last executing test programs: 1.209257449s ago: executing program 3 (id=362): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1.208890789s ago: executing program 3 (id=363): rt_sigaction(0xd, 0x0, 0x0, 0x0, 0x0) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000080)={'veth0\x00', {0x2, 0x4e21, @broadcast}}) 774.528153ms ago: executing program 1 (id=367): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 515.008929ms ago: executing program 0 (id=373): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, 0x0, 0x0, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r3, 0x0, 0x0, 0x80, 0x0, 0x0) unshare(0x62040200) 470.617103ms ago: executing program 1 (id=374): mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000004500), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=any,cache=mmap,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',']) 468.542573ms ago: executing program 1 (id=375): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 455.144565ms ago: executing program 3 (id=377): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r3, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r3, 0x0, 0x0, 0x80, 0x0, 0x0) unshare(0x62040200) 445.696206ms ago: executing program 2 (id=378): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') 405.39423ms ago: executing program 2 (id=379): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 400.16871ms ago: executing program 0 (id=380): rt_sigaction(0xd, 0x0, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000200)={0xd13, 0x200, 0x4, 0xadea, 0x7, "ea710000000000f9000000024200", 0x4000000, 0x400}) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000180)=0x2) 347.700915ms ago: executing program 0 (id=381): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"8657b7c2306ba3d683317a3f78cfdb28d5bd6b14b9c1ab6c2c0279f0ef3d46399b5da2b3b59e90a5c35d558fb8b03b6156fe71e734682a10c1ddccf39314ac96267cabc37f1b7cb6c8dca33bbd0fafe23a2d2b4b1313de59d2eee0b81a440c50d246736dad8f3df6331571396e1d75bb51799a25eb9d34e2613152b05fadf1cd8a3cac148d934d466991289926c25e7bfbf474f8c4e8603e7d71349129dc1dbfcc037a768212987ac38d6dbe49234e9083fed1cb866fcb6c89a550ab3e4ee236a653579a449cc8ac9442f2eb080cbac196a3311ce60149cd46ec732d0f1a827ad9cefdf99c409edc1a636681a55e1359ad6987b23e6f3543d3e31b0cedf4359289eb95c9738681ffe72f4415b0de58f7f687a29af05e8d893d14fa40f016083d66e14e9dd393524546ddf9f82a8779a15293edb709b1c2a63ad763270a297d3d8918c6caa843070c025aa6fdcf46c1afee1f03c8c26738ec3881362e106f4a8a74596613c74447398db3259c50b9112e3628546df755ff26ef5e80bb21470bd109e0b7feec6e4686e29c8293d5c68f5ca745465d0a79583bce54a22970dfbf1e7e15f3b6785f84fef7a18f3ad81d1b6ba3afffa36db1808f653af59c0bcd99235f688638f64a7f4d72a6886385f77e85024a1740865a359be4e95d2cf7c640790ce82c4d34c2c1668a2ff9f1230b1240218af8308a6a0d732e9f8fb40de894a3d2450a999b92f7dc22f1d4f8837f8068e54a9fcf412421ee6b2a68d2b06f972f2b974ad5555158cd72902a75bf1a5331c667137b1025012ca1cce7ca607983534545c10c5b984a099a4eb847ae4612adaf98f1b203a61a03f9886721644af54706a5e23434653dbb1db3c1affdec971f47e06e1fd472b1733c07a315da97f2ad8cd9dc090c87fac28344ed386c5da862cf7bc8ec67177f0763af8f15a8815db5d85308c579872f201772905f3820c1fa4ca96106c956b956edd859a97fe46eeeb2161cac33aaa7b4a5d67463b98088ea9dfa8d71d62b2ce07ec556e81077c409c2af5ea4d4d3a09e2c0c8384ee56423b6d81e0f13594003fd8bfc123cd41cade439c007b4323e5d1009c5ed9d85c7917a2a411910967ff8081729d134666b526bb3de5e36b09d1b6315d1671df6b302ed25cb330d79e1e9eb9e6bd399042942cffc360afbcaf021c8f084e8d2973d331bcccf8ff7b90dc1decb55aa63ce4d89c984562643984a502333e9d17ffbd42ebcfa940d292c1ef7bd018f4b1c6052afd01967d42b226b7f75136ffce9d543844407a90e5bace2e359ae76cf861e99b327a9546712f6e2481610aac5f5b69304cd5dc1bcb2cb17368a24ea0a1ce83aa3654b2bc284b118f46091374aa629013a5160683130132d19612259296abc55192cb54f87adf1cb20f7d00592baf9fd36c4e080c681d2c0e6ff3cf36f363ae75c0"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 346.893315ms ago: executing program 1 (id=382): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 227.421528ms ago: executing program 2 (id=383): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 196.505141ms ago: executing program 3 (id=384): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 162.600024ms ago: executing program 0 (id=385): rt_sigaction(0xd, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f0000000080)={'veth0\x00', {0x2, 0x4e21, @broadcast}}) 148.043176ms ago: executing program 3 (id=386): mkdir(&(0x7f0000000000)='./file0\x00', 0x2) rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB='noswap,huge=never,nr_blocks=G']) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') read$FUSE(r3, &(0x7f0000006b40)={0x2020}, 0x206e) 147.229996ms ago: executing program 1 (id=387): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 117.210149ms ago: executing program 3 (id=388): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 69.894704ms ago: executing program 0 (id=389): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x805, 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) 68.986223ms ago: executing program 2 (id=390): rt_sigaction(0xd, &(0x7f0000000180)={0x0, 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000200)={0xd13, 0x200, 0x4, 0xadea, 0x7, "ea710000000000f9000000024200", 0x4000000, 0x400}) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000180)=0x2) 46.717816ms ago: executing program 2 (id=391): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mount$incfs(&(0x7f00000007c0)='.\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0) chdir(&(0x7f00000001c0)='./bus\x00') openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) 45.969166ms ago: executing program 0 (id=392): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 35.271957ms ago: executing program 2 (id=393): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$inet_tcp(0x2, 0x1, 0x0) sendto$inet(r2, 0x0, 0x0, 0x805, 0x0, 0x0) sendto$inet(r2, 0x0, 0x0, 0x80, 0x0, 0x0) unshare(0x62040200) 0s ago: executing program 1 (id=394): rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300)) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f0000000300)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b8000000000f23c00f21f835010003000f23f8ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x4b}], 0x1, 0x3b, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000003c0)={"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"}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x40000000788, 0x80000000002, 0x183, 0x400000004, 0x0, 0xee, 0x0, 0x100000000, 0x1000045, 0x6, 0x3b9, 0xf, 0xfffffffffffffffd, 0x0, 0x8], 0x8000000, 0x3c4210}) ioctl$KVM_RUN(r4, 0xae80, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.208' (ED25519) to the list of known hosts. [ 25.451924][ T36] audit: type=1400 audit(1763102653.470:64): avc: denied { mounton } for pid=282 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 25.453654][ T282] cgroup: Unknown subsys name 'net' [ 25.474770][ T36] audit: type=1400 audit(1763102653.470:65): avc: denied { mount } for pid=282 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 25.502121][ T36] audit: type=1400 audit(1763102653.500:66): avc: denied { unmount } for pid=282 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 25.502523][ T282] cgroup: Unknown subsys name 'devices' [ 25.664754][ T282] cgroup: Unknown subsys name 'hugetlb' [ 25.670725][ T282] cgroup: Unknown subsys name 'rlimit' [ 25.847824][ T36] audit: type=1400 audit(1763102653.870:67): avc: denied { setattr } for pid=282 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 25.871087][ T36] audit: type=1400 audit(1763102653.870:68): avc: denied { mounton } for pid=282 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 25.895852][ T36] audit: type=1400 audit(1763102653.870:69): avc: denied { mount } for pid=282 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 25.926242][ T284] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 25.935207][ T36] audit: type=1400 audit(1763102653.960:70): avc: denied { relabelto } for pid=284 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 25.960911][ T36] audit: type=1400 audit(1763102653.960:71): avc: denied { write } for pid=284 comm="mkswap" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 25.996429][ T36] audit: type=1400 audit(1763102654.020:72): avc: denied { read } for pid=282 comm="syz-executor" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 26.022477][ T282] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 26.031418][ T36] audit: type=1400 audit(1763102654.020:73): avc: denied { open } for pid=282 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 27.429470][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.436877][ T290] bridge0: port 1(bridge_slave_0) entered disabled state [ 27.444732][ T290] bridge_slave_0: entered allmulticast mode [ 27.451016][ T290] bridge_slave_0: entered promiscuous mode [ 27.461527][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.468652][ T291] bridge0: port 1(bridge_slave_0) entered disabled state [ 27.475798][ T291] bridge_slave_0: entered allmulticast mode [ 27.482075][ T291] bridge_slave_0: entered promiscuous mode [ 27.488671][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.495784][ T291] bridge0: port 2(bridge_slave_1) entered disabled state [ 27.502929][ T291] bridge_slave_1: entered allmulticast mode [ 27.509155][ T291] bridge_slave_1: entered promiscuous mode [ 27.515284][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.522360][ T290] bridge0: port 2(bridge_slave_1) entered disabled state [ 27.529429][ T290] bridge_slave_1: entered allmulticast mode [ 27.535793][ T290] bridge_slave_1: entered promiscuous mode [ 27.598184][ T292] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.605380][ T292] bridge0: port 1(bridge_slave_0) entered disabled state [ 27.612631][ T292] bridge_slave_0: entered allmulticast mode [ 27.618868][ T292] bridge_slave_0: entered promiscuous mode [ 27.625453][ T292] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.632541][ T292] bridge0: port 2(bridge_slave_1) entered disabled state [ 27.639601][ T292] bridge_slave_1: entered allmulticast mode [ 27.646258][ T292] bridge_slave_1: entered promiscuous mode [ 27.681200][ T289] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.688377][ T289] bridge0: port 1(bridge_slave_0) entered disabled state [ 27.695508][ T289] bridge_slave_0: entered allmulticast mode [ 27.701936][ T289] bridge_slave_0: entered promiscuous mode [ 27.708677][ T289] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.715894][ T289] bridge0: port 2(bridge_slave_1) entered disabled state [ 27.723118][ T289] bridge_slave_1: entered allmulticast mode [ 27.729406][ T289] bridge_slave_1: entered promiscuous mode [ 27.866510][ T292] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.873608][ T292] bridge0: port 2(bridge_slave_1) entered forwarding state [ 27.880938][ T292] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.888033][ T292] bridge0: port 1(bridge_slave_0) entered forwarding state [ 27.906724][ T291] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.913895][ T291] bridge0: port 2(bridge_slave_1) entered forwarding state [ 27.921270][ T291] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.928380][ T291] bridge0: port 1(bridge_slave_0) entered forwarding state [ 27.954399][ T289] bridge0: port 2(bridge_slave_1) entered blocking state [ 27.961470][ T289] bridge0: port 2(bridge_slave_1) entered forwarding state [ 27.968855][ T289] bridge0: port 1(bridge_slave_0) entered blocking state [ 27.975938][ T289] bridge0: port 1(bridge_slave_0) entered forwarding state [ 27.994393][ T290] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.001471][ T290] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.008800][ T290] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.015885][ T290] bridge0: port 1(bridge_slave_0) entered forwarding state [ 28.060416][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 28.068244][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 28.077096][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 28.084525][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 28.107991][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.115474][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 