' (00000000136ae17f): fill_kobj_path: path = '/devices/virtual/block/loop2'
[  669.047074] kobject: 'kvm' (000000002ff89f98): kobject_uevent_env
[  669.063609] kobject: 'tx-0' (00000000c8779190): kobject_cleanup, parent 000000000013d2bc
[  669.069113] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  669.091608] kobject: 'tx-0' (00000000c8779190): auto cleanup 'remove' event
[  669.123065] kobject: 'kvm' (000000002ff89f98): fill_kobj_path: path = '/devices/virtual/misc/kvm'
[  669.126437] kobject: 'tx-0' (00000000c8779190): kobject_uevent_env
03:33:43 executing program 2:
socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$alg(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="826f0d29e9323048ead21a20396aedea17eae89802230749e1b2b87d97ddc90603fb8ca5cca7dd9e4abd0ee91aaf0f47d3c98d7d80d1d0ce9699ba021fb8b71b2a78cdf81999612d6e4cc8f531f0f061c2b2cb5c979c8a3c16fdd67c133fa99f4ab0bb474166d94683c2d342", 0x6c}, {&(0x7f0000000180)='i`:', 0x3}, {&(0x7f00000001c0)="d3be198c0fb2dc2b4a1bc2776692c1fa320fcaeec378f8a49383d3b6db715a8cfb5f7f062f543db1091639ef42ac40686ce8a5ad6019a749207a90e4f96896dcc2221a8537e4d4300f130ee05c4af4de0370311f10392270ea40a31742b3b3aadbc1dbacb36313fa508b892e1e73176440426ae0973b550b714f2626403065ac1e0c40eece306082c7ba6535d52e3f08d4cbff66d74c1d3461e964f5cf1809", 0x9f}, {&(0x7f00000003c0)="dd3812736c2c81819abb932f0a85c0e1ebf8c47f8430375ba9c17cfd54ba36ca8a82d86e2e28b9141dd127f84f7c7c4d43d5d217a902bebb3f1f56f81a96bdac60b205636d9c02592435b91e72d12048f2eb98851224adb36a6087435c5543d5ab331ffd5b88b655d9d05b687f2c11b3731e9dafd5ea8290507326303cb5b6a54e4685e82df86e74a508821c9f519207e3881918d77157c53ded482bcfcc56712da402c333fb2d33f25af12fe046a0615805393c6f41c27109d339ca003cdcc74b2391daf90d79790493bcda056ff433b6dddcf9e211d6af72cb79a9d3692cabb6ea65c59460926ca8d87e4e98c8a978bca4a08f1de73c882d1611f1579e60ca5de8095d95933e556fc674b00856a36bac1f7d854fdb91cbc7ff4737e01d1b661dc9d20ee3f0a598e4ec5ccaa26b7efe2784951090f89f196e7314279a35c9a4305e40c29fb60a2a3daf2c80e14dc6069733cc269cd88aed700e1d512096d86a29a4a3151df0eeb4b766ec2d100432e120694208180a98fd29a35dd8e950fde0490dd89fce8ea19ebbc8411f49d617e3139a0e7a191de8d03658d3deb43bdbcf1de15e952c161bf610eea88f6d35a59df5ef7744d545ff97932cf90dceb305b9ed68b81667ba5c85e97066fbc5324ca7b50e9b8a7f8c914d30e004166601ce743ae5321aaaeb270f9eb577b9123f52d25916030d0eb5db2350a240142b5bebc4fdf48974c02cfa4b698a6006cf5a0e91e96d212bcd80d4e26db27a275be3177e1860829180a0671afae5735f9b21608647b404271a5540ccbe241cc276c177beedf6b5f59258b2054e44a1542f6e00c80a08aa5df700a06e200dc835554064a43fa9a739531e5a25a8043e27d7e177c462ed242846554b9875346341e847cfbd64f8d87131d21fb6ce509cac54659d41b51b2481a28c49e1bd12c15cb60783789519fe7c171c760d05ef7746afd483cdbab66771badaca8557983105e5b10b51d114edd2cd8b9bd967ee95783adf6778d78a178d00e94bacf810a1a3b17bd89aed3bf7c883ee013655b2fda468f909b2fc53fe098b02b165fde7e1468669b180765cda37093be8cd7d42d1205bcbbc44ca3730f9b5829e041fa2546142ac2259b47b481b3847f9d975298c80974f16cd5cf55a64a2574fdae6738f46c9c8cc1670ac7a9988adc2e9a43d73b48a203934638d85d2dccfe0e01b6036f9f290395eb1146540f13656103594bdd18cf8ab11c3bc2ff715e4ea2125f03c1f45f347958d34fc0818ebed3084d1fe06ad6645f642f9096869d0eb8e29e37736e21d0ace9ff6dec338acb78791ea92a2a97c0d1aab62409b55a209e71b224198dd873ead725ecc8561a88e82ec44c5420a18932cba141d05dd6689c47dc4c77fc837c0b186af2ae61ba28706753a2feb79c85fec35fcb611e56bbe378f2990b1e044c927945be82b20a6f8c153a6764f7c2b07a670eda0af7d08d37bfa77509fd46084aaad824e98b312078775859