INIT: Entering runlevel: 2

[info] Using makefile-style concurrent boot in runlevel 2.
[....] Starting enhanced syslogd: rsyslogd[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

Warning: Permanently added 'ci-upstream-next-kasan-gce-5,10.128.0.21' (ECDSA) to the list of known hosts.
2017/08/11 22:10:33 fuzzer started
2017/08/11 22:10:33 dialing manager at 10.128.0.26:40485
2017/08/11 22:10:40 executing program 0:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x0, 0x3cca})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000afc000-0x80)={[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x1ff)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000afb000)={0x7ff, 0x1, 0xfffffffffffffff8, 0x6, 0x1})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000289000)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x0, 0x0, [{0x3, 0x0, 0x9, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x5d9a, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe948, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f00008e7000)={0x4742, 0xffff, 0xf5, 0x6, 0x1130})
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f00001d5000-0xc)={0x3ff, 0xffffffffffffdb27, 0x5})
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000923000)={0x3, [0x3, 0xffff, 0x5]})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f000044e000-0x4)={0x0, 0x1, 0x7, 0x0})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000afc000-0x48)={0x50001, 0x0, [0x2, 0x59528cd3, 0x80, 0x7, 0x1, 0x4, 0x5, 0xff]})
2017/08/11 22:10:40 executing program 1:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000acd000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b90401004066b8470066bad104b0a9ee0f3052c76dfef3ab66b86f000f00d099d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000af2000)=[], 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000ae9000)={0x7b, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f000000f000-0x68)={0x81, 0x0, [0x100000000, 0x1, 0x0, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000af4000)={0x2, 0x0, [{0x7fff, 0x3, 0x0, 0x0, @msi={0x42e, 0x7, 0x3}}, {0x9, 0x4, 0x0, 0x0, @irqchip={0x1, 0x2}}]})
2017/08/11 22:10:40 executing program 7:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000201000-0xd0)={0x5, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
eventfd2(0x0, 0x0)
eventfd2(0x0, 0x0)
r4 = pkey_alloc(0x0, 0x3)
pkey_free(r4)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000054b000/0x18000)=nil, &(0x7f0000828000-0x18)=[@text32={0x20, &(0x7f0000ae8000)="c4c17d2b461a66ba2000ec26670ff29f775466b804008ee8c744240000900000c7442402b0000000c7442406000000000f01142466baa000b87b0000000f23d00f21f835100000020f23f8f6774666baa000ed66ba42ecc4e27d2a85a2a50000", 0x60}], 0x1, 0x0, &(0x7f0000ae1000)=[], 0x0)
madvise(&(0x7f0000711000/0x4000)=nil, 0x4000, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000aeb000-0x10)={0x1003, 0x0, 0x0})
ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f00005a4000-0x3f)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
write$eventfd(0xffffffffffffffff, &(0x7f0000789000)=0x0, 0x8)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000ae7000)={0x1, 0x0, [{0x11, 0x0, 0x0}]})
2017/08/11 22:10:40 executing program 4:
mmap(&(0x7f0000000000/0x67000)=nil, 0x67000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x2871, 0xffffffffffffffff, 0x0)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000816000/0x4000)=nil)
mmap(&(0x7f0000000000/0xb99000)=nil, 0xb99000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f000001f000)={0x1, 0xae14, [{0x0, 0x0, 0x0}]})
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f000000c000)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000002b000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000062e000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f000000c000)={0x2, 0x0, [{0x1, 0x0, 0x0, 0x4, 0x400, 0x0}, {0xa, 0xff9, 0x0, 0x0, 0x0, 0x0}]})
ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000300000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f000002c000-0x18)={0x1, 0x0, [{0x18e, 0x0, 0xbd992f9}]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005b8000/0x18000)=nil, &(0x7f0000a37000-0x18)=[@textreal={0x8, &(0x7f0000ae1000-0x2d)="66b822f908230f23c80f21f866350800c0000f23f866b8e10ce9300f23c80f21f866350400b0000f23f8653e0fc3050f01d9f3ac0f01cfb80d028ee8bad00466ed26660f01c966660f3a1650d800", 0x4e}], 0x1, 0x0, &(0x7f000018a000-0x20)=[@cr0={0x0, 0x0}, @efer={0x2, 0x100}], 0x2)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000cf000)={0x2, <r3=>0xffffffffffffffff, 0xfffffffffffffffd})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, r2, 0x0)
mbind(&(0x7f00000cc000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000001000-0x8)=0x380000000000000, 0x4, 0x2)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x1)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x3)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000f21000/0x18000)=nil, &(0x7f0000002000-0x18)=[@text32={0x20, &(0x7f0000002000-0x5c)="c4c1a45ea200000000670f01cf66baf80cb8309c8887ef66bafc0cb8ff000000eff2af0f0fb43f05000000b7f20f35660fae730c660f388293256141970fc71ac744240000900000c74424025b000000c7442406000000000f011424", 0x5c}], 0x1, 0x20, &(0x7f0000001000-0x20)=[@cr4={0x1, 0x80}, @cstype3={0x5, 0xe}], 0x2)
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000000000)={0x9600000000000000, 0x6005, 0x0, 0x4, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000144000+0x119)={0x1, [0xb58]})
munlock(&(0x7f00000cf000/0x1000)=nil, 0x1000)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000130000-0x14)={0xfffffffffffffff7, 0x7fff, 0x5, 0x2, 0x8})
mremap(&(0x7f000053c000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00000cd000/0x2000)=nil)
ioctl$KVM_GET_TSC_KHZ(r3, 0xaea3)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f000031f000)={0x6000, 0x0, 0x8, 0xfb, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:40 executing program 2:
mmap(&(0x7f0000000000/0x2e000)=nil, 0x2e000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f000002b000)={0x3, 0x0, [{0x0, 0x7, 0x1, 0x3, 0x3, 0x40, 0x8, [0x0, 0x0, 0x0]}, {0xc0000000, 0x0, 0x0, 0x6, 0x8, 0x99, 0x6, [0x0, 0x0, 0x0]}, {0x80000019, 0x1, 0x1, 0x7, 0x7, 0x8, 0x3000, [0x0, 0x0, 0x0]}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000002c000)="2f6465762f6b766d00", 0x200000022000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x0)
r4 = eventfd2(0x36fc, 0xfffffffffffffffc)
mmap(&(0x7f000002e000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000002f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f000000e000/0x18000)=nil, &(0x7f0000017000-0x18)=[@text16={0x10, &(0x7f0000005000)="d8f1f082595e0865f2a4660f01dd36660fae3a0f02780db840008ec00f20e06635004000000f22e0dada0f20d86635080000000f22d8", 0x36}], 0x1, 0xa, &(0x7f0000030000-0x10)=[@dstype0={0x6, 0x9}], 0x1)
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f000002f000-0x10)={0x100000001, 0x7})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000026000-0x20)={r3, 0x0, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
read$eventfd(r3, &(0x7f000002e000-0x8)=0x0, 0x8)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f000000d000)={0x4, 0x0, [{0x3, 0x2, 0x0, 0x0, @msi={0x1, 0x0, 0x0}}, {0x2, 0x1, 0x0, 0x0, @msi={0x2, 0x2, 0xfe20}}, {0x9, 0x1, 0x0, 0x0, @msi={0x7, 0x4, 0x9}}, {0x1, 0x0, 0x0, 0x0, @irqchip={0x9, 0x9}}]})
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f000002d000)={r3, 0x2007, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
write$eventfd(r3, &(0x7f000000f000-0x8)=0x401, 0x8)
2017/08/11 22:10:40 executing program 3:
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pkey_alloc(0x0, 0x0)
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x2, 0x0)
read$eventfd(r1, &(0x7f0000aec000)=0x0, 0x8)
2017/08/11 22:10:40 executing program 5:
mmap(&(0x7f0000000000/0x28000)=nil, 0x28000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000006000-0xc)={0x2, <r2=>r1, 0x0})
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x33, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000029000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f000002a000-0x10)={0x5000, 0x100000, 0x0})
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000028000)={0xc000000000000000, 0x6004, 0xffe, 0x1, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000017000)={{0x106000, 0xf001, 0x1f, 0x6, 0x5, 0x6000000000000000, 0x4, 0x8001, 0x1, 0x1f, 0x2, 0x6585099f, 0x0}, {0x3, 0xf000, 0x0, 0x9, 0x100000001, 0x2, 0x1f, 0x10000, 0x2, 0x8, 0x120000000, 0x2, 0x0}, {0x0, 0x6000, 0xe, 0x8, 0x4, 0x400, 0x800, 0x1f, 0x4, 0xfffffffffffffffc, 0x289, 0x2, 0x0}, {0x4000, 0x4, 0xe, 0x5, 0x20, 0x0, 0x3, 0x80000000, 0x4, 0x7, 0x1, 0xfffffffffffffffd, 0x0}, {0x4, 0x4000, 0xf, 0x3, 0x9f99, 0x1, 0x6d0, 0xfffffffffffffffe, 0x80, 0x9, 0x5, 0x400, 0x0}, {0x4000, 0x1f000, 0xb, 0x7fffffff, 0x3, 0x4, 0x7, 0x5, 0x100000001, 0x9, 0xff, 0x5, 0x0}, {0xd001, 0x5000, 0x0, 0x100000000, 0x101, 0x6, 0x200, 0x7, 0x3, 0xfffffffffffffc00, 0x5, 0x4, 0x0}, {0xf000, 0x3000, 0x0, 0x0, 0xf87b, 0x5, 0x8, 0xff, 0x4, 0x40, 0x7fffffff, 0x6, 0x0}, {0x1, 0x2, [0x0, 0x0, 0x0]}, {0x6000, 0x5000, [0x0, 0x0, 0x0]}, 0x4, 0x0, 0x0, 0x2000, 0x6, 0x8000, 0x2, [0x5, 0x100, 0x4, 0x8]})
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000000f000/0x18000)=nil, &(0x7f0000029000-0x18)=[@text16={0x10, &(0x7f000000d000)="0f06ba4200ec66b8e90000000f23d80f21f86635000000400f23f866b8008000000f23d00f21f866352000000d0f23f86766c74424002f9f9ae46766c7442402480000006766c744240600000000670f011c240fc76a2a66b98508000066b80078000066ba000000000f300f07b861000f00d866b9800000c00f326635008000000f30", 0x83}], 0x1, 0x37, &(0x7f0000009000-0x20)=[@cr0={0x0, 0x40040001}, @dstype3={0x7, 0x1}], 0x2)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000002000/0x18000)=nil, &(0x7f0000024000-0x18)=[@text32={0x20, &(0x7f0000025000-0x64)="66b80d018ed00f21d3dfebc7442400de5f0000c7442402cc9e557bc7442406000000000f011c24c744240027610000c7442402dca79e83c7442406000000000f011c24b9a40b00000f32f2afb805000000b9fd1200000f01d90fc72d4000000066b809008ee0", 0x66}], 0x1, 0x0, &(0x7f0000023000)=[], 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000022000-0x20b)={"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"})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000011000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34b582ec71cdec61, [0x4, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000022000-0x18)={0x1, 0x0, [{0x832, 0x0, 0xfffffffffffffffd}]})
mmap(&(0x7f0000029000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000029000)={"70bb2a128b3e90781041d44f4ed210182c8ad5cfe4871781588a516c5f0d384e4ca3603cacc146ef011ac748d359b63730c6e6cc5d77886de9d396479889d55bc24fb36817bc31d53eba46ec34cb2557194159b37d638188f7ed8b890a800d217f4ccd306d4e4c612063db6c280459216b2f7896c875d626316a1f14a952d2c852ed7f20180a530e2538bda1281842af03006e2ae91e1a7030d82fd60763bef7fa6ac3391e20b29368345b928d9ae86cc8901c76d48b0143bd8a886d55be0755a4e3eb9b971974559175c59f7e3d05e775c98a3508e43eefbae7a7659f6395de6e2cfb9f2efb635d821c52f49a6cf1742f105914f16122034220c2a6f0520d26a16cd1605fe15680dd76cf843985aae9290f56e42206e113374b4d3c0d93020758dd28362aa61638fe47831f60d23840ece28f390412b45f61f85a849a25fb385b779360a4a81dfdb7dda333306389aeeac957c1e1bb62467b33191bc8b9db7a47402e7bcc8083db61f313bff10d2fac4906afbc562af33b1ec061e895fb3ea52f6a1e9b43c253e536b7f31ea2769d1246734aef2c2d9a1c1c9ff68cfd16c7b595fd8a2236ac70624b3f007f0cf6e94130dd5bc895a36bce9df396f5cd1741bff3e9cd2766cf052a2650202a303f1236c27d57ca0938382826cee587bdb98b680986170fa3d6bec0ef4604e1433c6b1d1c7c0aa43befc947cd00b1dc690294dc02c9fa6b194833db38f6da270ceece0bb3375c2018effeeb57d642b758225936c001907de8a8cb64a8ac30858fcacc8ec615269ecb9c22b8ee1740eb018daeabdce89679645e5cdec1f2abcc2786a5d58b18fff5bba12e9dd76fbc24f0e19cfa6a14dce2ff713373884f8267eed9d207051c0f1303e401db66b35f73cc2a5b7c4faa425b7d9c19f456e60835424c336f6c16367b13cc2f3cb9cdfe8ca878d25f61f9dc62ab5e02d9d7628b2a57226ee0f6eeb00886b7356750d7c80bff1918688efd0dc816e1048b327960bef92638acef6c7f969c3cf637954665c97c02086423429d6fd45d475d60e46f0ea0ff688e6878b1012ebd46ee981f1c0b4402346687e0b629c5ee83317b28923e77516f5d6c1e3fcff71a8bf166c16430e5134372ef9fd3f3398c4590601d76c1f45e0aceff4a3699622698854b4f12cfe924a93abbc1b5559a2efaa4d4400cda58f201ddbc35fc87da86629eff83989c1f34ad47425c795ed712220b14a6f4f6aa9acbc509c0f9fee8e1846bbfd58b90fbf0e02be42d533ab91a1d0022e9d3c045056b485edee3476e32fc7bedb06aa35a3d848ee6ff76db2430c9e7195d012fef3226bd29b9babd1d0da57e0cf17e54e4329cb520256a7d880a92965a6496ba192fc6626e3db964f2091d234b9462f6b938cc68160d07c358f0222dee886507401a144fd86e31ca9d6f7a63fc57706c2467b5fd"})
2017/08/11 22:10:40 executing program 6:
mmap(&(0x7f0000000000/0xaea000)=nil, 0xaea000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000987000)={0x6, <r0=>0xffffffffffffffff, 0x0})
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000147000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aeb000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x80000000007fe, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000aeb000)={0x0, 0x7, 0x8, &(0x7f0000aeb000)=0x0})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_ASSIGN_DEV_IRQ(r2, 0x4040ae70, &(0x7f0000039000-0x10)={0x954, 0x8, 0xfffffffc, 0x1563a85c6c8d69ab})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r3=>r2, 0x0})
ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f0000ae7000)={"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"})
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f0000aec000-0xa8)={0xa, 0x3, [{0x6, 0x0, 0x6}, {0x7, 0x0, 0x100}, {0x79e, 0x0, 0x0}, {0xfff, 0x0, 0x3}, {0x8, 0x0, 0xfffffffffffffff9}, {0x9b, 0x0, 0x8}, {0x2, 0x0, 0x7}, {0xfffffffffffffbff, 0x0, 0x0}, {0x0, 0x0, 0x7}, {0x3ff, 0x0, 0x35b1}]})
ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f0000ae8000)={0xfffffffffffffffe, 0xffffffffffffffff})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000aeb000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000ae9000)={0xffffffff, 0x0})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f00004dd000-0x70)={[{0x90c, 0x3, 0x1, 0x100, 0x8, 0x101, 0x1d, 0x800, 0xff, 0x4, 0xd69b, 0x8, 0xfa3c}, {0x4, 0x0, 0x31, 0x3, 0x7fffffff, 0x9, 0x800, 0xfffffffffffffffa, 0x5, 0x10000, 0x0, 0x7, 0x401}, {0xe3, 0x8, 0x1000, 0x5, 0x9, 0x7, 0x2, 0x80000001, 0x46, 0x9, 0x5, 0x8, 0x80}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f000088e000/0x18000)=nil, &(0x7f0000ae0000-0x13)=[@text16={0x10, &(0x7f0000ada000)="ba2000b0f0eeba610066b81d00000066efb800008e0c87e4670f01c800072c0f01b6cba966b8db0000000f06c80f21f866350800d0000f23f83e6567660f38dea419f79758603e3ef2ad", 0x4a}], 0x1, 0x0, &(0x7f0000adf000)=[], 0x0)
ioctl$KVM_INTERRUPT(r4, 0x4004ae86, &(0x7f0000228000-0x4)=0xff)
ioctl$KVM_DIRTY_TLB(r4, 0x4010aeaa, &(0x7f0000ae8000)={0x7fffffff, 0x800})
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000478000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x400000000000}, {0x0, 0x1, 0x200000000000, 0x0, 0x101, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbf, 0x0, 0x0, 0x2, 0x0, 0x717c8be1, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syzkaller login: [   40.806330] kvm: KVM_SET_TSS_ADDR need to be called before entering vcpu
[   40.862304] kvm pmu: pin control bit is ignored
[   40.875347] kvm_pmu: event creation failed -2
2017/08/11 22:10:41 executing program 0:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x0, 0x3cca})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000afc000-0x80)={[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x1ff)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000afb000)={0x7ff, 0x1, 0xfffffffffffffff8, 0x6, 0x1})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000289000)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x0, 0x0, [{0x3, 0x0, 0x9, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x5d9a, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe948, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f00008e7000)={0x4742, 0xffff, 0xf5, 0x6, 0x1130})
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f00001d5000-0xc)={0x3ff, 0xffffffffffffdb27, 0x5})
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000923000)={0x3, [0x3, 0xffff, 0x5]})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f000044e000-0x4)={0x0, 0x1, 0x7, 0x0})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000afc000-0x48)={0x50001, 0x0, [0x2, 0x59528cd3, 0x80, 0x7, 0x1, 0x4, 0x5, 0xff]})
2017/08/11 22:10:41 executing program 4:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000688000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f000000b000)={0x1000, 0x4000, 0x8, 0xf40, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000af5000)={0x79, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xd000)=nil, 0xd000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x0)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000afc000-0x80)={[0x5000, 0x3000, 0xf005, 0x0], 0x681ae888, 0x0, 0xfff, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mprotect(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x4)
mbind(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3, &(0x7f000000d000-0x8)=0x8abc, 0x9, 0x1)
mlock2(&(0x7f0000006000/0x2000)=nil, 0x2000, 0x1)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000221000)=0x100000001)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00005d2000)={0x0, 0x2, 0x1000, 0x2000, &(0x7f000062d000/0x2000)=nil})
mmap(&(0x7f0000afc000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000afc000)=0x4)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000007000/0x18000)=nil, &(0x7f0000022000-0x18)=[@textreal={0x8, &(0x7f0000af1000-0x6b)="b862038ee866b8fdffffff0f23d00f21f866350000000a0f23f80f213666b8c0cfc3810f23d00f21f866351000000e0f23f836660f2acb26660f380292a284dfa164e466b9800000c00f326635000400000f30baf80c66b84b501d8766efbafc0cb099eeba6100b8e13aef", 0x6b}], 0x1, 0x0, &(0x7f0000021000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000afc000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000afc000)=0xffffffffffff7fff)
[   40.994347] *** Guest State ***
[   41.023191] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
2017/08/11 22:10:41 executing program 7:
mmap(&(0x7f0000000000/0x64000)=nil, 0x64000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = eventfd2(0xfff, 0x80800)
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000065000-0x20)={0x2004, &(0x7f0000065000-0x8)=0x0, 0x1, r2, 0x4})
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000011000-0xc)={0xef, 0x0, 0x3ff})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000064000)={0xfffffffffffffff7, 0x4, 0xfffffffffffffffb, 0x501})