28.131920][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.139024][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.155518][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 28.162634][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 28.170150][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.177236][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.217173][ T291] veth0_vlan: entered promiscuous mode [ 28.235156][ T292] veth0_vlan: entered promiscuous mode [ 28.242763][ T289] veth0_vlan: entered promiscuous mode [ 28.265596][ T291] veth1_macvtap: entered promiscuous mode [ 28.277024][ T290] veth0_vlan: entered promiscuous mode [ 28.285162][ T292] veth1_macvtap: entered promiscuous mode [ 28.294094][ T289] veth1_macvtap: entered promiscuous mode [ 28.319016][ T290] veth1_macvtap: entered promiscuous mode [ 28.360292][ T291] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 28.396366][ T335] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 28.451055][ T335] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.474470][ T339] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.513372][ T341] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.514098][ T345] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.817582][ T371] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.854087][ T375] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 28.933720][ T381] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 29.015289][ T384] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 29.123704][ T389] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 29.588661][ T428] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 29.767509][ T444] 9pnet_fd: Insufficient options for proto=fd [ 31.525745][ T36] kauditd_printk_skb: 46 callbacks suppressed [ 31.525764][ T36] audit: type=1400 audit(1763102659.550:120): avc: denied { read write } for pid=561 comm="syz.1.102" name="udmabuf" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 31.602374][ T36] audit: type=1400 audit(1763102659.580:121): avc: denied { open } for pid=561 comm="syz.1.102" path="/dev/udmabuf" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 31.629597][ T36] audit: type=1400 audit(1763102659.580:122): avc: denied { ioctl } for pid=561 comm="syz.1.102" path="/dev/udmabuf" dev="devtmpfs" ino=83 ioctlcmd=0x7542 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 31.776711][ T571] kvm: pic: non byte read [ 31.781581][ T571] kvm: pic: non byte read [ 31.799225][ T571] kvm: pic: single mode not supported [ 31.799243][ T571] kvm: pic: level sensitive irq not supported [ 31.812442][ T571] kvm: pic: non byte read [ 31.842855][ T571] kvm: pic: single mode not supported [ 31.842925][ T571] kvm: pic: non byte read [ 31.879750][ T571] kvm: pic: non byte read [ 31.889112][ T571] kvm: pic: non byte read [ 31.894241][ T571] kvm: pic: single mode not supported [ 31.894260][ T571] kvm: pic: level sensitive irq not supported [ 31.900140][ T571] kvm: pic: non byte read [ 31.913609][ T571] kvm: pic: single mode not supported [ 31.913679][ T571] kvm: pic: non byte read [ 31.924349][ T571] kvm: pic: non byte read [ 31.982469][ T582] 9pnet_fd: Insufficient options for proto=fd [ 32.057084][ T36] audit: type=1400 audit(1763102660.070:123): avc: denied { read } for pid=589 comm="syz.2.114" name="binder1" dev="binder" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 32.103870][ T36] audit: type=1400 audit(1763102660.100:124): avc: denied { open } for pid=589 comm="syz.2.114" path="/dev/binderfs/binder1" dev="binder" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 32.173754][ T36] audit: type=1400 audit(1763102660.110:125): avc: denied { ioctl } for pid=589 comm="syz.2.114" path="/dev/binderfs/binder1" dev="binder" ino=14 ioctlcmd=0x6201 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 32.231761][ T36] audit: type=1400 audit(1763102660.160:126): avc: denied { write } for pid=593 comm="syz.2.116" name="/" dev="9p" ino=1694025360095192279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 32.255274][ T36] audit: type=1400 audit(1763102660.160:127): avc: denied { add_name } for pid=593 comm="syz.2.116" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 