r3 = eventfd2(0x8000000003, 0x1)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000000d000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000065000-0x20)={0xf000, 0x0, 0x2, 0x7f, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000064000)=0x2)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000006000)={0x0, &(0x7f000002d000)=0x0, 0x8, r3, 0xa})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0xfffffffffffffffe)
mmap(&(0x7f0000065000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000065000)=@pic={0x9, 0x8001, 0x4, 0x20, 0x1000, 0x7, 0x8, 0x0, 0x6, 0x7, 0x0, 0x0, 0x9, 0xff, 0x2, 0x9})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000064000)={0x3, &(0x7f000002d000)=0x0, 0x2, r3, 0x100000003})
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f000004e000)=0x7)
[   41.083006] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
2017/08/11 22:10:41 executing program 3:
mmap(&(0x7f0000000000/0xae8000)=nil, 0xae8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x200000, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x1, 0x0)
mmap(&(0x7f0000184000/0x2000)=nil, 0x2000, 0x3, 0x32, r0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00001c5000)={0x7, <r1=>r0, 0x1})
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000aeb000-0x4)={0x4000000001e, 0x1, 0x43c4, 0x0})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000766000-0x9)="2f6465762f6b766d00", 0xe0000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000ae8000)=0xf005)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f0000aea000)={0x0, []})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000a14000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000124000-0x10)={0x1, 0x10000e})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000165000/0x800000)=nil, 0x800000, 0x3, 0x10000008852, r5, 0x0)
madvise(&(0x7f00004b5000/0x3000)=nil, 0x3000, 0xe)
read$eventfd(r0, &(0x7f0000277000-0x8)=0x0, 0x8)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00003ff000/0x4000)=nil, 0x4000, 0x3, 0x2010, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000aea000)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x4)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f000026d000-0x14)={0x20, 0x9, 0xe6, 0x6, 0x648})
[   41.092790] APIC base relocation is unsupported by KVM
2017/08/11 22:10:41 executing program 5:
ioctl$KVM_CHECK_EXTENSION_VM(0xffffffffffffffff, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000ae4000)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}], 0x1)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000ae4000)=0x1)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(0xffffffffffffffff, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x0, 0x32, r2, 0x0)
mbind(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x0, &(0x7f0000f72000)=0x0, 0x0, 0x0)
[   41.125038] CR3 = 0x00000000fffbc000
[   41.163662] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
[   41.188940] RFLAGS=0x00033000         DR7 = 0x0000000000000400
2017/08/11 22:10:41 executing program 0:
mmap(&(0x7f0000000000/0xaf5000)=nil, 0xaf5000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00008d6000)={0x7, <r2=>r1, 0x0})
ioctl$KVM_S390_UCAS_MAP(r2, 0x4018ae50, &(0x7f00009f6000-0x18)={0x7fffffff, 0x7, 0x8})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000274000/0x18000)=nil, &(0x7f0000adf000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595d2a1ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd253883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
mmap(&(0x7f0000000000/0xae9000)=nil, 0xae9000, 0x6, 0x110, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r5, 0xc208ae62, &(0x7f0000ae6000-0x10)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_REINJECT_CONTROL(r5, 0xae71, &(0x7f0000630000-0x20)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r2, 0x4080aea1, &(0x7f0000af7000-0x8a)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000af5000)={0xfffffffffffffffc, 0x4})
ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f00001f7000-0x10)={0x0, 0x0})
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f000025f000)={"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"})
ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f000017f000)={0xfffffffffffff4c9, 0x117000})
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000710000-0x20)={0x3000, 0x2002, 0x0, 0x7, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f00003ff000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT(r5, 0xc048ae65, &(0x7f0000af8000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_NMI(r3, 0xae9a)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:41 executing program 7:
mmap(&(0x7f0000000000/0x64000)=nil, 0x64000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = eventfd2(0xfff, 0x80800)
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000065000-0x20)={0x2004, &(0x7f0000065000-0x8)=0x0, 0x1, r2, 0x4})
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000011000-0xc)={0xef, 0x0, 0x3ff})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000064000)={0xfffffffffffffff7, 0x4, 0xfffffffffffffffb, 0x501})
r3 = eventfd2(0x8000000003, 0x1)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000000d000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000065000-0x20)={0xf000, 0x0, 0x2, 0x7f, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000064000)=0x2)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000006000)={0x0, &(0x7f000002d000)=0x0, 0x8, r3, 0xa})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0xfffffffffffffffe)
mmap(&(0x7f0000065000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000065000)=@pic={0x9, 0x8001, 0x4, 0x20, 0x1000, 0x7, 0x8, 0x0, 0x6, 0x7, 0x0, 0x0, 0x9, 0xff, 0x2, 0x9})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000064000)={0x3, &(0x7f000002d000)=0x0, 0x2, r3, 0x100000003})
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f000004e000)=0x7)
[   41.216266] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   41.245202] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
2017/08/11 22:10:41 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000034b000)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x52, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000028b000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@text32={0x20, &(0x7f00002ea000)="0f8306000000d935000000000f213666baf80cb870aeef87ef66bafc0cb8a0d50000eff20f060f01c966ba6100edc74424000a000000c7442402329a0000c7442406000000000f011424b8010000000f01c1260f01cb", 0x56}], 0x1, 0x4, &(0x7f0000aee000-0x10)=[@cr0={0x0, 0x13}], 0x1)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0xfffffffffffffffd)
mmap(&(0x7f0000aad000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000738000/0x3000)=nil, 0x3000, 0x0, 0x32, r2, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text32={0x20, &(0x7f000099b000)="66baa000ec66b830008ee09ae200000022000f21ecb805000000b9001000000f01d9662e0f2026f26d64653e2e660fc6189cdd48e5b946020000b812b90000ba000000000f30", 0x46}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
r4 = pkey_alloc(0x0, 0x0)
pkey_free(r4)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000019a000/0x1000)=nil, 0x1000, 0x3, 0x20010, 0xffffffffffffffff, 0x1000000000000)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000af0000-0x18)=[@textreal={0x8, &(0x7f0000499000)="0f0766360f0db5e77bf20f320f20c06635000001000f22c00f35ba2000ecbaf80c66b8c451aa8a66efbafc0c66b818ec000066ef3b32dfbb0080660f3a147f0a00", 0x41}], 0x1, 0x10, &(0x7f0000aef000)=[@cr4={0x2, 0x200000}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x1000)
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000246000-0x10)={0x75, 0x80000000000})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000aed000)={0x0, 0x10000, 0x0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_REINJECT_CONTROL(r2, 0xae71, &(0x7f00001e1000)={0x10000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mremap(&(0x7f000028f000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00005cd000/0x3000)=nil)
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000af4000)="2f6465762f6b766d00", 0x101000, 0x0)
2017/08/11 22:10:41 executing program 4:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x0, 0x3cca})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x0, 0x0, [{0x3, 0x0, 0x9, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x5d9a, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe948, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
[   41.299584] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.384144] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.446448] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.487409] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.507662] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.527091] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   41.543089] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   41.561227] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   41.569573] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   41.577839] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   41.584293] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   41.591928] Interruptibility = 00000000  ActivityState = 00000000
[   41.598188] *** Host State ***
[   41.601543] RIP = 0xffffffff811b6777  RSP = 0xffff8801cccef4c8
[   41.607539] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   41.614259] FSBase=00007fd08951d700 GSBase=ffff8801dc000000 TRBase=ffff8801dc122cc0
[   41.622067] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   41.628143] CR0=0000000080050033 CR3=00000001ccb63000 CR4=00000000001426f0
[   41.635174] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   41.642105] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   41.648173] *** Control State ***
[   41.651782] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   41.658471] EntryControls=0000d1ff ExitControls=0023efff
[   41.664087] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   41.671036] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   41.677846] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[   41.684437]         reason=80000021 qualification=0000000000000000
2017/08/11 22:10:41 executing program 6:
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x4, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_PPC_GET_SMMU_INFO(r0, 0x8250aea6, &(0x7f00001f9000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aef000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000190000-0x18)={0x100000, 0x10000, 0x44, 0x89, 0x7})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_XSAVE(r4, 0x5000aea5, &(0x7f000031d000-0x400)={"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"})
2017/08/11 22:10:41 executing program 3:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000049e000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x40)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000003e000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000ae6000-0x52)="660f08260f01f8470fc76f00650fc71fcfc443cd6c4bfaa066baf80cb828054e82ef66bafc0ced0f20c035200000000f22c066baf80cb89a5c0280ef66bafc0cb000ee66baf80cb88025468366bafc0ced", 0x51}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000000000/0xbf3000)=nil, 0xbf3000, 0x2000000000001, 0x8032, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000bf3000-0xc)={0x0, <r3=>0xffffffffffffffff, 0x0})
ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f0000582000-0x400)={"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"})
mprotect(&(0x7f0000362000/0xc00000)=nil, 0xc00000, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f000000f000)={0x0, 0x1, &(0x7f0000ae0000)="", &(0x7f0000ae0000)="bb", 0x0, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae0000-0x28)={0x1, 0x0, [{0x1, 0x0, 0x0}]})
ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000ae5000)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f000001e000)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)="2f6465762f6b766d00", 0x600, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_PIT2(r5, 0x4070aea0, &(0x7f000005c000-0x70)={[{0x2d, 0xb0, 0x6, 0x100000000, 0x0, 0x1, 0x5, 0x4, 0xffffffffffff0001, 0xf5, 0x6, 0x9a, 0x3f}, {0x3, 0xe29, 0xd9, 0x7, 0x2, 0x0, 0x8000, 0x3, 0x425, 0xc97, 0x2, 0x6, 0x0}, {0x2, 0xdbbc, 0xd06b, 0x5, 0x2, 0x3, 0x828, 0x1, 0x9, 0x8, 0x2000, 0x800, 0x80000001}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_ASSIGN_PCI_DEVICE(r7, 0x8040ae69, &(0x7f0000006000)={0x0, 0x0, 0x10, 0x1, 0x0})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1fffffffffffffff)
ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f000000c000)={0x366, 0x2f25})
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000aeb000)={0x7, <r9=>r6, 0x0})
ioctl$KVM_X86_SET_MCE(r9, 0x4040ae9e, &(0x7f000000d000-0x40)={0x8000000000000000, 0x0, 0x401, 0x8, 0x19, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000aec000)={0x2, [0x0, 0x3f]})
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
2017/08/11 22:10:41 executing program 1:
mmap(&(0x7f0000000000/0xaea000)=nil, 0xaea000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aeb000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x80000000007fe, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000039000-0x10)={0x954, 0x8, 0xfffffffc, 0x1563a85c6c8d69ab})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r2=>r1, 0x0})
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000ae7000)={"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"})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000ae8000)={0xfffffffffffffffe, 0xffffffffffffffff})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000aeb000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f0000ae9000)={0xffffffff, 0x0})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00004dd000-0x70)={[{0x90c, 0x3, 0x1, 0x100, 0x8, 0x101, 0x1d, 0x800, 0xff, 0x4, 0xd69b, 0x8, 0xfa3c}, {0x4, 0x0, 0x31, 0x3, 0x7fffffff, 0x9, 0x800, 0xfffffffffffffffa, 0x5, 0x10000, 0x0, 0x7, 0x401}, {0xe3, 0x8, 0x1000, 0x5, 0x9, 0x7, 0x2, 0x80000001, 0x46, 0x9, 0x5, 0x8, 0x80}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000088e000/0x18000)=nil, &(0x7f0000ae0000-0x13)=[@text16={0x10, &(0x7f0000ada000)="ba2000b0f0eeba610066b81d00000066efb800008e0c87e4670f01c800072c0f01b6cba966b8db0000000f06c80f21f866350800d0000f23f83e6567660f38dea419f79758603e3ef2ad", 0x4a}], 0x1, 0x0, &(0x7f0000adf000)=[], 0x0)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000228000-0x4)=0xff)
ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000ae8000)={0x7fffffff, 0x800})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000478000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000}, {0x0, 0x1, 0x200000000000, 0x0, 0x101, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbf, 0x0, 0x0, 0x2, 0x0, 0x717c8be1, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:41 executing program 7:
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pkey_alloc(0x0, 0x0)
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x2, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f00002e6000)={0x200000000000000, 0x3, 0x5})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000202000)={0x1, <r3=>r1, 0x0})
mmap(&(0x7f00003a2000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r3, &(0x7f0000aed000-0x8)=0x4000000000000089, 0x8)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x3e, 0xffffffffffffffff, 0x0)
read$eventfd(r2, &(0x7f0000aec000)=0x0, 0x8)
ioctl$KVM_GET_LAPIC(r0, 0x8400ae8e, &(0x7f00004b9000)={"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"})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00002a4000)={0x7, <r4=>r1, 0x0})
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00006ae000)={0x5, <r5=>r1, 0x1})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00008d7000)={0x0, <r6=>r1, 0x0})
mmap(&(0x7f00000ee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000aee000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
mmap(&(0x7f000007d000/0x2000)=nil, 0x2000, 0x20003, 0x10, r1, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f0000736000-0xc8)={0x4, 0x0, [{0x0, 0x4, 0x0, 0x0, @adapter={0xfffffffffffff000, 0x1, 0x7fff, 0x1000, 0x80000000}}, {0x81, 0x3, 0x0, 0x0, @irqchip={0xee5, 0x1f}}, {0x39ed, 0x1, 0x0, 0x0, @msi={0x2, 0x9, 0x1}}, {0x8, 0x3, 0x0, 0x0, @irqchip={0x1, 0x40}}]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT2(r6, 0x4070aea0, &(0x7f0000aef000-0x70)={[{0x1, 0x7, 0x5, 0x8, 0x7, 0x0, 0x5, 0x6, 0x5, 0x1, 0x80, 0x9, 0x6c}, {0x7ff, 0x7f, 0x1000, 0x1000, 0x0, 0x238c, 0xb1, 0x3f6e, 0x7, 0x40, 0x400, 0x6, 0x100}, {0xffff, 0x9, 0xf55, 0x7, 0xa, 0x80000001, 0x0, 0x48, 0x8, 0x40, 0x9, 0xd8f, 0x2}], 0x1800000000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r5, 0xae78, &(0x7f0000598000-0x8)=0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0xb3e, 0x0)
2017/08/11 22:10:41 executing program 5:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000001000-0xc)={0x0, <r0=>0xffffffffffffffff, 0x0})
ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4068aea3, &(0x7f0000ecd000)={0x7b, 0x0, [0x1, 0x4, 0x8, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xaf5000)=nil, 0xaf5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000af6000-0x9)="2f6465762f6b766d00", 0x204040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r3, 0x0, &(0x7f00007f5000-0x20)={0x7fffffff, 0xa8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f0000847000)={0x8000, 0x3, 0x401, 0x0})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00002ee000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text16={0x10, &(0x7f0000af5000-0x46)="66b9e00600000f3207440f20c0663502000000440f22c00fc72c660f71e70d66b9ff0900000f320f01cabaf80c66b83cdf128e66efbafc0c66ed67f20f5e40e73e26260f2817", 0x46}], 0x1, 0x0, &(0x7f0000af4000)=[], 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r0, &(0x7f0000af6000)=0x0, 0x8)
mmap(&(0x7f0000000000/0x2c000)=nil, 0x2c000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = eventfd2(0x0, 0x0)
r7 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000026000-0x20)={r6, 0x0, 0x2, r7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000002c000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r5, 0x4040ae70, &(0x7f000002d000-0x10)={0x82e7, 0x1, 0xf35, 0x705})
r8 = eventfd2(0x0, 0x0)
r9 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000018000)={r8, 0x5, 0x2, r9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000017000)={r8, 0x0, 0x2, r9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000021000)={r8, 0x6, 0x3, r8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:41 executing program 4:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000006000)={0x0, 0x0, 0x10, 0x1, 0x0})
ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f0000672000-0x14)={0x0, 0x3cf, 0x6f9c, 0x6, 0x7})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
2017/08/11 22:10:41 executing program 0:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f000038c000)={0x7, <r0=>0xffffffffffffffff, 0x1})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r0, 0x4040ae72, &(0x7f0000001000-0x14)={0x3d, 0xfff, 0x80, 0x3, 0x9})
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="36dc8044b9000066b84710000000d0ba000000000f3052c76dfef3ab66b86f000f99d520e0e0e02ec1e80566b8c4000f00d035001000000d30ef66bafc0cc966e958e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f00001bc000-0x10)={0x8, 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000aee000-0x8)=0x10000)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f000033d000-0x8)={0x1, 0xffffffffffff8001})
ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f000033b000-0x8)=0xb4)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f0000aee000)={0x8, 0x3, 0x6, 0x1})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CLOCK(r2, 0x4030ae7b, &(0x7f0000aef000-0x30)={0x20, 0x401, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000aec000)={"3a5ca361a0df102fae43a3f1ec872c0185c9813608eed8f847374008d61d0bcfc300bc75ce5da3001ccb1007655a4f7410ae2abb351756d32573ad07efbff26b6c29f3f5b20949d1948e7dc1c8f2b7a1f53f726c506fca42d4a7935507ddb99198bc1ac4b348ae7c27061ead76d16ca486010f0a3be5e5fb88b250282a1f4370084b669a6aa05d6f099ea5ce98744d4d02be5ff2bfc8a7b31392162b70f9bf6a7921ca46c22eba76a3f5fada926a9e3d39e841a85aff9e2e11df5a017550dd503eafb49349716d060d697bd0978eac053d12de846fb7d0ef0ce4f7942061ad998b000619474f6ab8bbaf74f23bef3d8874a920f438d7a3bbe9ac54c269dd8463b191dfff03924e9ef495aad2c7831f72e87d20d39c031000c2b6b009dc52fe4a87d2adbd31ef3991643480dc4e1194dad4aaae0bbd182f86a7572202d932534fe78aa6205a387714ba722fc29e394626c6950754c5bd8e959a3d108590f13f43f23507624d0f3b464f483d2f11441d510b1269bd87224f20a2cb5984b4f2be4d93aef0f2ae60ada076cc86b6ecd9f9cd27c13ff16725a99f1d96fb35409d9aad7cd14b4a0a6fa33249d40760c0dd77c75cea3ced7055169a87c767c91aadd231e5b211e9b8df16a1e2aef8d3a7e02a4f7c8fa5e989f9a2c488638fec8d03543fededef667b0b0cde85958ef5dd2355e3dade1126022ada4186160bcf69013a938bd9c5fe1f46fd5c8d522320840de0ede209ee11a4655a157b1ed47b6aa5daad7bc7f96313d2e02144e50a7f64ccfb866b1cc3a04ebd7e460e69f42856b474e681e2917b593b931c8987a487329d58151d14f4f1eb1b123f29f21899c524c2808269f7a833d5ed3cd93e2ffc0dbdf3c50c736b10512607837e8f50144c1c14e052c788381a2b236becb2d2bfdf0467cefcbe6926090434d31323d47576de4566f61ab7f1fab0f73e2e9b58c328f73f8fecef3e9bbad4b177d9dd2a0e3e7a6f108477afef361fd23ea1a575dd9b86515833f5bd4ccf9ddb9e5432d723f3eb50339ae229108ae769ac632d312761db5057fe4ddfae2f22be1f709bc0feef9d8dcf05a425d354bda07e3780f19d3a073e737bcc8220febd750e3ce8549870615e1e9c969d3883126c687ff7ef6c0a16aa18bf594c681ae4c2ec063b792ae01166868672360aefb97539f6825c2f17933ce890a2d7ca53fcf77dc8dd4a0e64b7010aa7fd14f7833ab907d4d3c5df1ce497abfea23c94ab44d6b0f389480b4f0c077b98ba319dff8ab86cb7ff6b9f26e1f7e88b01d346504ab1cbc30fb5acf132544e59a2dec45e8019ef4642e672aebc040bfbfd6e7caf8846917b3e21e9b5673b31c4f3528baaf61b01bf160c3b535bcc7b23ee34371286407409fa292ad059d4e40624e76bad7d3d516adae9c3fcecb877f4d9d39035338787435f6372c5fb88cd"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:41 executing program 2:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000cad000)={0x6, <r0=>0xffffffffffffff9c, 0x1})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000000000)="0000000000")
mmap(&(0x7f0000000000/0xb00000)=nil, 0xb00000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000afc000-0x9)="2f6465762f6b766d00", 0x1000020000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000766000)={0x0, <r3=>r1, 0x2})
write$eventfd(r3, &(0x7f00003c9000-0x8)=0x1, 0x8)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x58)
ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f000093a000-0x68)={0x79, 0x0, [0x8001, 0xda8, 0x8, 0xfffffffffffffe01], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000b00000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000b01000-0x40)={0x1000000000000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000a3e000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r2, 0xae71, &(0x7f0000afd000)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000afd000-0x8)={0x3, 0x22})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r3, 0x8008ae9d, &(0x7f0000b00000-0xa6)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f0000850000-0x8)={0x5c, 0xffffffffffffff28})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r2, 0x4040ae72, &(0x7f00004f7000)={0x13ac, 0x9, 0x800, 0x4, 0x1})
r5 = pkey_alloc(0x0, 0x0)
pkey_mprotect(&(0x7f00009f2000/0x2000)=nil, 0x2000, 0x2, r5)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00004e3000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_ARM_SET_DEVICE_ADDR(r4, 0x4010aeab, &(0x7f0000a42000-0x10)={0x10001, 0x0})
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f00002d3000/0x18000)=nil, &(0x7f0000add000)=[@text32={0x20, &(0x7f0000adf000-0x3c)="66ba200066ed0f0099d0330000300fe3c15044a2ea815cc5f57595d94d3e0f236eb8cc4ab08f6fececbafc0ced0f013f640f01caf26e36643e0f224566ba4040b800000000ef", 0x46}], 0x1, 0x8, &(0x7f0000ae9000)=[], 0x0)
[   41.690888] IDTVectoring: info=00000000 errcode=00000000
[   41.696587] TSC Offset = 0xffffffe866d49f05
[   41.700927] TPR Threshold = 0x00
[   41.704423] EPT pointer = 0x00000001cc23e01e
2017/08/11 22:10:41 executing program 6:
mmap(&(0x7f0000000000/0xae8000)=nil, 0xae8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000007000)={0x6, [0x14bbf6c5, 0xff, 0x1, 0x2, 0x1, 0x9]})
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x2000000, 0x10, r0, 0x4)
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = eventfd2(0x81, 0x800)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000051000)={0x1, &(0x7f0000aea000-0x8)=0x0, 0x0, r3, 0x0})
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r4 = eventfd2(0xfff, 0x80000)
read$eventfd(r4, &(0x7f0000964000-0x8)=0x0, 0x8)
r5 = pkey_alloc(0x0, 0x3)
pkey_free(r5)
mbind(&(0x7f00003d2000/0x400000)=nil, 0x400000, 0x2, &(0x7f0000aeb000-0x8)=0x1, 0x7, 0x1)
r6 = eventfd2(0x80000000, 0x80801)
read$eventfd(r6, &(0x7f000044a000)=0x0, 0x8)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f000099d000-0x120)={0x7, 0x0, [{0x80000006, 0x9, 0x2, 0x9, 0xe669, 0xffffffff, 0x7f, [0x0, 0x0, 0x0]}, {0xb, 0x401, 0x0, 0xffffffff, 0x0, 0x909, 0x9, [0x0, 0x0, 0x0]}, {0x40000000, 0x4788, 0x5, 0x2, 0x7ff, 0x80000000, 0x2, [0x0, 0x0, 0x0]}, {0x40000007, 0xfff, 0x2, 0xffff, 0x2, 0x1ff, 0x3, [0x0, 0x0, 0x0]}, {0x40000001, 0x80000000, 0x2, 0x3, 0x4, 0x5c0a, 0xc7, [0x0, 0x0, 0x0]}, {0x80000019, 0x80, 0x1, 0x0, 0x1, 0x8, 0x9, [0x0, 0x0, 0x0]}, {0x0, 0x6, 0x4, 0x401, 0x3, 0x63f, 0x1, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000295000/0x4000)=nil, 0x4000, 0x3, 0x32, 0xffffffffffffffff, 0xfffffffffffffffc)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000054b000/0x18000)=nil, &(0x7f0000828000-0x18)=[@text32={0x20, &(0x7f0000ae8000)="c4c17d2b461a66ba2000ec26670ff29f775466b804008ee8c744240000900000c7442402b0000000c7442406000000000f01142466baa000b87b0000000f23d00f21f835100000020f23f8f6774666baa000ed66ba42ecc4e27d2a85a2a50000", 0x60}], 0x1, 0x0, &(0x7f0000ae1000)=[@cr0={0x0, 0x10000}, @dstype0={0x6, 0x5}], 0x2)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000079f000)={0x101ff, 0x3, 0x10000, 0x1000, &(0x7f0000996000/0x1000)=nil})
madvise(&(0x7f0000711000/0x4000)=nil, 0x4000, 0x6)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000aeb000-0x10)={0x15004, 0x10000, 0x0})
r7 = eventfd2(0x9, 0x0)
read$eventfd(r6, &(0x7f0000120000-0x8)=0x0, 0x8)
write$eventfd(r7, &(0x7f0000789000)=0x7, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae7000)={0x1, 0x0, [{0x11, 0x0, 0x5}]})
2017/08/11 22:10:41 executing program 7:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x0, <r0=>0xffffffffffffffff, 0x1})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r0, 0x8008ae9d, &(0x7f0000001000)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f0000001000)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x9)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001000-0xc)={0x2, <r1=>0xffffffffffffffff, 0x0})
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x6)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000003000)="2f6465762f6b766d00", 0x581001, 0x0)
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x8002, &(0x7f000000c000-0x8)=0xef3d, 0x5d4, 0x1)
mprotect(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x7)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000005000-0x8)=0x9, 0x7f, 0x0)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000002000)={0x7, 0x2, [{0xfffffffffffff800, 0x0, 0x2}, {0x2, 0x0, 0xe0}, {0x4, 0x0, 0x9}, {0x52d, 0x0, 0xffff}, {0xff, 0x0, 0xffffffff}, {0x9, 0x0, 0x1}, {0x0, 0x0, 0x6}]})
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000006000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_PIT(r0, 0xc048ae65, &(0x7f0000007000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f000000e000)={0x0, 0x9c, 0x5, 0x0, 0x3800000000, 0x1, 0x4, 0x9, 0x3f, 0x100000001, 0x6, 0x2, 0x0, 0x1, 0x6, 0x10000, 0x2, 0x97e1, 0xfff})
mbind(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000008000)=0x2c, 0xfac1, 0x4)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f000000a000-0x30)={0x1, 0x0, [{0xd, 0x3a49, 0x2, 0x4, 0x400, 0x80000000, 0xfffffffffffff4e4, [0x0, 0x0, 0x0]}]})
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f000000e000/0x1000)=nil)
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, &(0x7f000000d000-0x8)=0x0, 0x2, 0x3)
munlock(&(0x7f0000005000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000006000/0x3000)=nil, 0x3000)
mlock2(&(0x7f000000d000/0x2000)=nil, 0x2000, 0x1)
ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000006000)=0x8)
[   41.849426] *** Guest State ***
2017/08/11 22:10:41 executing program 5:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000a6f000/0x6000)=nil, 0x6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000ae4000-0x68)={0x79, 0x0, [0x8a, 0x5103, 0x8, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x10, r2, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x2)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000ae5000)={0xd, 0x1, 0x9, 0x0})
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f00005a9000-0x4)=0x6)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_LAPIC(r4, 0x8400ae8e, &(0x7f0000ae7000-0x400)={"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"})
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f00003c2000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r4, 0x4018ae51, &(0x7f0000ae7000)={0x10001, 0x6, 0x0})
2017/08/11 22:10:41 executing program 4:
mmap(&(0x7f0000000000/0xaf8000)=nil, 0xaf8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aeb000)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000af8000)={0x0, <r1=>0xffffffffffffffff, 0x1})
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000683000-0x18)={0x0, 0x6, 0x4, &(0x7f0000af9000-0x8)=0x0})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000645000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x2000008, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000013a000/0x2000)=nil, 0x2000, 0x2000002, 0x3e, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000676000/0x2000)=nil, 0x2000, 0x1, 0x72, r1, 0x0)
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000562000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x3a, r1, 0x0)
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000afb000-0x4)=0x0)
mmap(&(0x7f0000036000/0xc000)=nil, 0xc000, 0x0, 0x1013, r2, 0xffffffffffffe7fe)
mmap(&(0x7f0000888000/0x1000)=nil, 0x1000, 0x3, 0x1000000000032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00004ca000/0x4000)=nil, 0x4000, 0x3, 0x30, r2, 0x0)
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000afb000-0x48)={0xf0003, 0x0, [0x67, 0x1f, 0x80000000, 0x100000000, 0x0, 0x0, 0x6, 0x101]})
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SMI(r3, 0xaeb7)
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x0, 0x4030, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000af8000)={0x73, 0x100000001, 0x1, 0x0, 0x4, 0x337, 0x6, 0x8, 0x0, 0x8, 0x40, 0x2, 0x0, 0x0, 0x3, 0x81, 0x5, 0x8, 0x1})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae7000-0x20)={0x0, 0x2, 0x0, 0x2000, &(0x7f00005b3000/0x2000)=nil})
mmap(&(0x7f00009d3000/0x4000)=nil, 0x4000, 0xc, 0x30, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00005b3000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f00000b0000-0x66)="c7442400d38f7c83c744240200000000c7442406000000000f01142466bad104edf30f1aad260000008f290892b000200000d9feda4800c7442400a7df0000c744240200000000c7442406000000000f0114246766440f38827f00a90300000066b805018ee0", 0x66}], 0x1, 0x54, &(0x7f0000ac7000)=[@dstype3={0x7, 0x6}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
[   41.877272] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
2017/08/11 22:10:42 executing program 7:
mmap(&(0x7f0000000000/0xaf5000)=nil, 0xaf5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000af3000-0x24)="000000000000000000000000000000000000000000000000000000000000000000000000")
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b8c4e3995c2708000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e96d266767f2a50f20d835080000000f228b58580f070f01b102000000", 0x64}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f000011a000)={0x1397, 0x8b, 0x0, 0x4, 0x8})
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000af3000-0x4)=0x80)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000747000)=0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000aef000)={0x7b, 0x0, [0x6, 0xffffffff, 0x9, 0x1000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000033d000-0x8)={0x1, 0x0})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000311000/0x18000)=nil, &(0x7f00006cb000-0x18)=[@text32={0x20, &(0x7f0000af0000)="b9800000c00f3235010000000f30660febb13600c0fe0f01c8660f38812ff30f1077ac0fc7a80f000000c4c17e7ff5f4f4660f38805f84", 0x37}], 0x1, 0x0, &(0x7f0000af0000)=[], 0x0)
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000af1000)=0xb5)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000aef000-0x30)={0x20, 0x401, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00002de000-0x40)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000aec000)={"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"})
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f000026f000)={0x0, 0xdf, 0x8, &(0x7f00009f0000-0x8)=0x0})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000af3000)={"9bbb9daa05110ba1924a3f8c859bdff963f2ddb1d129f5cb2f3ae8ad3bf7068c284ba38f903676aee0049b473a5a33930a9b88deb6401d57b67b5ef503c6a4027167753b3422f85b1b144e1b09666f06770bb454bb980d5cb7f1e90d9427b10028d816afcb958eb5bc4541d20809f775835973db47fdab943f7ecf340ab9b2913f88a42aa228d95f1665dcb874e6b3b5b55a89a32e0fc862e12da3fafec957af0fce362e643894eaa38fbb8af58f8462371747c6e67ec819d268766c3c7a74e3f12575502e0ce18ab8fdeec25ec7767fae887d4cadb349c0f81694038d1a026d6a75e2531b1a8fb11b6cbd3f89a94184e04455b174f62410013ea1a32c38fc1a2448cd4c2c637b73782faf7ad9ae353b8bb6fed608778b7e846b159d0708eba89b05d4ae596fd1ce276f11b96ea628b944adcafcca622c34d8cf71c32e04679643d25bb8410efd790fae98de36207bab1c1fa95a3b125a7497822ea2f8a027ee6024ad4938ca93546a7967484ea5ed0850257facd046052d3fb4452ea95bdf6613884586ad0f7bedcf9ba794168fb9ef80fc98ab1b8c584220c399f85aa35e3b077eaa0dc79a9b88f0cdbf6805da3bca16d1fe88482e328bf0abd897070e43ead3304cdf1f113ab075a772b02e7e2b9d790f029decb02914d0fbb81bdcac8d08612898c453dd33e8a456e3cb4154e27f4d3bddea5732cd94d4adf21d3babfbb833a2ba8fcc71beafe13cfb9e8ed9fcaaecbc6a4e7c1da5f67cfae68fe80965a52918112a4927ca4a387ebf74fd5d910ceed87a668d3210361f45e8771482aceb28996ed99fdb143fc17c4112850b748c3eb5d121312f3c420d0dc03bfd571a1767bac9ae6c46b4edbfd70fb33dd89a8ae13dd57e722d95c28e5326a24054321553f3b50fe246f5e631dafc8088dcefe9029c67fbc7cb6631692d91aa5aba912b56f638cdcd14e873566edea35ecaaad547bbd265a6d4f6537ad9db538fb7db64a32c81c91dd6e4efd0317de1a0ff83c744470c93ddcaa6792e45db7d69e1106a251d39a5c5c6103f7aadb32d0290614362eaccc6d41b3f14154850e1959803f14d836a4223eb1c70249037e7adbf0e33d07a69a10d948a901858a8381803bcedcf610c985b5ea85ef46bbc44565e89142da665bede93e7c360cc814c8e00cafb81d02c95811ce32ba2dd85712056078d2f7d4be3cfc4eb157d63206d4b822599d40c02fd84ada2b572bd8899e93293a5ce6590d226f7c43858d47417bc2980358fb6ec2eee43fbbd31a00c9549680e76c31eef7f710e7aceb5a29d2a85f07332bb5e54a80ac44576e0010bc7cbd666ad4aff5174df288980f68510d74485b90afaf4040a30392861cce12229f97cbf2b8922d95110230423a3155f263d8066974f89cebaa258b87515d6d9f20c23d09067bdc955311d08300214a50ed060cc68"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000af4000)={0x8097, 0x10001})
2017/08/11 22:10:42 executing program 3:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x0, <r0=>0xffffffffffffffff, 0x1})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f0000001000)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x9)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001000-0xc)={0x2, <r1=>0xffffffffffffffff, 0x0})
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x6)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000003000)="2f6465762f6b766d00", 0x581001, 0x0)
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x8002, &(0x7f000000c000-0x8)=0xef3d, 0x5d4, 0x1)
mprotect(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x7)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000005000-0x8)=0x9, 0x7f, 0x0)
ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000002000)={0x7, 0x2, [{0xfffffffffffff800, 0x0, 0x2}, {0x2, 0x0, 0xe0}, {0x4, 0x0, 0x9}, {0x52d, 0x0, 0xffff}, {0xff, 0x0, 0xffffffff}, {0x9, 0x0, 0x1}, {0x0, 0x0, 0x6}]})
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f000000e000)={0x0, 0x9c, 0x6, 0x0, 0x3800000000, 0x1, 0x4, 0x9, 0x6, 0x100000001, 0x6, 0x2, 0x0, 0x1, 0x6, 0x10000, 0x2, 0x97e1, 0xfff})
mbind(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000008000)=0x2c, 0xfac1, 0x4)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f000000e000/0x1000)=nil)
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, &(0x7f000000d000-0x8)=0x0, 0x2, 0x3)
munlock(&(0x7f0000005000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000006000/0x3000)=nil, 0x3000)
mlock2(&(0x7f000000d000/0x2000)=nil, 0x2000, 0x1)
2017/08/11 22:10:42 executing program 2:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x0}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mremap(&(0x7f000046e000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000988000/0x3000)=nil)
2017/08/11 22:10:42 executing program 1:
mmap(&(0x7f0000000000/0xaf7000)=nil, 0xaf7000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
r3 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000026000-0x20)={r2, 0x0, 0x2, r3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = eventfd2(0x0, 0x0)
r5 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000018000)={r4, 0x5, 0x2, r5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000017000)={r4, 0x0, 0x2, r5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
[   41.938897] *** Guest State ***
[   41.938906] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
2017/08/11 22:10:42 executing program 3:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aed000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f00006c5000-0x18)={0x0, 0x9f4afeb, 0x81, &(0x7f0000aed000)=0x0})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f000048a000)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000ad4000/0x2000)=nil, 0x2000, 0x804000000003, 0x5812, r2, 0x0)
ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, &(0x7f000014a000)={"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"})
ioctl$KVM_GET_XCRS(r2, 0x8188aea6, &(0x7f00007dd000+0xf98)={0x2, 0x3, [{0x400, 0x0, 0xfff}, {0xcd05, 0x0, 0x5}]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000af0000-0x138)={{0x100000, 0xf002, 0x3, 0x2, 0x80, 0x0, 0x7, 0x8, 0x8, 0x6, 0xffff, 0x6, 0x0}, {0xd000, 0x1, 0xe, 0x9, 0x5, 0x20, 0x3, 0x4, 0x6, 0x0, 0x1f, 0x1000, 0x0}, {0x3000, 0x10d000, 0xf, 0x4, 0x7, 0x100, 0x6, 0x0, 0x7, 0x9, 0x4, 0x80000000000000, 0x0}, {0x0, 0x2000, 0xf, 0x1, 0x9, 0x0, 0x81, 0x8, 0x4, 0x0, 0x9, 0x401, 0x0}, {0x1000, 0x3000, 0x8, 0xffffffff, 0x4, 0x2, 0x66e, 0x8, 0x25, 0x0, 0x1, 0x2, 0x0}, {0x1000, 0x1000, 0xf, 0x0, 0x0, 0x6, 0xffffffff, 0x10001, 0x5, 0x6, 0x200, 0x10000, 0x0}, {0x7004, 0x10000, 0xe, 0x7, 0x0, 0x4, 0x800, 0xdd6, 0x1000, 0xffffffffffffffe0, 0x1ff, 0x9, 0x0}, {0x105000, 0x105001, 0xf, 0x7, 0x1, 0x8001, 0x9, 0x81, 0xffffffffffffffff, 0x7fffffff, 0x80000001, 0x101, 0x0}, {0xd002, 0x1000, [0x0, 0x0, 0x0]}, {0x0, 0x7001, [0x0, 0x0, 0x0]}, 0x1, 0x0, 0xd000, 0x10, 0xb, 0x2000, 0x1000, [0x3, 0x5453, 0x4, 0x3]})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aee000)={0x8, 0x1, 0x3, 0x200})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000602000/0x18000)=nil, &(0x7f00002cf000)=[@text32={0x20, &(0x7f00008e1000-0x54)="f20f019901000000c4e1a176800d00000036f3360f300f0175c6c74424009b000000c744240200300000c7442406000000000f0114240fb7943b00680000650fc72ec4e295b811660f38818caf000000000f01cf", 0x54}], 0x1, 0x21, &(0x7f0000af0000-0x10)=[@efer={0x2, 0x1900}], 0x1)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f00001bc000-0x80)={[0x11f003, 0x2000, 0x3000, 0x1000], 0x7, 0x10, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000af0000)={"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"})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x6, 0x1811, r0, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000aec000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000aed000)=0x7)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
[   41.938914] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
2017/08/11 22:10:42 executing program 4:
mmap(&(0x7f0000000000/0xae5000)=nil, 0xae5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff8000)=nil, 0xff8000, 0x6, 0x8071, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000d3a000/0x4000)=nil, 0x4000, 0x9)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4000000000000000)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f00001f2000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
read$eventfd(r3, &(0x7f0000aa7000-0x8)=0x0, 0x8)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000960000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000ae8000-0xc)={0x6, <r6=>r0, 0x1})
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r6, r2, &(0x7f000009e000/0x18000)=nil, &(0x7f0000ae7000)=[@text32={0x20, &(0x7f00002f8000)="2e0f229fc4c17917493b2ef20f708e5c0000001c36660f2eb772ffffff0f0137c4e1956b0dc104000066b895008ed80f3805d80f09f30f12c8", 0x39}], 0x1, 0x0, &(0x7f0000ae7000)=[], 0x0)
ioctl$KVM_S390_VCPU_FAULT(r6, 0x4008ae52, &(0x7f0000ae6000)=0x2)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
eventfd2(0x44e7, 0x80001)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000ff9000-0xd8)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000ff8000)={[{0x10000, 0x2, 0x1, 0x5, 0x6, 0x5, 0x7f, 0xfff, 0x80000000, 0x4, 0x20, 0xffffffffffffff7f, 0x401}, {0x80, 0x100000000000, 0xffffffffffffffff, 0x6, 0x6, 0xfffffffffffffffa, 0xffffffffffffc3af, 0x8, 0x6, 0x10001, 0x0, 0x4, 0x7fffffff}, {0x1ff, 0x10001, 0x1544119e, 0x9, 0x0, 0x80, 0x3, 0x80, 0x6, 0x3ff, 0xffffffffffffffe1, 0x3, 0x401}], 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:42 executing program 1:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x7ff, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000039000-0x10)={0x954, 0x8, 0xfffffffc, 0x1563a85c6c8d69ab})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r2=>r1, 0x0})
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000ae7000)={"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"})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000aea000-0x8)={0xfffffffffffffffe, 0xffffffffffffffff})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f00006a7000)={0x100000000, 0x0})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f00004dd000-0x70)={[{0x90c, 0x3, 0x1, 0x100, 0x8, 0x101, 0x1d, 0x800, 0xff, 0x4, 0xd69b, 0x8, 0xfa3c}, {0x4, 0x0, 0x31, 0x3, 0x7fffffff, 0x9, 0x800, 0xfffffffffffffffa, 0x5, 0x10000, 0x0, 0x7, 0x401}, {0xe3, 0x8, 0x1000, 0x5, 0x9, 0x7, 0x2, 0x80000001, 0x46, 0x9, 0x5, 0x8, 0x80}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000099a000/0x18000)=nil, &(0x7f00009a9000)=[@text64={0x40, &(0x7f0000aeb000-0x41)="f34aad2e664a0f3882830f0000003e364b0fc75f00c4c32d780ccb00260fc71f66ba4000b802000000ef67f04a00012ef3f30f0866b8ab008ec0b97b0200000f32", 0x41}], 0x1, 0x0, &(0x7f0000adf000)=[@dstype3={0x7, 0xd}], 0x1)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000ae9000)=0xff)
ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000ae8000)={0x7fffffff, 0x800})
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f00001d5000)={0x9, 0x6, 0x3, 0x0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
[   41.938917] CR3 = 0x00000000fffbc000
2017/08/11 22:10:42 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
mmap(&(0x7f0000111000/0x3000)=nil, 0x3000, 0x2, 0x8812, r4, 0x0)
[   41.938922] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
2017/08/11 22:10:42 executing program 2:
mmap(&(0x7f0000000000/0xae8000)=nil, 0xae8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x200000, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x1, 0x0)
mmap(&(0x7f0000184000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00001c5000)={0x7, <r1=>r0, 0x1})
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000ae9000)={0x4000000001e, 0x1, 0x43c4, 0x0})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0xe0000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000ae8000)=0xf005)
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f00006ee000/0x3000)=nil, 0x3000, 0x4, 0x68014, r3, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f0000aea000)={0x0, []})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r1, 0xc008ae05, &(0x7f00003f8000-0x68)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000ad2000-0x10)={0x401, 0x30a0})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000316000/0x4000)=nil, 0x4000, 0x3, 0x10000008852, r4, 0x8000000000000000)
madvise(&(0x7f000028e000/0x1000)=nil, 0x1000, 0xe)
read$eventfd(r0, &(0x7f0000277000-0x8)=0x0, 0x8)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x5)
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f0000aea000)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f00006a9000/0x1000)=nil, 0x1000, 0x3, 0x110, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:42 executing program 5:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x69032, 0xffffffffffffffff, 0xc700000000000000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006dc000)="2f6465762f6b766d00", 0x240000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f000084a000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x1)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000739000-0xa8)={0x4, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r3, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x2, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x2000001, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r1, &(0x7f0000f18000-0x8)=0x0, 0x8)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_SET_INTX_MASK(0xffffffffffffffff, 0x4040aea4, &(0x7f0000aee000-0x14)={0x0, 0x0, 0x0, 0x0, 0x1000})
write$eventfd(r4, &(0x7f0000aed000-0x6)=0xffffffffffffffff, 0x8)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f000005d000-0x10)={0x104000, 0x0, 0x0})
[   41.938927] RFLAGS=0x00033000         DR7 = 0x0000000000000400
[   41.938936] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   41.938944] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938953] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938961] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938970] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938980] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938989] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   41.938996] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   41.939071] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   41.939079] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   41.939090] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   41.939097] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   41.939104] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   41.939111] Interruptibility = 00000000  ActivityState = 00000000
[   41.939114] *** Host State ***
[   41.939121] RIP = 0xffffffff811b6777  RSP = 0xffff8801c4a274c8
[   41.939134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   41.939141] FSBase=00007f8b915c3700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   41.939147] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   41.939155] CR0=0000000080050033 CR3=00000001c6455000 CR4=00000000001426e0
[   41.939163] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   41.939170] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   41.939173] *** Control State ***
[   41.939178] PinBased=0000003f CPUBased=b699edfa SecondaryExec=0000004a
[   41.939182] EntryControls=0000d1ff ExitControls=0023efff
[   41.939188] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   41.939192] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   41.939197] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   41.939207]         reason=80000021 qualification=0000000000000000
[   41.939212] IDTVectoring: info=00000000 errcode=00000000
[   41.939216] TSC Offset = 0xffffffe7e71560df
[   41.939222] EPT pointer = 0x00000001c44cc01e
[   42.053557] *** Guest State ***
[   42.053567] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[   42.053575] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   42.053579] CR3 = 0x00000000fffbc000
[   42.053584] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   42.053590] RFLAGS=0x00023002         DR7 = 0x0000000000000400
[   42.053599] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   42.053606] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053616] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053625] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053633] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053651] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053663] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   42.053670] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   42.053682] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   42.053689] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   42.053699] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   42.053704] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   42.053711] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   42.053716] Interruptibility = 00000000  ActivityState = 00000000
[   42.053719] *** Host State ***
[   42.053725] RIP = 0xffffffff811b6777  RSP = 0xffff8801c48f74c8
[   42.053738] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   42.053752] FSBase=00007f6d7bca4700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   42.053760] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   42.053769] CR0=0000000080050033 CR3=00000001c61e8000 CR4=00000000001426e0
[   42.053779] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   42.053787] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   42.053790] *** Control State ***
[   42.053796] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   42.053800] EntryControls=0000d1ff ExitControls=0023efff
[   42.053808] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   42.053814] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   42.053820] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   42.053825]         reason=80000021 qualification=0000000000000000
[   42.053829] IDTVectoring: info=00000000 errcode=00000000
[   42.053832] TSC Offset = 0xffffffe7d9a8117c
[   42.053836] TPR Threshold = 0x00
[   42.053841] EPT pointer = 0x00000001c3bd501e
[   42.111387] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008f
[   42.111425] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008e
[   42.111463] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008d
[   42.111495] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008c
[   42.111526] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008b
[   42.111555] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008a
[   42.111584] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000089
[   42.111634] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000088
[   42.111696] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000087
[   42.111728] kvm [3247]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000086
[   42.138811] kvm [3247]: vcpu0, guest rIP: 0x9112 disabled perfctr wrmsr: 0xc2 data 0x66c9000000001043
[   42.138914] kvm [3247]: vcpu0, guest rIP: 0x9112 disabled perfctr wrmsr: 0xc1 data 0x66c9000000001043
[   43.129264] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   43.138732] CR3 = 0x00000000fffbc000
[   43.142558] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
[   43.148626] RFLAGS=0x00033000         DR7 = 0x0000000000000400
[   43.154680] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   43.161410] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.169470] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.177509] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.185558] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.193597] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.202322] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.210359] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.218396] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   43.226438] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.234474] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   43.242514] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   43.248983] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   43.256499] Interruptibility = 00000000  ActivityState = 00000000
[   43.262792] *** Host State ***
[   43.266065] RIP = 0xffffffff811b6777  RSP = 0xffff8801c55ef4c8
[   43.272105] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   43.278571] FSBase=00007f8b91627700 GSBase=ffff8801dc100000 TRBase=ffff8801dc022cc0
[   43.286438] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   43.292383] CR0=0000000080050033 CR3=00000001c6455000 CR4=00000000001426e0
[   43.299475] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   43.306258] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   43.312369] *** Control State ***
[   43.315875] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   43.322595] EntryControls=0000d1ff ExitControls=0023efff
[   43.328779] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   43.335764] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.342498] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.349256]         reason=80000021 qualification=0000000000000000
[   43.355678] IDTVectoring: info=00000000 errcode=00000000
[   43.361217] TSC Offset = 0xffffffe7f7bd41fa
[   43.365593] TPR Threshold = 0x00
2017/08/11 22:10:43 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f000008d000)=0x100000000000003)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x4, 0x1b071, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x0)
mbind(&(0x7f0000006000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000002000-0x8)=0x1, 0x4, 0x3)
mremap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000000000/0x2000)=nil)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x10001, 0x0, 0x6ffd, 0x2000, &(0x7f0000055000/0x2000)=nil})
mmap(&(0x7f0000309000/0x400000)=nil, 0x400000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, r0, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f000000a000-0x8)={0x40006, 0x7ff})
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f00006ca000/0x4000)=nil, 0x4000, 0x0, 0x20000000000030, r4, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r4, 0x4038ae7a, &(0x7f0000ae6000-0x38)={0x5, 0x5, &(0x7f00001ea000-0xcf)="309f0702adc0d9066713c8e4b660854700cb709b6fdd8f3bf238345c15c227413b216e321452ffb034ec12a1c73e3648982ea8dc263cfeeedf3366f311c7952ffb7ded070ff6390da91305e8fea03ec3c642a28697ccd5c251dcf287f1807c3059593b1673b9d6d4baa26e800f39d24d7929fa4fd91e661f7dc7b9d57181055a9ab6200610917d98d2cdbf3a451622db2ae1868d708c4a4839f9721ba406bd708462f2a1326f085a5be8cffdcb67b2b830b455f8411aee917e2763bd035589448d6d49ae8b47c18264130edcf37618", &(0x7f00001cf000-0x1d)="18da5208139a11a357325f95d25a44b840327363a3c34c7c80b713eac3", 0xcf, 0x1d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0x1000000000002, 0x20010, 0xffffffffffffffff, 0x0)
r6 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f00002b9000/0x2000)=nil, 0x2000, 0x2, r6)
2017/08/11 22:10:43 executing program 0:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001000-0xc)={0x2, <r0=>0xffffffffffffffff, 0x0})