32.277191][ T36] audit: type=1400 audit(1763102660.160:128): avc: denied { create } for pid=593 comm="syz.2.116" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 32.277518][ T600] kvm: pic: non byte read [ 32.297553][ T36] audit: type=1400 audit(1763102660.160:129): avc: denied { associate } for pid=593 comm="syz.2.116" name="file1" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 32.333358][ T600] kvm: pic: single mode not supported [ 32.333377][ T600] kvm: pic: level sensitive irq not supported [ 32.339131][ T600] kvm: pic: single mode not supported [ 32.383985][ T600] kvm: pic: single mode not supported [ 32.389434][ T600] kvm: pic: level sensitive irq not supported [ 32.416163][ T600] kvm: pic: single mode not supported [ 32.437406][ T603] kvm: pic: single mode not supported [ 32.442990][ T603] kvm: pic: level sensitive irq not supported [ 32.449735][ T603] kvm: pic: single mode not supported [ 32.459548][ T603] kvm: pic: level sensitive irq not supported [ 32.621854][ T619] kvm: pic: level sensitive irq not supported [ 32.638398][ T619] kvm: pic: level sensitive irq not supported [ 32.765273][ T636] kvm: pic: level sensitive irq not supported [ 32.796288][ T636] kvm: pic: level sensitive irq not supported [ 34.472696][ T751] capability: warning: `syz.3.191' uses deprecated v2 capabilities in a way that may be insecure [ 35.843344][ T865] set_target_expiration: 10 callbacks suppressed [ 35.843366][ T865] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.273449][ T905] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.472382][ T919] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.557865][ T925] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.657308][ T932] 9pnet_fd: Insufficient options for proto=fd [ 36.773796][ T948] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.889100][ T955] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 36.943737][ T957] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 37.060397][ T968] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 37.343419][ T990] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 37.415255][ T993] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 37.985136][ T1015] picdev_read: 62 callbacks suppressed [ 37.985159][ T1015] kvm: pic: non byte read [ 38.012762][ T1015] kvm: pic: non byte read [ 38.017592][ T1015] pic_ioport_write: 22 callbacks suppressed [ 38.017612][ T1015] kvm: pic: single mode not supported [ 38.023656][ T1015] pic_ioport_write: 6 callbacks suppressed [ 38.023676][ T1015] kvm: pic: level sensitive irq not supported [ 38.052468][ T1015] kvm: pic: non byte read [ 38.073500][ T1015] kvm: pic: single mode not supported [ 38.073583][ T1015] kvm: pic: non byte read [ 38.094036][ T1015] kvm: pic: non byte read [ 38.104157][ T1015] kvm: pic: non byte read [ 38.114196][ T1015] kvm: pic: single mode not supported [ 38.114215][ T1015] kvm: pic: level sensitive irq not supported [ 38.130122][ T1015] kvm: pic: non byte read [ 38.151493][ T1015] kvm: pic: single mode not supported [ 38.151565][ T1015] kvm: pic: non byte read [ 38.172118][ T1015] kvm: pic: non byte read [ 39.112161][ T1048] kvm: pic: non byte read [ 39.117346][ T1048] kvm: pic: single mode not supported [ 39.117366][ T1048] kvm: pic: level sensitive irq not supported [ 39.132952][ T1048] kvm: pic: single mode not supported [ 39.143488][ T1048] kvm: pic: single mode not supported [ 39.148924][ T1048] kvm: pic: level sensitive irq not supported [ 39.172752][ T1048] kvm: pic: single mode not supported [ 39.901473][ T1070] kvm: pic: single mode not supported [ 39.907044][ T1070] kvm: pic: level sensitive irq not supported [ 39.932834][ T1070] kvm: pic: single mode not supported [ 39.939924][ T1070] kvm: pic: level sensitive irq not supported [ 41.479696][ T1091] kvm: pic: level sensitive irq not supported [ 41.497620][ T1091] kvm: pic: level sensitive irq not supported [ 43.048023][ T1118] picdev_read: 26 callbacks suppressed [ 43.048049][ T1118] kvm: pic: non byte read [ 43.082747][ T1118] kvm: pic: non byte read [ 43.092830][ T1118] pic_ioport_write: 6 