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x1877)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x400000000001)
mmap(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x2000004, 0x50, r0, 0xb)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003000)="2f6465762f6b766d00", 0x581001, 0x0)
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x8002, &(0x7f000000c000-0x8)=0xef3d, 0x5d4, 0x1)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000005000-0x8)=0x9, 0x7f, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000006000-0xfa)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x8)
pkey_alloc(0x0, 0x1)
mmap(&(0x7f0000010000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000011000)={0x4000, 0x119000, 0x0})
mlock2(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x1)
mbind(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000011000-0x8)=0x6, 0x1, 0x0)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f000000c000)={0x7, <r2=>r1, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000002000-0x68)={0x2, 0x0, [{0x100, 0x2, 0x0, 0x0, @adapter={0x2, 0x1, 0x400, 0x3, 0x240000}}, {0xd93d, 0x7, 0x0, 0x0, @adapter={0xbc, 0x5, 0x5, 0x800000000, 0xecb8}}]})
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x5, &(0x7f000000d000-0x8)=0x0, 0x2, 0x3)
2017/08/11 22:10:43 executing program 1:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x80000000007fe, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_S390_UCAS_MAP(r2, 0x4018ae50, &(0x7f0000310000-0x18)={0x7, 0x10000, 0xecf})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x7, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000aec000)={0x10001, 0x0, &(0x7f00003ed000/0x1000)=nil})
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000039000-0x10)={0x954, 0x8, 0xfffffffc, 0x1563a85c6c8d69ab})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r3=>r1, 0x0})
ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f0000ae7000)={"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"})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000ae8000)={0xfffffffffffffffe, 0xffffffffffffffff})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r3, 0x4038ae7a, &(0x7f0000aee000-0x38)={0x400, 0xfffffffffffffffe, &(0x7f0000a26000)="4cb9db57fe359dcd85e16208f68c5ca7a2d34624fe20c9e841a17462fcd1cc4c2c5ecbb59fc1e313b4e05223352370cba366c8effd7dec9b86587940b5218954be1b5debcf1d69bd88ca2401957f4dc460638ebd79bb5b640a4c519081bc0ba9b196b689e5e179df14cbb5330e9ec9b5d77f741005f441cb2ef3b116a84d623060", &(0x7f00000ec000-0x56)="fd7135cd6431b3957bdda16fac3bf38eb69e128afed7b5b6ca64bee3bd1d39f1ebfa5eab1c2a64646f366498444c97b8ee1b4c790f225db3341d0573a99f0d94920ecd3ec2e7a962720c5bb1f757bdb009c43497580b", 0x81, 0x56, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000ae9000)={0xffffffff, 0x0})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DIRTY_TLB(r4, 0x4010aeaa, &(0x7f0000aee000-0x10)={0x7ffffffe, 0x800})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000478000-0x70)={[{0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x400000000000}, {0x0, 0x1, 0x200000000000, 0x0, 0x101, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbf, 0x0, 0x0, 0x2, 0x0, 0x717c8be1, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r4, 0xae71, &(0x7f0000aeb000)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000134000)=@ioapic={0x2, 0x5, 0x7f, 0x4, 0x0, [{0x5, 0x9, 0x2, [0x0, 0x0, 0x0, 0x0], 0xa1}, {0x4, 0x80000000, 0x40, [0x0, 0x0, 0x0, 0x0], 0x800}, {0x400000000000000, 0x1, 0x4, [0x0, 0x0, 0x0, 0x0], 0x6}, {0xfffffffffffffff9, 0x100000000, 0x8, [0x0, 0x0, 0x0, 0x0], 0x80000000}, {0x8, 0x1f, 0x4, [0x0, 0x0, 0x0, 0x0], 0x4cabdc08}, {0x9, 0x400, 0xfffffffffffffc01, [0x0, 0x0, 0x0, 0x0], 0x401}, {0xfff, 0x7a7, 0x0, [0x0, 0x0, 0x0, 0x0], 0xeb2}, {0x3ff, 0x446, 0x8, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x100000001, 0x4, 0xb89a, [0x0, 0x0, 0x0, 0x0], 0x80000000000000}, {0x6, 0x9, 0x6, [0x0, 0x0, 0x0, 0x0], 0xffff}, {0x80, 0x5, 0x10001, [0x0, 0x0, 0x0, 0x0], 0x67}, {0x3c, 0x7, 0x400, [0x0, 0x0, 0x0, 0x0], 0x5c}, {0xab, 0x0, 0x1f, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x6, 0x4, 0x80000000, [0x0, 0x0, 0x0, 0x0], 0x80}, {0x7fffffff, 0xfffffffffffffffc, 0x9, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x401, 0x3, 0x4, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x12, 0x1, 0x3, [0x0, 0x0, 0x0, 0x0], 0x1}, {0x2, 0x4, 0x9b, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x20, 0x4, 0x40, [0x0, 0x0, 0x0, 0x0], 0x2}, {0x8, 0x8, 0x80, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x80, 0x9, 0x3, [0x0, 0x0, 0x0, 0x0], 0x243}, {0x4, 0x6, 0x4, [0x0, 0x0, 0x0, 0x0], 0x19}, {0x3f, 0x0, 0x48e, [0x0, 0x0, 0x0, 0x0], 0x80000000}, {0xb6, 0x2, 0x8e, [0x0, 0x0, 0x0, 0x0], 0x6}]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000453000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_FPU(r4, 0x41a0ae8d, &(0x7f0000aef000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7ff, 0x68a1, 0xffffffffffffffff, 0x0, 0x9, 0x3000, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x80, 0x0})
ioctl$KVM_SET_TSS_ADDR(r3, 0xae47, 0xd000)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f000039c000-0xd8)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000aeb000-0x8)={0x20, 0x80000000})
2017/08/11 22:10:43 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
mmap(&(0x7f0000111000/0x3000)=nil, 0x3000, 0x2, 0x8812, r4, 0x0)
2017/08/11 22:10:43 executing program 3:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001000-0xc)={0x7, <r0=>0xffffffffffffffff, 0x1})
mmap(&(0x7f0000ba5000/0x1000)=nil, 0x1000, 0x1000001, 0x20810, r0, 0x7)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pkey_alloc(0x0, 0x0)
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x40200, 0x0)
write$eventfd(r3, &(0x7f0000772000)=0x20, 0x8)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r3, &(0x7f0000aec000)=0x0, 0x8)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000184000-0xc)={0x3, <r4=>r2, 0x1})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00008d7000)={0x0, <r5=>r2, 0x0})
ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f00002fe000)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x49)
ioctl$KVM_SET_PIT2(r5, 0x4070aea0, &(0x7f0000aef000-0x70)={[{0x1, 0x7, 0x5, 0x8, 0x7, 0x0, 0x5, 0x6, 0x5, 0x1, 0x80, 0x9, 0x6c}, {0x7ff, 0x7f, 0x1000, 0x1000, 0x0, 0x238c, 0xb1, 0x3f6e, 0x7, 0x40, 0x400, 0x6, 0x100}, {0xffff, 0x9, 0xf55, 0x7, 0xa, 0x80000001, 0x0, 0x48, 0x8, 0x40, 0x9, 0xd8f, 0x2}], 0x1800000000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000598000-0x8)=0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000aef000-0xc)={0x1, <r6=>r3, 0x1})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r5, 0xc008ae67, &(0x7f0000797000)={0x5, 0x80000001})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CLOCK(r6, 0x8030ae7c, &(0x7f0000af0000-0x30)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000071e000/0x1000)=nil, 0x1000, 0x3, 0x35, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000aef000)={0x8, 0x101})
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af1000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000af1000)={0x7, <r7=>r6, 0x0})
ioctl$KVM_SIGNAL_MSI(r7, 0x4020aea5, &(0x7f000021c000)={0xd000, 0x0, 0x5, 0x2, 0x8000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0xb3e, 0x0)
2017/08/11 22:10:43 executing program 7:
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x70, r0, 0x0)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000aef000-0x4)=0x7)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000aef000)=[@text16={0x10, &(0x7f0000a35000-0x33)="66b9f90200000f329adc0093000f060f350f01730066b80500000066b9fd5c00000f01d93e0f01ca0f01c80f0826f20f2c5100", 0x33}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f000071f000)=0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000aec000)={"3a5ca361a0df102fae43a3f1ec872c0185c9813608eed8f847374008d61d0bcfc300bc75ce5da3001ccb1007655a4f7410ae2abb351756d32573ad07efbff26b6c29f3f5b20949d1948e7dc1c8f2b7a1f53f726c506fca42d4a7935507ddb99198bc1ac4b348ae7c27061ead76d16ca486010f0a3be5e5fb88b250282a1f4370084b669a6aa05d6f099ea5ce98744d4d02be5ff2bfc8a7b31392162b70f9bf6a7921ca46c22eba76a3f5fada926a9e3d39e841a85aff9e2e11df5a017550dd503eafb49349716d060d697bd0978eac053d12de846fb7d0ef0ce4f7942061ad998b000619474f6ab8bbaf74f23bef3d8874a920f438d7a3bbe9ac54c269dd8463b191dfff03924e9ef495aad2c7831f72e87d20d39c031000c2b6b009dc52fe4a87d2adbd31ef3991643480dc4e1194dad4aaae0bbd182f86a7572202d932534fe78aa6205a387714ba722fc29e394626c6950754c5bd8e959a3d108590f13f43f23507624d0f3b464f483d2f11441d510b1269bd87224f20a2cb5984b4f2be4d93aef0f2ae60ada076cc86b6ecd9f9cd27c13ff16725a99f1d96fb35409d9aad7cd14b4a0a6fa33249d40760c0dd77c75cea3ced7055169a87c767c91aadd231e5b211e9b8df16a1e2aef8d3a7e02a4f7c8fa5e989f9a2c488638fec8d03543fededef667b0b0cde85958ef5dd2355e3dade1126022ada4186160bcf69013a938bd9c5fe1f46fd5c8d522320840de0ede209ee11a4655a157b1ed47b6aa5daad7bc7f96313d2e02144e50a7f64ccfb866b1cc3a04ebd7e460e69f42856b474e681e2917b593b931c8987a487329d58151d14f4f1eb1b123f29f21899c524c2808269f7a833d5ed3cd93e2ffc0dbdf3c50c736b10512607837e8f50144c1c14e052c788381a2b236becb2d2bfdf0467cefcbe6926090434d31323d47576de4566f61ab7f1fab0f73e2e9b58c328f73f8fecef3e9bbad4b177d9dd2a0e3e7a6f108477afef361fd23ea1a575dd9b86515833f5bd4ccf9ddb9e5432d723f3eb50339ae229108ae769ac632d312761db5057fe4ddfae2f22be1f709bc0feef9d8dcf05a425d354bda07e3780f19d3a073e737bcc8220febd750e3ce8549870615e1e9c969d3883126c687ff7ef6c0a16aa18bf594c681ae4c2ec063b792ae01166868672360aefb97539f6825c2f17933ce890a2d7ca53fcf77dc8dd4a0e64b7010aa7fd14f7833ab907d4d3c5df1ce497abfea23c94ab44d6b0f389480b4f0c077b98ba319dff8ab86cb7ff6b9f26e1f7e88b01d346504ab1cbc30fb5acf132544e59a2dec45e8019ef4642e672aebc040bfbfd6e7caf8846917b3e21e9b5673b31c4f3528baaf61b01bf160c3b535bcc7b23ee34371286407409fa292ad059d4e40624e76bad7d3d516adae9c3fcecb877f4d9d39035338787435f6372c5fb88cd"})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xc59000)=nil, 0xc59000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
munmap(&(0x7f000064f000/0x3000)=nil, 0x3000)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = eventfd2(0x0, 0x0)
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000064f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f000064f000)={0x2000000000000006, r3, 0x3})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r5, &(0x7f000043e000)=0x0, 0x8)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000c5a000)=@ioapic={0x2, 0x10000, 0x200, 0x3caf5cbe, 0x0, [{0x1f, 0x63, 0x800, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x4, 0x1ff, 0xc67, [0x0, 0x0, 0x0, 0x0], 0x101}, {0x9, 0x9, 0x10000, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x10001, 0x3, 0x2, [0x0, 0x0, 0x0, 0x0], 0x4}, {0xfffffffffffffff9, 0x9, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1f}, {0x6, 0x100, 0x7, [0x0, 0x0, 0x0, 0x0], 0xc3d6}, {0x100, 0x7f, 0x2, [0x0, 0x0, 0x0, 0x0], 0x10000}, {0x200, 0x1, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1eebd052}, {0x800, 0x1, 0x9, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x401, 0x8, 0x101, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x20, 0x40, 0x7, [0x0, 0x0, 0x0, 0x0], 0x667114e8}, {0x6, 0x4, 0x7, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xa20, 0x1ff, 0x8, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x2, 0x8001, 0x7, [0x0, 0x0, 0x0, 0x0], 0x1000}, {0x4, 0x4, 0x100000000, [0x0, 0x0, 0x0, 0x0], 0x1c}, {0x4, 0xfffffffffffffff7, 0x5, [0x0, 0x0, 0x0, 0x0], 0xffffffff}, {0x6, 0x7, 0x7, [0x0, 0x0, 0x0, 0x0], 0x5}, {0x8, 0x9, 0x0, [0x0, 0x0, 0x0, 0x0], 0x94}, {0x7ff, 0x8000, 0xffffffff, [0x0, 0x0, 0x0, 0x0], 0xf3b}, {0x3, 0x8, 0xffffffff, [0x0, 0x0, 0x0, 0x0], 0x15}, {0x8, 0x1f, 0x1, [0x0, 0x0, 0x0, 0x0], 0xfffffffffffff000}, {0x80000001, 0xfffffffffffffffb, 0x9, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x7f, 0xfff, 0xc1, [0x0, 0x0, 0x0, 0x0], 0x1c4e}, {0x10000, 0x100000001, 0x40, [0x0, 0x0, 0x0, 0x0], 0x1}]})
write$eventfd(r5, &(0x7f0000c57000)=0xe318, 0x8)
ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f00005b3000-0x4)={0x6, 0x4, 0x81, 0x0})
mremap(&(0x7f0000446000/0x3000)=nil, 0x3000, 0x3000, 0x22, &(0x7f00002a5000/0x3000)=nil)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000c5b000-0x70)={[{0x8, 0x1, 0x1, 0x4, 0xe38, 0x1, 0x5, 0x9, 0x40, 0x0, 0x9, 0x9, 0x7}, {0x5, 0x5, 0x8000, 0x6, 0x7f, 0x1000, 0x20, 0xcde9, 0x8000, 0x100000001, 0x3, 0x71, 0x4c48}, {0x7f, 0x6, 0x0, 0x88, 0x7f, 0x4, 0x60, 0x10000, 0x9, 0x5, 0x7, 0x1, 0x80}], 0xdf, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:43 executing program 4:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000af4000)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b8c4e3995c2708000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e96d266767f2a50f20d835080000000f228b58580f070f01b102000000", 0x64}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000018000-0x48)={0x40000, 0x0, [0xffff, 0x30, 0xc012, 0x6, 0xac51, 0x1ff, 0xfff, 0x4080000000000000]})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f000011a000)={0x1397, 0x8c, 0x0, 0x4, 0x8})
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000aef000)={0x7a, 0x0, [0x6, 0xffffffff, 0x9, 0x1000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000033d000-0x8)={0x1, 0x0})
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000af1000)=0xb5)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00002de000-0x40)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000102000)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000af3000)={0x8, 0x81, 0x9, 0x200})
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000af0000-0x8)={0x1, 0x9})
mbind(&(0x7f0000926000/0x1000)=nil, 0x1000, 0x1, &(0x7f000021d000-0x8)=0xffffffffffff8000, 0x4, 0x6)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f000029e000)={0x4, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:43 executing program 2:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000a6f000/0x6000)=nil, 0x6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000ae4000-0x68)={0x79, 0x0, [0x8a, 0x5103, 0x8, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x10, r2, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x2)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
[   43.369046] EPT pointer = 0x00000001c569c01e
2017/08/11 22:10:43 executing program 0:
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pkey_alloc(0x0, 0x0)
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x2, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f00002e6000)={0x200000000000000, 0x3, 0x5})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000202000)={0x1, <r3=>r1, 0x0})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r3, &(0x7f0000aed000-0x8)=0x4000000000000089, 0x8)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r2, &(0x7f0000aec000)=0x0, 0x8)
ioctl$KVM_GET_LAPIC(r0, 0x8400ae8e, &(0x7f00004b9000)={"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"})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00002a4000)={0x7, <r4=>r1, 0x0})
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00006ae000)={0x3, <r5=>r1, 0x1})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00008d7000)={0x0, <r6=>r1, 0x0})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000aee000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
mmap(&(0x7f000007d000/0x2000)=nil, 0x2000, 0x20003, 0x10, r1, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT2(r6, 0x4070aea0, &(0x7f0000aef000-0x70)={[{0x1, 0x7, 0x5, 0x8, 0x7, 0x0, 0x5, 0x6, 0x5, 0x1, 0x80, 0x9, 0x6c}, {0x7ff, 0x7f, 0x1000, 0x1000, 0x0, 0x238c, 0xb1, 0x3f6e, 0x7, 0x40, 0x400, 0x6, 0x100}, {0xffff, 0x9, 0xf55, 0x7, 0xa, 0x80000001, 0x0, 0x48, 0x8, 0x40, 0x9, 0xd8f, 0x2}], 0x1800000000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r5, 0xae78, &(0x7f0000598000-0x8)=0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000aef000-0xc)={0x1, r2, 0x1})
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0xb3e, 0x0)
[   43.478404] *** Guest State ***
2017/08/11 22:10:43 executing program 3:
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x69032, 0xffffffffffffffff, 0xc700000000000000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006dc000)="2f6465762f6b766d00", 0x240000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f000084a000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x1)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000739000-0xa8)={0x4, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, r3, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x2, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x2000001, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r1, &(0x7f0000f18000-0x8)=0x0, 0x8)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r4, &(0x7f0000aed000-0x6)=0xffffffffffffffff, 0x8)
[   43.497268] *** Guest State ***
2017/08/11 22:10:43 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000aea000)={0x0, 0x0, 0x0})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000aeb000-0x10)={0x0, 0x0, 0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_INTERRUPT(r1, 0x4010ae94, &(0x7f0000944000-0x10)={0x0, 0x5, 0x5})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000aec000-0x10)={0x1f002, 0x4000, 0x0})
2017/08/11 22:10:43 executing program 7:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000009a000-0x9)="2f6465762f6b766d00", 0x20000000002000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000007000)={0x6, [0x14bbf6c5, 0xff, 0x1, 0x2, 0x1, 0x9]})
r3 = eventfd2(0xfff, 0x80000)
read$eventfd(r3, &(0x7f0000964000-0x8)=0x0, 0x8)
r4 = pkey_alloc(0x0, 0x3)
pkey_free(r4)
mbind(&(0x7f00003d2000/0x400000)=nil, 0x400000, 0x2, &(0x7f0000aeb000-0x8)=0x1, 0x7, 0x1)
ioctl$KVM_NMI(r2, 0xae9a)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000aeb000)={[0x113000, 0x1f005, 0x1000, 0x2002], 0x4, 0x30, 0x81, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = eventfd2(0x80000000, 0x80801)
read$eventfd(r5, &(0x7f000044a000)=0x0, 0x8)
mprotect(&(0x7f0000a9d000/0x3000)=nil, 0x3000, 0x2)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f000099d000-0x120)={0x7, 0x0, [{0x80000006, 0x9, 0x2, 0x9, 0xe669, 0xffffffff, 0x6, [0x0, 0x0, 0x0]}, {0xb, 0x401, 0x0, 0xffffffff, 0x0, 0x909, 0x9, [0x0, 0x0, 0x0]}, {0x40000000, 0x4788, 0x5, 0x2, 0x7ff, 0x80000000, 0x2, [0x0, 0x0, 0x0]}, {0x40000007, 0xfff, 0x2, 0xffff, 0x2, 0x1ff, 0x3, [0x0, 0x0, 0x0]}, {0x40000001, 0x80000000, 0x2, 0x3, 0x2, 0x5c0a, 0xc7, [0x0, 0x0, 0x0]}, {0x80000019, 0x80, 0x1, 0x0, 0x1, 0x8, 0x9, [0x0, 0x0, 0x0]}, {0x0, 0x6, 0x4, 0x401, 0x3, 0x63f, 0x1, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000525000-0x18)={0x0, 0xffff, 0x996, &(0x7f0000aec000-0x8)=0x0})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000020000-0x4)=0x5)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae7000)={0x1, 0x0, [{0x12, 0x0, 0x5}]})
[   43.497277] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
2017/08/11 22:10:43 executing program 1:
mmap(&(0x7f0000000000/0xae8000)=nil, 0xae8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x200000, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0x1, 0x0)
mmap(&(0x7f0000184000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00001c5000)={0x7, <r1=>r0, 0x1})
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000ae9000)={0x4000000001e, 0x1, 0x43c4, 0x0})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000)="2f6465762f6b766d00", 0xe0000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000ae8000)=0xf005)
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f00006ee000/0x3000)=nil, 0x3000, 0x4, 0x68014, r3, 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f0000aea000)={0x0, []})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x2000005, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r1, 0xc008ae05, &(0x7f00003f8000-0x68)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000ad2000-0x10)={0x401, 0x30a0})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000316000/0x4000)=nil, 0x4000, 0x3, 0x10000008852, r4, 0x8000000000000000)
madvise(&(0x7f000028e000/0x1000)=nil, 0x1000, 0xe)
read$eventfd(r0, &(0x7f0000277000-0x8)=0x0, 0x8)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x5)
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f0000aea000)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f00006a9000/0x1000)=nil, 0x1000, 0x3, 0x110, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f000026d000-0x14)={0x20, 0x9, 0xe6, 0x6, 0x648})
2017/08/11 22:10:43 executing program 3:
mmap(&(0x7f0000000000/0xc5b000)=nil, 0xc5b000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b86f000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000af0000-0x8)=0x5003)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000aec000)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000c5b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f00007e3000)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000c5b000)={"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"})
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f00008e0000)=0x0)
2017/08/11 22:10:43 executing program 0:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000688000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f000000b000)={0x1000, 0x4000, 0x8, 0xf40, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000af5000)={0x79, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005a6000/0x18000)=nil, &(0x7f00000b3000-0x18)=[@text32={0x20, &(0x7f0000afb000)="b805000000b9000000000f01d9440f20c0350b000000440f22c00fae6f00660f38817d3166ba4000b8b7e39812efc744240000000000c7442402b3ea0000c7442406000000000f011424670f011f0fc71866bad10466edf20f1c19", 0x5b}], 0x1, 0x1, &(0x7f0000549000)=[], 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xd000)=nil, 0xd000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x0)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEBUGREGS(r3, 0x4080aea2, &(0x7f0000afc000-0x80)={[0x5000, 0x3000, 0xf005, 0x0], 0x681ae888, 0x0, 0xfff, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mprotect(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x4)
mbind(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x3, &(0x7f000000d000-0x8)=0x8abc, 0x9, 0x1)
mlock2(&(0x7f0000006000/0x2000)=nil, 0x2000, 0x1)
ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000221000)=0x100000001)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00005d2000)={0x0, 0x2, 0x1000, 0x2000, &(0x7f000062d000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000007000/0x18000)=nil, &(0x7f0000022000-0x18)=[@textreal={0x8, &(0x7f0000af1000-0x6b)="b862038ee866b8fdffffff0f23d00f21f866350000000a0f23f80f213666b8c0cfc3810f23d00f21f866351000000e0f23f836660f2acb26660f380292a284dfa164e466b9800000c00f326635000400000f30baf80c66b84b501d8766efbafc0cb099eeba6100b8e13aef", 0x6b}], 0x1, 0x0, &(0x7f0000021000)=[], 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000afc000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f0000afc000)=0xffffffffffff7fff)
2017/08/11 22:10:43 executing program 3:
mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000042d000)={0x6, 0x1ff})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000001000)={0x0, 0x9, 0x4, &(0x7f0000001000)=0x0})
mlock2(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x1)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x10000)
ioctl$KVM_GET_CLOCK(r0, 0x8030ae7c, &(0x7f0000002000-0x30)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000007000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x101000, 0x0)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000004000-0xc)={0x6, <r3=>r1, 0x0})
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x3, 0x32, r1, 0x0)
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000003000)=0x0, 0x20, 0x2)
ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f0000004000-0x70)={[{0x20, 0x1, 0x2, 0x2332, 0x5, 0x48f, 0x43, 0xfffffffffffffffb, 0x40000000000, 0x8, 0x2, 0x0, 0x1}, {0x9, 0x100000000, 0x401, 0x7, 0xfff, 0xfffffffffffffffc, 0x8, 0x9, 0x800, 0x1, 0x100000000, 0x5, 0x5}, {0x8001, 0x55, 0x8, 0x1ff, 0x8, 0x9, 0x2, 0xffffffffffff82ba, 0x0, 0x100000000, 0x97d4, 0x800, 0x9}], 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000002000-0x68)={0xf5, 0x0, [0x0, 0x2, 0x100000000, 0x5], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000001000-0x8)={0x5c, 0x64ab})
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000004000)={0x5, 0x0, [{0x4, 0x2, 0x0, 0x0, @msi={0x1, 0x400, 0x7}}, {0x9, 0x7, 0x0, 0x0, @msi={0x7f, 0x0, 0x8}}, {0x100, 0x4, 0x0, 0x0, @irqchip={0x1, 0x7}}, {0x80, 0x3, 0x0, 0x0, @msi={0x8, 0x3, 0xfff}}, {0x7, 0x4, 0x0, 0x0, @adapter={0xfff, 0x3ff, 0x7, 0x0, 0x7}}]})
ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000002000)={0x0, 0x0, &(0x7f0000001000/0x1000)=nil})
mmap(&(0x7f0000007000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000008000-0x10)={0x100000, 0x0, 0x0})
ioctl$KVM_GET_PIT(0xffffffffffffffff, 0xc048ae65, &(0x7f0000003000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_ASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae70, &(0x7f0000005000-0x10)={0x7, 0x8, 0x1, 0x1})
ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000007000-0x10)={0x127fe, 0x0, &(0x7f0000000000/0x4000)=nil})
ioctl$KVM_GET_PIT(r4, 0xc048ae65, &(0x7f0000005000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
[   43.497284] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
2017/08/11 22:10:43 executing program 5:
mmap(&(0x7f0000000000/0xae5000)=nil, 0xae5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff8000)=nil, 0xff8000, 0x6, 0x8071, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000d3a000/0x4000)=nil, 0x4000, 0x9)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4000000000000000)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f00001f2000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000ff8000)={0x4, <r5=>r0, 0x0})
read$eventfd(r5, &(0x7f0000de0000)=0x0, 0x8)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000960000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000ae8000-0xc)={0x6, <r7=>r0, 0x1})
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_VCPU_FAULT(r7, 0x4008ae52, &(0x7f0000ae6000)=0x2)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000ff9000-0xd8)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000ff8000)={[{0x10000, 0x0, 0x0, 0x5, 0x6, 0x5, 0x7f, 0xfff, 0x80000000, 0x0, 0x20, 0xffffffffffffff7f, 0x0}, {0x80, 0x100000000000, 0xffffffffffffffff, 0x6, 0x6, 0xfffffffffffffffa, 0xffffffffffffc3af, 0x8, 0x6, 0x10001, 0x0, 0x4, 0x7fffffff}, {0x1ff, 0x10001, 0x1544119e, 0x9, 0x0, 0x80, 0x3, 0x80, 0x6, 0x3ff, 0xffffffffffffffe1, 0x3, 0x401}], 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:43 executing program 2:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00002cc000)="2f6465762f6b766d00", 0x200040002cc000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000acd000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text16={0x10, &(0x7f000039f000-0x5c)="0f01b10000440f20c0663505000000440f22c0440f20c066350e000000440f22c0ea30051f00bad104b80500ef0f09baf80c66b81a465f8766efbafc0cb000eef20f2a51150f38c87a09baf80c66b8aaed328266efbafc0cb8394eef", 0x5c}], 0x1, 0x0, &(0x7f0000af2000)=[], 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4068aea3, &(0x7f0000ae9000)={0x7b, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000819000-0x10)={0x6, 0x8, 0x3, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f00009db000)="")
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x1000000, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x103, 0x36, r2, 0x4)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000512000)={0x0, 0x8, 0xda, &(0x7f0000af5000)=0x0})
ioctl$KVM_SMI(r3, 0xaeb7)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MSRS(r3, 0xc008ae88, &(0x7f0000af6000)={0x4, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000af4000-0x78)={0x7, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
madvise(&(0x7f0000004000/0x9000)=nil, 0x9000, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000006000)={0x7, <r4=>0xffffffffffffffff, 0x0})
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000af8000-0xec)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_ENABLE_CAP(r4, 0x4068aea3, &(0x7f000000f000-0x68)={0x81, 0x0, [0x100000000, 0x1, 0x8, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:43 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
mmap(&(0x7f0000111000/0x3000)=nil, 0x3000, 0x2, 0x8812, r4, 0x0)
2017/08/11 22:10:43 executing program 1:
mmap(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x3, 0x8972, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a95000/0x1000)=nil, 0x1000, 0xe000, 0x3, &(0x7f0000b18000/0xe000)=nil)
madvise(&(0x7f0000b1c000/0x1000)=nil, 0x1000, 0x80000f)
mremap(&(0x7f0000b1d000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f0000b19000/0x2000)=nil)
mremap(&(0x7f0000b1e000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f0000b1d000/0x2000)=nil)
madvise(&(0x7f0000b19000/0x1000)=nil, 0x1000, 0x6f)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000001000-0xc)={0x0, <r0=>0xffffffffffffffff, 0x1})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x4)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f0000a97000-0x138)={{0xf000, 0x10000, 0x738ce82e0a18acd3, 0x0, 0x3, 0x9, 0x8, 0xfffffffffffeffff, 0x81, 0x5, 0x8, 0x8, 0x0}, {0x5000, 0x6000, 0x0, 0xc2b, 0xfffffffffffffffb, 0x4, 0x9ea, 0xb5, 0x2, 0x9, 0x3, 0x101, 0x0}, {0x0, 0x7001, 0xf, 0xfffffffffffffff7, 0x4, 0x1063, 0x7, 0x800, 0x260, 0x800, 0x4, 0x1, 0x0}, {0xf000, 0x15000, 0xf, 0x40, 0x3, 0x9, 0x1, 0x7fff, 0x8, 0x200, 0x9, 0xfffffffffffffffb, 0x0}, {0x5000, 0xf000, 0xb, 0x4d8, 0x0, 0x1, 0x400, 0x80, 0x1, 0xfff, 0x0, 0x6, 0x0}, {0x5000, 0x0, 0x0, 0xffffffffffff7fff, 0x6, 0x4, 0xffffffffffffffc0, 0x1, 0xdc6, 0x5, 0x4, 0x3, 0x0}, {0xf000, 0x10d000, 0x9, 0xb5d, 0x6, 0x4, 0xfffffffffffffff7, 0x9, 0x3, 0x4, 0xc00000000000, 0xeb, 0x0}, {0x4000, 0x100000, 0xf, 0x7, 0x7f, 0x883, 0x6, 0x7fff, 0x51, 0x6, 0x0, 0x2, 0x0}, {0x1001, 0x1000, [0x0, 0x0, 0x0]}, {0x10000, 0x4, [0x0, 0x0, 0x0]}, 0x40000, 0x0, 0x1d004, 0x24010, 0xe, 0x4000, 0x4, [0x7ff, 0xa35, 0x2, 0x0]})
mremap(&(0x7f0000b1b000/0x2000)=nil, 0x2000, 0x12000, 0x3, &(0x7f0000408000/0x12000)=nil)
mbind(&(0x7f0000b18000/0x3000)=nil, 0x3000, 0x4003, &(0x7f0000b24000)=0x7f78, 0x101, 0x3)
ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000001000-0x10)={0x1000, 0x90d, 0x81})
mlock2(&(0x7f0000b1b000/0x4000)=nil, 0x4000, 0x1)
[   43.497288] CR3 = 0x00000000fffbc000
2017/08/11 22:10:43 executing program 7:
mmap(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x4, 0x8972, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000a93000/0x2000)=nil, 0x2000, 0x4)
mlock2(&(0x7f0000a93000/0x3000)=nil, 0x3000, 0xffffffffffffffff)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x2)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xf)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x2a000)=nil, 0x2a000, 0x0, 0x60131, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000029000)={[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)={0x5007, 0x0, 0x0})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000053000/0x18000)=nil, &(0x7f0000a94000-0x18)=[@textreal={0x8, &(0x7f0000001000-0x6a)="baf80c66b82093518466efbafc0c66b8a4e2f9b566efbaa100edf4b800008ec866b9720a000066b80090000066ba000000000f300f0198060066b8000000000f23d00f21f86635000000030f23f8f30f5a520266b9fd0b00000f32baf80c66b83c9f148a66efbafc0ced", 0x6a}], 0x1, 0x0, &(0x7f0000000000)=[@vmwrite={0x8, 0x0, 0x40, 0x0, 0x7, 0x0, 0x81, 0x0, 0x1}, @cstype3={0x5, 0xe}], 0x2)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000000)={0x81, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
munlock(&(0x7f0000a93000/0x2000)=nil, 0x2000)
ioctl$KVM_X86_SET_MCE(r0, 0x4040ae9e, &(0x7f0000000000)={0x200000000000000, 0x10000, 0x0, 0x0, 0x15, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
madvise(&(0x7f0000a94000/0x3000)=nil, 0x3000, 0xc)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000001000-0x8)=0x1)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000002000-0xc)={0x2, <r3=>r0, 0xc1c97060f15edea8})
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x1)
ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000001000)={[0xf2, 0x5, 0x0, 0xffffffff00000000, 0x0, 0x80, 0x7ff, 0x2, 0xfcda, 0xddf, 0x1, 0x2ba, 0x101, 0x4, 0x0, 0x1], 0x10004, 0x810})
r4 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000a93000/0x3000)=nil, 0x3000, 0xc, r4)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000002000-0x400)={"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"})
pkey_alloc(0x0, 0x3)
[   43.497293] RSP = 0x0000000000000f80  RIP = 0x0000000000000006
[   43.497298] RFLAGS=0x00010002         DR7 = 0x0000000000000400
2017/08/11 22:10:43 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x10001, 0x0, 0x6ffd, 0x2000, &(0x7f0000055000/0x2000)=nil})
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x4)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, r0, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f000000a000-0x8)={0x40006, 0x7ff})
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0x1000000000002, 0x20010, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x1)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r4, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r2, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f00001cc000)={0x0, 0x2})
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000f72000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x20000000000003, &(0x7f0000f72000)=0xc0000000, 0x6, 0x3)
2017/08/11 22:10:43 executing program 3:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x2000002, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x9, 0x3cca})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00007c3000)={0x1, 0x0, [{0x0, 0x5, 0x7fff, 0x9, 0x8, 0x0}]})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000595000)={{0x11d000, 0x100000, 0xf, 0x4, 0xc2d, 0x101, 0x8, 0x20, 0xfffffffffffffffc, 0xe1, 0x0, 0x100, 0x0}, {0x6000, 0xf000, 0xd, 0x4, 0xc901, 0x8, 0xe05, 0x10000, 0x5, 0xff, 0x5, 0x5, 0x0}, {0x2, 0x7001, 0x1b, 0x716, 0xfffffffffffffffe, 0xaa15, 0x4, 0x5, 0x1, 0x3, 0x5, 0x6, 0x0}, {0x7000, 0x106002, 0x0, 0xfffffffffffffffa, 0x8d, 0x0, 0x9e, 0x100, 0x9, 0x8, 0x4f0, 0x1ff, 0x0}, {0xd004, 0x6001, 0xf, 0x6, 0x2, 0x1, 0x7, 0x8001, 0x1, 0x5, 0x0, 0x400, 0x0}, {0x1f000, 0x5000, 0xf, 0xbf3, 0x2, 0x1000, 0x1, 0x100, 0x80, 0x1, 0x7de, 0x7, 0x0}, {0xd001, 0x1000, 0x10, 0x2, 0x71, 0x6, 0x0, 0x9, 0x7fff, 0xf316e6a, 0x5, 0x9, 0x0}, {0x1000, 0x6, 0xd, 0x7, 0x0, 0x3b, 0x3, 0x0, 0x2, 0xff, 0x1, 0x401, 0x0}, {0x100000, 0x10f000, [0x0, 0x0, 0x0]}, {0x2000, 0x0, [0x0, 0x0, 0x0]}, 0x40004, 0x0, 0x0, 0x200000, 0xc, 0x1000, 0x1000, [0x2, 0x7, 0xd85, 0x1000]})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000afb000-0x28)={0x400000000, 0x1000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000afb000)={0x400000000000000, 0xd000, 0xad9, 0x0, 0x20, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x4, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0x6, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x7}]})
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000045000)=@ioapic={0x1, 0x2, 0x2, 0x6, 0x0, [{0x1994f69b, 0x3, 0x0, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x8, 0x2db6, 0x1, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x6, 0x40, 0x10001, [0x0, 0x0, 0x0, 0x0], 0x100000000}, {0xfffffffffffffff9, 0x1, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x1000, 0x7fffffff, 0x8001, [0x0, 0x0, 0x0, 0x0], 0x899}, {0x2, 0x100, 0x100, [0x0, 0x0, 0x0, 0x0], 0xfffffffffffffff7}, {0x80, 0x5, 0x5, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x8000, 0xfffffffffffffff8, 0x7, [0x0, 0x0, 0x0, 0x0], 0xa}, {0xff, 0x6, 0x1, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0xff, 0x2, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x35b2, 0x400, 0x9, [0x0, 0x0, 0x0, 0x0], 0x1}, {0x9, 0x5, 0x9, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x4, 0x5, 0x29d7, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x0, 0x7fffffff, 0x7, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xffffffff7fffffff, 0x5, 0xfa3, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x5, 0x9, 0xfffffffeffffffff, [0x0, 0x0, 0x0, 0x0], 0x19c0000000000000}, {0xffffffffffffffff, 0x8, 0x5, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x9, 0xffffc00000000000, 0x2, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x8001, 0x800, 0x4, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x3ff, 0x9, 0x100000000, [0x0, 0x0, 0x0, 0x0], 0x9}, {0xffffffffffffe01b, 0x7bf, 0x5f1, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x800000000, 0x8001, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x6, 0x80, 0x93, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x5, 0x2, 0x7, [0x0, 0x0, 0x0, 0x0], 0x80}]})
mlock2(&(0x7f00003f7000/0x1000)=nil, 0x1000, 0x1)
mmap(&(0x7f0000afc000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000afc000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x20, 0x80000001, 0x2, 0x0, 0x14b98, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0})