callbacks suppressed [ 43.092850][ T1118] kvm: pic: single mode not supported [ 43.099466][ T1118] kvm: pic: level sensitive irq not supported [ 43.122533][ T1118] kvm: pic: non byte read [ 43.152730][ T1118] kvm: pic: single mode not supported [ 43.152802][ T1118] kvm: pic: non byte read [ 43.172727][ T1118] kvm: pic: non byte read [ 43.182975][ T1118] kvm: pic: non byte read [ 43.198708][ T1118] kvm: pic: single mode not supported [ 43.198730][ T1118] kvm: pic: level sensitive irq not supported [ 43.215775][ T1118] kvm: pic: non byte read [ 43.240866][ T1118] kvm: pic: single mode not supported [ 43.240938][ T1118] kvm: pic: non byte read [ 43.252375][ T1118] kvm: pic: non byte read [ 43.484700][ T1125] set_target_expiration: 2 callbacks suppressed [ 43.484721][ T1125] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 43.553560][ T1125] kvm: pic: level sensitive irq not supported [ 43.553642][ T1125] kvm: pic: non byte read [ 43.592646][ T1125] kvm: pic: level sensitive irq not supported [ 43.592985][ T1125] kvm: pic: level sensitive irq not supported [ 43.953931][ T1144] kvm: pic: single mode not supported [ 43.960319][ T1144] kvm: pic: level sensitive irq not supported [ 43.986616][ T1144] kvm: pic: single mode not supported [ 44.004511][ T1144] kvm: pic: single mode not supported [ 44.010006][ T1144] kvm: pic: level sensitive irq not supported [ 44.032762][ T1144] kvm: pic: single mode not supported [ 44.234492][ T1151] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 44.293879][ T1151] kvm: pic: level sensitive irq not supported [ 44.294207][ T1151] kvm: pic: level sensitive irq not supported [ 44.300809][ T1151] kvm: pic: level sensitive irq not supported [ 44.323659][ T1155] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 44.485076][ T1161] netlink: 44 bytes leftover after parsing attributes in process `syz.0.369'. [ 44.512391][ T1161] netlink: 12 bytes leftover after parsing attributes in process `syz.0.369'. [ 44.848796][ T1186] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 44.868198][ T1188] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 44.986183][ T1195] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 45.140086][ T290] ------------[ cut here ]------------ [ 45.145695][ T290] WARNING: CPU: 1 PID: 290 at fs/inode.c:340 drop_nlink+0xce/0x110 [ 45.153735][ T290] Modules linked in: [ 45.157693][ T290] CPU: 1 UID: 0 PID: 290 Comm: syz-executor Not tainted syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 45.169607][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 45.179914][ T290] RIP: 0010:drop_nlink+0xce/0x110 [ 45.185063][ T290] Code: 04 00 00 be 08 00 00 00 e8 cf 54 ee ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc e8 32 e4 97 ff <0f> 0b eb 81 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 59 ff ff ff 4c [ 45.204771][ T290] RSP: 0018:ffffc9000b62fc60 EFLAGS: 00010293 [ 45.210894][ T290] RAX: ffffffff81ee1a7e RBX: ffff8881323e2d10 RCX: ffff88810fa6cc00 [ 45.214211][ T1218] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3851450944 (3851450944 ns) > initial count (1115526657 ns). Using initial count to start timer. [ 45.219176][ T290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 45.244368][ T290] RBP: ffffc9000b62fc88 R08: 0000000000000003 R09: 0000000000000004 [ 45.252440][ T290] R10: dffffc0000000000 R11: fffff520016c5f7c R12: dffffc0000000000 [ 45.261067][ T290] R13: 1ffff1102647c5ab R14: ffff8881323e2d58 R15: 0000000000000000 [ 45.269100][ T290] FS: 00005555612e0500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 45.278223][ T290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 45.284972][ T290] CR2: 00005555613034e8 CR3: 000000012aabc000 CR4: 00000000003526b0 [ 45.293067][ T290] Call Trace: [ 45.296547][ T290] [ 45.299513][ T290] shmem_rmdir+0x5f/0x90 [ 45.303832][ T290] vfs_rmdir+0x3dd/0x560 [ 45.308128][ T290] incfs_kill_sb+0x109/0x230 [ 45.313049][ T290] deactivate_locked_super+0xd5/0x2a0 [ 45.318459][ T290] deactivate_super+0xb8/0xe0 [ 45.323192][ T290] cleanup_mnt+0x3f1/0x480 [ 45.327654][ T290] __cleanup_mnt+0x1d/0x40 [ 45.332085][ T290] task_work_run+0x1e0/0x250 [ 45.336757][ T290] ? __cfi_task_work_run+0x10/0x10 [ 45.341899][ T290] ? __x64_sys_umount+0x126/0x170 [ 45.347068][ T290] ? __cfi___x64_sys_umount+0x10/0x10 [ 45.352534][ T290] ? __kasan_check_read+0x15/0x20 [ 45.357615][ T290] resume_user_mode_work+0x36/0x50 [ 45.363138][ T290] syscall_exit_to_user_mode+0x64/0xb0 [ 45.369284][ T290] do_syscall_64+0x64/0xf0 [ 45.373766][ T290] ? clear_bhb_loop+0x50/0xa0 [ 45.378508][ T290] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 45.384487][ T290] RIP: 0033:0x7fd035b909f7 [ 45.388947][ T290] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 45.409009][ T290] RSP: 002b:00007ffc468b9b48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 45.417503][ T290] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd035b909f7 [ 45.425550][ T290] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc468b9c00 [ 45.433699][ T290] RBP: 00007ffc468b9c00 R08: 0000000000000000 R09: 0000000000000000 [ 45.441759][ T290] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc468bac90 [ 45.449905][ T290] R13: 00007fd035c11d7d R14: 000000000000b02a R15: 00007ffc468bacd0 [ 45.457957][ T290] [ 45.461003][ T290] ---[ end trace 0000000000000000 ]--- [ 45.466771][ T290] ================================================================== [ 45.474913][ T290] BUG: KASAN: null-ptr-deref in ihold+0x24/0x70 [ 45.481175][ T290] Write of size 4 at addr 0000000000000168 by task syz-executor/290 [ 45.489194][ T290] [ 45.491607][ T290] CPU: 1 UID: 0 PID: 290 Comm: syz-executor Tainted: G W syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 45.491642][ T290] Tainted: [W]=WARN [ 45.491647][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 45.491660][ T290] Call Trace: [ 45.491667][ T290] [ 45.491674][ T290] __dump_stack+0x21/0x30 [ 45.491704][ T290] dump_stack_lvl+0x10c/0x190 [ 45.491729][ T290] ? __cfi_dump_stack_lvl+0x10/0x10 [ 45.491752][ T290] print_report+0x3d/0x70 [ 45.491769][ T290] kasan_report+0x163/0x1a0 [ 45.491794][ T290] ? ihold+0x24/0x70 [ 45.491811][ T290] ? _raw_spin_unlock+0x45/0x60 [ 45.491850][ T290] ? ihold+0x24/0x70 [ 45.491873][ T290] kasan_check_range+0x299/0x2a0 [ 45.491899][ T290] __kasan_check_write+0x18/0x20 [ 45.491922][ T290] ihold+0x24/0x70 [ 45.491938][ T290] vfs_rmdir+0x26a/0x560 [ 45.491966][ T290] incfs_kill_sb+0x109/0x230 [ 45.491991][ T290] deactivate_locked_super+0xd5/0x2a0 [ 45.492013][ T290] deactivate_super+0xb8/0xe0 [ 45.492032][ T290] cleanup_mnt+0x3f1/0x480 [ 45.492050][ T290] __cleanup_mnt+0x1d/0x40 [ 45.492067][ T290] task_work_run+0x1e0/0x250 [ 45.492086][ T290] ? __cfi_task_work_run+0x10/0x10 [ 45.492104][ T290] ? __x64_sys_umount+0x126/0x170 [ 45.492130][ T290] ? __cfi___x64_sys_umount+0x10/0x10 [ 45.492153][ T290] ? __kasan_check_read+0x15/0x20 [ 45.492182][ T290] resume_user_mode_work+0x36/0x50 [ 45.492202][ T290] syscall_exit_to_user_mode+0x64/0xb0 [ 45.492225][ T290] do_syscall_64+0x64/0xf0 [ 45.492260][ T290] ? clear_bhb_loop+0x50/0xa0 [ 45.492292][ T290] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 45.492309][ T290] RIP: 0033:0x7fd035b909f7 [ 45.492324][ T290] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 45.492336][ T290] RSP: 002b:00007ffc468b9b48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 45.492353][ T290] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd035b909f7 [ 45.492363][ T290] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc468b9c00 [ 45.492373][ T290] RBP: 00007ffc468b9c00 R08: 0000000000000000 R09: 0000000000000000 [ 45.492383][ T290] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc468bac90 [ 45.492394][ T290] R13: 00007fd035c11d7d R14: 000000000000b02a R15: 00007ffc468bacd0 [ 45.492407][ T290] [ 45.492413][ T290] ================================================================== [ 45.738791][ T290] Disabling lock debugging due to kernel taint [ 45.747364][ T290] BUG: kernel NULL pointer dereference, address: 0000000000000168 [ 45.755308][ T290] #PF: supervisor write access in kernel mode [ 45.761406][ T290] #PF: error_code(0x0002) - not-present page [ 45.767423][ T290] PGD 8000000133112067 P4D 8000000133112067 PUD 0 [ 45.773990][ T290] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI [ 45.780064][ T290] CPU: 0 UID: 0 PID: 290 Comm: syz-executor Tainted: G B W syzkaller #0 0b5ffdee5fcd2f7749818d1ff954e9c21353764e [ 45.793267][ T290] Tainted: [B]=BAD_PAGE, [W]=WARN [ 45.798287][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 45.808444][ T290] RIP: 0010:ihold+0x2a/0x70 [ 45.812965][ T290] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 1d db 97 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 8c 4b ee ff 41 be 01 00 00 00 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 2d [ 45.832582][ T290] RSP: 0018:ffffc9000b62fca0 EFLAGS: 00010246 [ 45.838653][ T290] RAX: ffff88810fa6cc00 RBX: 0000000000000000 RCX: ffff88810fa6cc00 [ 45.846633][ T290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 45.854606][ T290] RBP: ffffc9000b62fcb0 R08: ffffffff88972947 R09: 1ffffffff112e528 [ 45.862771][ T290] R10: dffffc0000000000 R11: fffffbfff112e529 R12: ffff8881323e2d1c [ 45.870760][ T290] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 45.878736][ T290] FS: 00005555612e0500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 45.887668][ T290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 45.894384][ T290] CR2: 0000000000000168 CR3: 000000012aabc000 CR4: 00000000003526b0 [ 45.902382][ T290] Call Trace: [ 45.905727][ T290] [ 45.908669][ T290] vfs_rmdir+0x26a/0x560 [ 45.912951][ T290] incfs_kill_sb+0x109/0x230 [ 45.917684][ T290] deactivate_locked_super+0xd5/0x2a0 [ 45.923064][ T290] deactivate_super+0xb8/0xe0 [ 45.927842][ T290] cleanup_mnt+0x3f1/0x480 [ 45.932278][ T290] __cleanup_mnt+0x1d/0x40 [ 45.936700][ T290] task_work_run+0x1e0/0x250 [ 45.941328][ T290] ? __cfi_task_work_run+0x10/0x10 [ 45.946560][ T290] ? __x64_sys_umount+0x126/0x170 [ 45.951607][ T290] ? __cfi___x64_sys_umount+0x10/0x10 [ 45.957000][ T290] ? __kasan_check_read+0x15/0x20 [ 45.962406][ T290] resume_user_mode_work+0x36/0x50 [ 45.967546][ T290] syscall_exit_to_user_mode+0x64/0xb0 [ 45.973061][ T290] do_syscall_64+0x64/0xf0 [ 45.977511][ T290] ? clear_bhb_loop+0x50/0xa0 [ 45.982208][ T290] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 45.988210][ T290] RIP: 0033:0x7fd035b909f7 [ 45.992753][ T290] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 46.012383][ T290] RSP: 002b:00007ffc468b9b48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 46.020830][ T290] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd035b909f7 [ 46.028816][ T290] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc468b9c00 [ 46.036994][ T290] RBP: 00007ffc468b9c00 R08: 0000000000000000 R09: 0000000000000000 [ 46.045163][ T290] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc468bac90 [ 46.053156][ T290] R13: 00007fd035c11d7d R14: 000000000000b02a R15: 00007ffc468bacd0 [ 46.061149][ T290] [ 46.064197][ T290] Modules linked in: [ 46.068102][ T290] CR2: 0000000000000168 [ 46.072257][ T290] ---[ end trace 0000000000000000 ]--- [ 46.077815][ T290] RIP: 0010:ihold+0x2a/0x70 [ 46.082340][ T290] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 1d db 97 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 8c 4b ee ff 41 be 01 00 00 00 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 2d [ 46.101961][ T290] RSP: 0018:ffffc9000b62fca0 EFLAGS: 00010246 [ 46.108045][ T290] RAX: ffff88810fa6cc00 RBX: 0000000000000000 RCX: ffff88810fa6cc00 [ 46.116038][ T290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.124303][ T290] RBP: ffffc9000b62fcb0 R08: ffffffff88972947 R09: 1ffffffff112e528 [ 46.132323][ T290] R10: dffffc0000000000 R11: fffffbfff112e529 R12: ffff8881323e2d1c [ 46.140435][ T290] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 46.148445][ T290] FS: 00005555612e0500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 46.157479][ T290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.164074][ T290] CR2: 0000000000000168 CR3: 000000012aabc000 CR4: 00000000003526b0 [ 46.172158][ T290] Kernel panic - not syncing: Fatal exception [ 46.178607][ T290] Kernel Offset: disabled [ 46.182939][ T290] Rebooting in 86400 seconds..