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000446000)={0x7fffffff, 0xfffffffffffffff7})
mlock2(&(0x7f00007b0000/0x1000)=nil, 0x1000, 0x1)
[   43.497308] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   43.497315] CS:   sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000
[   43.497326] DS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.497335] SS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.497344] ES:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.497352] FS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.497360] GS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.497370] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   43.497383] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   43.497393] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.497403] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   43.497411] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   43.497417] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   43.497422] Interruptibility = 00000000  ActivityState = 00000000
[   43.497425] *** Host State ***
[   43.497430] RIP = 0xffffffff811b6777  RSP = 0xffff8801bf87f4c8
[   43.497442] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   43.497448] FSBase=00007ff213531700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   43.497455] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   43.497463] CR0=0000000080050033 CR3=00000001d59ae000 CR4=00000000001426e0
[   43.497471] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   43.497478] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   43.497481] *** Control State ***
[   43.497486] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   43.497490] EntryControls=0000d1ff ExitControls=0023efff
[   43.497498] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   43.497503] VMEntry: intr_info=00000b0d errcode=00000000 ilen=00000000
[   43.497508] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.497512]         reason=80000021 qualification=0000000000000000
[   43.497516] IDTVectoring: info=00000000 errcode=00000000
[   43.497520] TSC Offset = 0xffffffe71523d5b5
[   43.497523] TPR Threshold = 0x00
[   43.497528] EPT pointer = 0x00000001d57f101e
[   43.501510] *** Guest State ***
[   43.501518] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[   43.501525] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   43.501529] CR3 = 0x00000000fffbc000
[   43.501532] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
[   43.501537] RFLAGS=0x00033000         DR7 = 0x0000000000000400
[   43.501545] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   43.501551] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501561] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501569] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501577] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501586] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501594] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   43.501601] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.501610] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   43.501616] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.501625] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   43.501630] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   43.501636] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   43.501641] Interruptibility = 00000000  ActivityState = 00000000
[   43.501643] *** Host State ***
[   43.501650] RIP = 0xffffffff811b6777  RSP = 0xffff8801d58df4c8
[   43.501661] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   43.501667] FSBase=00007fa86519c700 GSBase=ffff8801dc000000 TRBase=ffff8801dc022cc0
[   43.501673] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   43.501680] CR0=0000000080050033 CR3=00000001d75dd000 CR4=00000000001426f0
[   43.501688] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   43.501694] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   43.501697] *** Control State ***
[   43.501701] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   43.501705] EntryControls=0000d1ff ExitControls=0023efff
[   43.501711] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   43.501715] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.501720] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.501723]         reason=80000021 qualification=0000000000000000
[   43.501727] IDTVectoring: info=00000000 errcode=00000000
[   43.501730] TSC Offset = 0xffffffe70f759ecb
[   43.501733] TPR Threshold = 0x00
[   43.501738] EPT pointer = 0x00000001da29501e
[   43.520868] Disabled LAPIC found during irq injection
[   43.538177] *** Guest State ***
[   43.538187] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   43.538195] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   43.538199] CR3 = 0x00000000fffbc000
[   43.538204] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   43.538210] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[   43.538219] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   43.538227] CS:   sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000
[   43.538237] DS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.538248] SS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.538259] ES:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.538270] FS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.538280] GS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   43.538288] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   43.538299] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   43.538307] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   43.538318] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   43.538324] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   43.538331] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   43.538337] Interruptibility = 00000000  ActivityState = 00000000
[   43.538339] *** Host State ***
[   43.538347] RIP = 0xffffffff811b6777  RSP = 0xffff8801bfadf4c8
[   43.538359] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   43.538366] FSBase=00007ff21350e700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   43.538372] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   43.538381] CR0=0000000080050033 CR3=00000001d59ae000 CR4=00000000001426e0
[   43.538389] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   43.538394] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   43.538397] *** Control State ***
[   43.538402] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   43.538407] EntryControls=0000d1ff ExitControls=0023efff
[   43.538414] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   43.538419] VMEntry: intr_info=00000b0d errcode=00000000 ilen=00000000
[   43.538423] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   43.538428]         reason=80000021 qualification=0000000000000000
[   43.538432] IDTVectoring: info=00000000 errcode=00000000
[   43.538436] TSC Offset = 0xffffffe71523d5b5
[   43.538440] TPR Threshold = 0x00
[   43.538444] EPT pointer = 0x00000001d57f101e
[   44.974718] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[   44.983567] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   44.993934] CR3 = 0x00000000fffbc000
[   44.997670] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
[   45.003819] RFLAGS=0x00023000         DR7 = 0x0000000000000400
[   45.009809] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   45.016616] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.024843] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.032832] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.040949] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.048935] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.057157] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.065146] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   45.073282] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   45.081264] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   45.089395] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   45.097472] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   45.104059] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.111521] Interruptibility = 00000000  ActivityState = 00000000
[   45.117904] *** Host State ***
[   45.121115] RIP = 0xffffffff811b6777  RSP = 0xffff8801d57974c8
[   45.127251] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.133694] FSBase=00007f9eb44cd700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   45.141655] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   45.147555] CR0=0000000080050033 CR3=00000001c5211000 CR4=00000000001426e0
[   45.154719] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.161398] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.167604] *** Control State ***
[   45.171072] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   45.177876] EntryControls=0000d1ff ExitControls=0023efff
2017/08/11 22:10:45 executing program 2:
mmap(&(0x7f0000000000/0x2e000)=nil, 0x2e000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f000002b000)={0x3, 0x0, [{0x0, 0x7, 0x1, 0x3, 0x3, 0x40, 0x8, [0x0, 0x0, 0x0]}, {0xc0000000, 0x0, 0x0, 0x6, 0x8, 0x99, 0x6, [0x0, 0x0, 0x0]}, {0x80000019, 0x1, 0x1, 0x7, 0x7, 0x8, 0x3000, [0x0, 0x0, 0x0]}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000002c000)="2f6465762f6b766d00", 0x200000022000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x0)
r4 = eventfd2(0x0, 0x0)
mmap(&(0x7f000002e000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000002f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f000000e000/0x18000)=nil, &(0x7f0000017000-0x18)=[@text16={0x10, &(0x7f0000005000)="d8f1f082595e0865f2a4660f01dd36660fae3a0f02780db840008ec00f20e06635004000000f22e0dada0f20d86635080000000f22d8", 0x36}], 0x1, 0xa, &(0x7f0000030000-0x10)=[@dstype0={0x6, 0x9}], 0x1)
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f000002f000-0x10)={0x100000001, 0x7})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000026000-0x20)={r3, 0x0, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
read$eventfd(r3, &(0x7f000002e000-0x8)=0x0, 0x8)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f000002d000)={r3, 0x2007, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
write$eventfd(r3, &(0x7f000000f000-0x8)=0x401, 0x8)
2017/08/11 22:10:45 executing program 7:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f000008d000)=0x100000000000003)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x4, 0x1b071, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x0)
mbind(&(0x7f0000006000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000002000-0x8)=0x1, 0x4, 0x3)
mremap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000000000/0x2000)=nil)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x0)
r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x10001, 0x0, 0x6ffd, 0x2000, &(0x7f0000055000/0x2000)=nil})
mmap(&(0x7f0000309000/0x400000)=nil, 0x400000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, r0, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f000000a000-0x8)={0x40006, 0x7ff})
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r4, 0x4038ae7a, &(0x7f0000ae6000-0x38)={0x5, 0x5, &(0x7f00001ea000-0xcf)="309f0702adc0d9066713c8e4b660854700cb709b6fdd8f3bf238345c15c227413b216e321452ffb034ec12a1c73e3648982ea8dc263cfeeedf3366f311c7952ffb7ded070ff6390da91305e8fea03ec3c642a28697ccd5c251dcf287f1807c3059593b1673b9d6d4baa26e800f39d24d7929fa4fd91e661f7dc7b9d57181055a9ab6200610917d98d2cdbf3a451622db2ae1868d708c4a4839f9721ba406bd708462f2a1326f085a5be8cffdcb67b2b830b455f8411aee917e2763bd035589448d6d49ae8b47c18264130edcf37618", &(0x7f00001cf000-0x1d)="18da5208139a11a357325f95d25a44b840327363a3c34c7c80b713eac3", 0xcf, 0x1d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0x1000000000002, 0x20010, 0xffffffffffffffff, 0x0)
r6 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f00002b9000/0x2000)=nil, 0x2000, 0x2, r6)
2017/08/11 22:10:45 executing program 4:
mmap(&(0x7f0000000000/0x16000)=nil, 0x16000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000016000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f000000c000/0x3000)=nil, 0x3000, 0x3, 0x32, r1, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f0000013000/0x2000)=nil, 0x2000, 0xffffffffff, 0x32, r1, 0x0)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000274000/0x18000)=nil, &(0x7f0000107000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595d2a1ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd253883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[@efer={0x2, 0xc00}], 0x1)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0xffffffffffffffff)
ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000af7000)=0x9)
mmap(&(0x7f0000895000/0x1000)=nil, 0x1000, 0x3, 0x10114, r4, 0x10000000)
ioctl$KVM_SET_DEBUGREGS(r4, 0x4080aea2, &(0x7f0000af9000-0x80)={[0x10f000, 0x2, 0x100000, 0x10000], 0xfffffffffffffffd, 0xa9, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f00005a0000-0x48)={0x4, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f0000017000-0x20)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_XCRS(r4, 0x4188aea7, &(0x7f0000896000-0x58)={0x5, 0x4, [{0x9, 0x0, 0x800000000}, {0x2, 0x0, 0x26b}, {0x4, 0x0, 0x7fffffff}, {0x7f, 0x0, 0x6}, {0x997, 0x0, 0xc7}]})
ioctl$KVM_S390_INTERRUPT_CPU(r4, 0x4010ae94, &(0x7f000074e000)={0x5, 0x7, 0x100000000007})
ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000012000)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000007000)=0x8, 0xff, 0x4)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000af6000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c0137bc281d9f1a, [0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000017000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000017000)={[{0x1000, 0x101, 0x0, 0x5, 0x3, 0x6d, 0x8, 0x80, 0x2, 0xca, 0x5, 0x8, 0x8}, {0x7ff, 0x471, 0x88d3, 0x9, 0x4, 0x3, 0x2, 0x100, 0x70, 0x1, 0x0, 0x2, 0x1ff}, {0x4, 0x68db, 0x9, 0x8000, 0x37, 0x3ff, 0xf26, 0x4, 0xebd, 0x3ff, 0x6f, 0x5, 0xffffffff7fffffff}], 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_FPU(r4, 0x41a0ae8d, &(0x7f000000d000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7ff, 0x5, 0x1f, 0x0, 0x3f, 0x1000, 0x2000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xffffffffffffd6ca, 0x0})
ioctl$KVM_GET_REGS(r4, 0x8090ae81, &(0x7f0000af9000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1ff)
2017/08/11 22:10:45 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
mmap(&(0x7f0000111000/0x3000)=nil, 0x3000, 0x2, 0x8812, r4, 0x0)
2017/08/11 22:10:45 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r2, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x10001, 0x0, 0x6ffd, 0x2000, &(0x7f0000055000/0x2000)=nil})
mmap(&(0x7f0000309000/0x400000)=nil, 0x400000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, r0, 0x0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[], 0x0)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0x1000000000002, 0x20010, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_PVINFO(0xffffffffffffffff, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000f72000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x20000000000003, &(0x7f0000c6b000-0x8)=0xc0000000, 0x6, 0x3)
2017/08/11 22:10:45 executing program 1:
mmap(&(0x7f0000000000/0x16000)=nil, 0x16000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000017000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000016000)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
mmap(&(0x7f000000c000/0x3000)=nil, 0x3000, 0x3, 0x32, r2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000274000/0x18000)=nil, &(0x7f0000107000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595d2a1ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd253883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[@efer={0x2, 0xc00}], 0x1)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0xffffffffffffffff)
ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000af7000)=0x9)
mmap(&(0x7f0000895000/0x1000)=nil, 0x1000, 0x3, 0x10114, r4, 0x10000000)
ioctl$KVM_SET_DEBUGREGS(r4, 0x4080aea2, &(0x7f0000af9000-0x80)={[0x10f000, 0x2, 0x100000, 0x10000], 0xfffffffffffffffd, 0xa9, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000016000)={0x4, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f0000016000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f0000017000-0x20)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_XCRS(r4, 0x4188aea7, &(0x7f0000896000-0x58)={0x5, 0x4, [{0x9, 0x0, 0x800000000}, {0x2, 0x0, 0x26b}, {0x4, 0x0, 0x7fffffff}, {0x7f, 0x0, 0x6}, {0x997, 0x0, 0xc7}]})
ioctl$KVM_S390_INTERRUPT_CPU(r4, 0x4010ae94, &(0x7f000074e000)={0x5, 0x7, 0x100000000007})
ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000012000)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000007000)=0x8, 0xff, 0x4)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000af6000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c0137bc281d9f1a, [0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000017000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000017000)={[{0x1000, 0x101, 0x0, 0x5, 0x3, 0x6d, 0x8, 0x80, 0x2, 0xca, 0x5, 0x8, 0x8}, {0x7ff, 0x471, 0x88d3, 0x9, 0x4, 0x3, 0x2, 0x100, 0x70, 0x1, 0x0, 0x2, 0x1ff}, {0x4, 0x68db, 0x9, 0x8000, 0x37, 0x3ff, 0xf26, 0x4, 0xebd, 0x3ff, 0x6f, 0x5, 0xffffffff7fffffff}], 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000010000/0x1000)=nil, 0x1000, 0x2000000, 0x114, r3, 0x800000000000004)
ioctl$KVM_SET_FPU(r4, 0x41a0ae8d, &(0x7f000000d000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7ff, 0x0, 0x1f, 0x0, 0x3f, 0x5000, 0x2000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xffffffffffffd6ca, 0x0})
ioctl$KVM_GET_REGS(r4, 0x8090ae81, &(0x7f0000af9000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1ff)
2017/08/11 22:10:45 executing program 0:
mmap(&(0x7f0000000000/0xae4000)=nil, 0xae4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f00007dc000)=0x101)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r2, 0xae45, 0x2)
ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f00004a9000-0x8)={0x2, 0x7ff})
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000ae5000-0x30)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f00000a4000)=[@textreal={0x8, &(0x7f0000ae6000-0x33)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef0c6520573a}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
2017/08/11 22:10:45 executing program 5:
mmap(&(0x7f0000000000/0xae5000)=nil, 0xae5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff8000)=nil, 0xff8000, 0x6, 0x8071, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000d3a000/0x4000)=nil, 0x4000, 0x9)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4000000000000000)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f00001f2000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
read$eventfd(r3, &(0x7f0000aa7000-0x8)=0x0, 0x8)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000960000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000ae8000-0xc)={0x6, <r6=>r0, 0x1})
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_VCPU_FAULT(r6, 0x4008ae52, &(0x7f0000ae6000)=0x2)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000ff9000-0x10)={0x3, 0x2})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000bba000-0x90)={[0x7ae, 0x3f, 0xad, 0x6, 0x5, 0x3f, 0x8, 0x80000001, 0x0, 0x8000, 0x585, 0x5, 0x41f, 0x8, 0x967c, 0x15], 0xf002, 0x1000})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, &(0x7f0000bba000)={[0x2000, 0xf000, 0xf000, 0x1001], 0x9, 0x80, 0xa9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000ff9000-0xd8)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000ff8000)={[{0x10000, 0x0, 0x0, 0x5, 0x6, 0x5, 0x7f, 0xfff, 0x80000000, 0x0, 0x20, 0xffffffffffffff7f, 0x0}, {0x80, 0x100000000000, 0xffffffffffffffff, 0x6, 0x6, 0xfffffffffffffffa, 0xffffffffffffc3af, 0x8, 0x6, 0x10001, 0x0, 0x4, 0x7fffffff}, {0x1ff, 0x10001, 0x1544119e, 0x9, 0x0, 0x80, 0x3, 0x80, 0x6, 0x3ff, 0xffffffffffffffe1, 0x3, 0x401}], 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
[   45.183342] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   45.190411] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.197089] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.203671]         reason=80000021 qualification=0000000000000000
[   45.209994] IDTVectoring: info=00000000 errcode=00000000
[   45.215445] TSC Offset = 0xffffffe7132d02f6
[   45.219773] TPR Threshold = 0x00
[   45.223137] EPT pointer = 0x00000001d9cf201e
[   45.347103] irq bypass consumer (token ffff8801d2935880) registration fails: -16
[   45.436371] irq bypass consumer (token ffff8801cb49cf80) registration fails: -16
2017/08/11 22:10:45 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00001b8000-0xf8)={0x5, 0x0, [{0x8000, 0x4, 0x0, 0x0, @adapter={0x20, 0xc10c, 0x5947, 0x4, 0x1}}, {0x4, 0x2, 0x0, 0x0, @sint={0xe1, 0x1}}, {0x7, 0x7, 0x0, 0x0, @msi={0x1, 0x8, 0x6}}, {0x1, 0x0, 0x0, 0x0, @sint={0xe5, 0x8}}, {0x20, 0x2, 0x0, 0x0, @msi={0x6, 0xfffffffffffffffe, 0x9}}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000012000-0x20)={0x10003, 0x1, 0xf000, 0x1000, &(0x7f0000338000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000aeb000)={0x4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
eventfd2(0x800, 0x80001)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000088e000/0x18000)=nil, &(0x7f0000aed000-0x18)=[@text16={0x10, &(0x7f0000ada000)="ba2000b0f0eeba6100d2c366efb800008e0c87e4670f01c800072c0f0d004066b8db0000000f06c80f21f866350800d0000f23f83e6567660f38dea419f79758603e3ef2ad", 0x45}], 0x1, 0x0, &(0x7f0000aec000)=[@dstype0={0x6, 0xb}], 0x1)
r4 = eventfd2(0x0, 0x800)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r4, &(0x7f0000aec000)=0x0, 0x8)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000aea000-0x18)={0x0, 0x0, []})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r6 = eventfd2(0x8023, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000aed000)=0x1)
r7 = eventfd2(0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r5, 0x4004ae8b, &(0x7f0000071000-0x50)={0x4c, "1c4c820efa6b7414d1451725b70130486bbb62b52d1988fed8d4e07f6759f6f8bb9b7bd91f07536afca166954696c90af92f61c54c15daa13f1877ec029bc190d2f351321a498a14db24be40"})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000aeb000-0x20)={r6, 0x3, 0x2, r7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r7, &(0x7f0000aee000-0x8)=0x0, 0x8)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:45 executing program 2:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000af2000)={0x7, 0x200, 0x8, 0x0, 0xc55, 0x1, 0x360d31e6, 0x1, 0x6, 0x3ff, 0x8, 0x7, 0x0, 0xb57, 0x7, 0x401, 0x200000000000, 0x6, 0x6})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000acd000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b90401004066b8470066bad104b0a9ee0f3052c76dfef3ab66b86f000f00d099d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000af2000)=[], 0x0)
mprotect(&(0x7f000012f000/0x3000)=nil, 0x3000, 0x1000001)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000819000-0x10)={0x0, 0x0, 0x3, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
madvise(&(0x7f0000004000/0x9000)=nil, 0x9000, 0x0)
madvise(&(0x7f000034e000/0x1000)=nil, 0x1000, 0x64)
mremap(&(0x7f00007cc000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f00004f1000/0x1000)=nil)
2017/08/11 22:10:45 executing program 3:
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f00006bb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000620000/0x1000)=nil, 0x1000, 0x3, 0x10, r0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000af1000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f00004d7000-0xf8)={0x6, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00007fa000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9, 0x7, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000320000-0x1c)={0x80000000, 0x1ff, 0x10001, 0x0, 0x9, 0x2, 0x80000001, 0xa863, 0x4, 0x6, 0x0, 0x8000, 0x0, 0x10001, 0x0, 0x1ff, 0x5, 0x2090, 0x3})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b904010040b87c004000ba000000000f300fc76d07f3ab66b86f000f00d00f20e0d3ea0000280f22e066baf80cb9800000c00f32351410000f30ef66bafc0c66ed6767266767f2a50fc79f57000000650f070f01b102000000", 0x59}], 0x1, 0x0, &(0x7f0000ae6000)=[], 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000ae3000-0x68)={0x7b, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00009d4000-0x4)=0x100000004)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:45 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000000000/0xae1000)=nil, 0xae1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000630000/0x18000)=nil, &(0x7f0000777000)=[@text32={0x20, &(0x7f0000ad7000-0x52)="26f20f5fd3660f3880bff2ff0000b8f0ffff7f0f23c00f21f83503000c000f23f8b9ac08000026640f01c8ba0000000066ba4200ed26f26d26660ffbe766ba2000b800000000ef3e0f4dd9", 0x4b}], 0x1, 0x0, &(0x7f0000ada000)=[], 0x0)
ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000a2b000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
mmap(&(0x7f0000ae1000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000ae1000)={0x0, 0x80000000000, 0x1, &(0x7f0000a90000-0x8)=0x0})
mmap(&(0x7f0000ae1000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000ae2000-0x10)={0x4, 0x9})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae0000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000ae1000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000ae1000)={[0x0, 0x0, 0x0, 0x5000], 0x1, 0x4, 0x218e, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f000019e000-0x70)={[{0x4, 0x4, 0x4, 0x2, 0x80, 0x200, 0x8, 0x1, 0x8001, 0x1c2, 0xab, 0x0, 0x2}, {0x8, 0x7, 0x1ff, 0x1000, 0x6, 0x0, 0x1, 0x7, 0xfff, 0x532f408e, 0xfffffffffffffffb, 0xfffffffffffffffe, 0xab1}, {0x3, 0x3178, 0x3, 0x1, 0x4, 0x9, 0x101, 0x9, 0x4, 0x2, 0x7, 0x3, 0x80000000}], 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000ae2000-0x30)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000617000+0x9e0)={[{0x1, 0x7, 0x2, 0x8, 0x7, 0x0, 0x1, 0x4, 0x8001, 0x0, 0x100000001, 0x2, 0x7}, {0x8a, 0x2d, 0x6, 0x1000, 0x33, 0x7, 0x8001, 0x3, 0x101, 0x1, 0x1, 0x4, 0x2}, {0x100, 0x4, 0x2, 0x7ff, 0xc737, 0x8, 0x10000, 0x1, 0x2, 0x81, 0x9, 0x400, 0x200}], 0x7f, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000853000-0x40)={0x100000000000000, 0xf002, 0x2, 0x1, 0x17, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:45 executing program 4:
mmap(&(0x7f0000000000/0xaea000)=nil, 0xaea000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r2=>r1, 0x0})
ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000a17000)={0x0, 0x0, 0x401, &(0x7f00008ba000-0x8)=0x0})
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f0000ae8000)={0x0, 0x0})
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000696000)={0x3, 0x0})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000aeb000-0x70)={[{0xffff, 0x9, 0x401, 0x3, 0x8001, 0xffff, 0x401, 0x7f, 0x100000001, 0x0, 0x28d0, 0x3, 0x8}, {0x1, 0x6, 0x17, 0xe42, 0x80000000, 0x1ff, 0xffffffff, 0x3, 0x88, 0x744280e6, 0x1, 0x8, 0x1}, {0x5, 0x5, 0x100, 0x3, 0x8, 0x6d7, 0x7, 0xfffffffffffffffa, 0x60f6, 0xffffffffffffffff, 0x5c9a, 0x200, 0x0}], 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = eventfd2(0x6, 0x80801)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_SET_INTX_MASK(r2, 0x4040aea4, &(0x7f0000aeb000)={0xc667, 0x2, 0x20, 0x4, 0x7})
r4 = eventfd2(0x3ff, 0x801)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f000036a000-0x20)={r4, 0xa1, 0x8, r3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000478000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000}, {0x0, 0x1, 0x200000000000, 0x0, 0x101, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbf, 0x0, 0x0, 0x2, 0x0, 0x717c8be1, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:45 executing program 7:
mmap(&(0x7f0000000000/0xaf2000)=nil, 0xaf2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x4, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000ae6000-0x20)={0x80000003, 0x0, 0x100000, 0x2000, &(0x7f00002cb000/0x2000)=nil})
mmap(&(0x7f0000af2000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f00000ca000+0x1b9)={0x74, 0x0, [0x1, 0xb9c, 0x6, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000766000-0x20)={0x107000, &(0x7f0000af3000)=0x0, 0x8000, r1, 0x0})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae8000-0x48)={0x70003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff000000]})
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00001c7000-0x400)={"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"})
mbind(&(0x7f00007e6000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000af4000)=0x10001, 0x100000000, 0x4)
r3 = eventfd2(0x0, 0x801)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x6, 0x10, 0xffffffffffffffff, 0x3)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000af3000)=0x10002)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x1)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000af5000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000af6000-0xc)={0x1, <r4=>r2, 0x1})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000352000-0x20)={r3, 0x4, 0x7b7, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00008ba000/0x18000)=nil, &(0x7f000029f000)=[@text32={0x20, &(0x7f0000af7000-0x38)="0f38f1650166ba6100b800000000ef0f205d3e0f07f30f1ae40f320f090f0096090000000f00d0b93b0b0000b804000000ba000000000f30", 0x38}], 0x1, 0x0, &(0x7f00007bc000)=[], 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00004b1000/0x18000)=nil, &(0x7f0000ae7000-0x18)=[@text32={0x20, &(0x7f0000aef000)="0f2107c4e17d2b210f32c4e151605b0e66ba4100b80f000000ef650f22950fc76ccf84f3260f011a66baf80cb82a839086ef66bafc0c66b8130066efead1b30000ca00", 0x43}], 0x1, 0x0, &(0x7f0000aea000)=[], 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000986000)={0x2000, &(0x7f0000af5000)=0x0, 0x1, r4, 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x1)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00002df000/0xe000)=nil, 0xe000, 0x40000000003, 0x50, r4, 0x0)
read$eventfd(r4, &(0x7f0000af5000)=0x0, 0x8)
ioctl$KVM_S390_UCAS_MAP(r4, 0x4018ae50, &(0x7f0000af4000)={0x3ff, 0x9, 0x7fff})
2017/08/11 22:10:45 executing program 6:
mmap(&(0x7f0000000000/0xae7000)=nil, 0xae7000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
[   45.609885] *** Guest State ***
[   45.624927] *** Guest State ***
2017/08/11 22:10:45 executing program 4:
[   45.624937] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
2017/08/11 22:10:45 executing program 4:
2017/08/11 22:10:45 executing program 1:
2017/08/11 22:10:45 executing program 4:
2017/08/11 22:10:45 executing program 4:
2017/08/11 22:10:45 executing program 1:
2017/08/11 22:10:45 executing program 4:
[   45.624944] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
2017/08/11 22:10:45 executing program 3:
[   45.624948] CR3 = 0x00000000fffbc000
[   45.624954] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.625096] RFLAGS=0x00000002         DR7 = 0x0000000000000400
2017/08/11 22:10:45 executing program 5:
2017/08/11 22:10:45 executing program 0:
[   45.625104] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   45.625112] CS:   sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000
[   45.625124] DS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   45.625134] SS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   45.625143] ES:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   45.625154] FS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   45.625164] GS:   sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000
[   45.625172] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.625183] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.625190] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   45.625200] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   45.625206] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   45.625212] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.625218] Interruptibility = 00000000  ActivityState = 00000000
[   45.625221] *** Host State ***
[   45.625227] RIP = 0xffffffff811b6777  RSP = 0xffff8801c7b1f4c8
[   45.625239] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.625247] FSBase=00007f8b91627700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   45.625253] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   45.625261] CR0=0000000080050033 CR3=00000001d8f93000 CR4=00000000001426e0
[   45.625270] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.625277] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.625280] *** Control State ***
[   45.625285] PinBased=0000003f CPUBased=b6a1edfe SecondaryExec=0000004b
[   45.625289] EntryControls=0000d1ff ExitControls=0023efff
[   45.625296] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   45.625301] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.625305] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.625315]         reason=80000021 qualification=0000000000000000
[   45.625319] IDTVectoring: info=00000000 errcode=00000000
[   45.625324] TSC Offset = 0xffffffe5efe66ac7
[   45.625328] TPR Threshold = 0x00
[   45.625334] EPT pointer = 0x00000001cd5c801e
[   45.650994] *** Guest State ***
[   45.651004] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   45.651032] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   45.651036] CR3 = 0x00000000fffbc000
[   45.651041] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.651047] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[   45.651056] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[   45.651064] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[   45.651075] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.651085] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.651094] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.651104] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.651113] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.651120] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.651130] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.651137] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[   45.651147] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   45.651153] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[   45.651159] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.651164] Interruptibility = 00000002  ActivityState = 00000000
[   45.651167] *** Host State ***
[   45.651174] RIP = 0xffffffff811b6777  RSP = 0xffff8801c93a74c8
[   45.651186] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.651193] FSBase=00007fa32162c700 GSBase=ffff8801dc000000 TRBase=ffff8801dc022cc0
[   45.651199] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   45.651207] CR0=0000000080050033 CR3=00000001ce03c000 CR4=00000000001426f0
[   45.651215] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.651221] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.651223] *** Control State ***
[   45.651228] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   45.651232] EntryControls=0000d1ff ExitControls=0023efff
[   45.651240] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   45.651245] VMEntry: intr_info=80000202 errcode=00000000 ilen=00000000
[   45.651249] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.651254]         reason=80000021 qualification=0000000000000000
[   45.651258] IDTVectoring: info=00000000 errcode=00000000
[   45.651261] TSC Offset = 0xffffffe5e95bdda3
[   45.651264] TPR Threshold = 0x00
[   45.651269] EPT pointer = 0x00000001a052501e
[   45.668276] *** Guest State ***
[   45.668285] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   45.668292] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   45.668296] CR3 = 0x00000000fffbc000
[   45.668310] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.668316] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[   45.668327] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[   45.668359] CS:   sel=0x0900, attr=0x0409b, limit=0x000fffff, base=0x0000000000009000
[   45.668370] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.668380] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.668391] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.668433] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.668443] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.668450] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.668460] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.668467] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[   45.668476] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   45.668482] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[   45.668488] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.668494] Interruptibility = 00000002  ActivityState = 00000000
[   45.668496] *** Host State ***
[   45.668503] RIP = 0xffffffff811b6777  RSP = 0xffff8801c93a74c8
[   45.668515] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.668522] FSBase=00007fa32162c700 GSBase=ffff8801dc000000 TRBase=ffff8801dc022cc0
[   45.668528] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   45.668537] CR0=0000000080050033 CR3=00000001ce03c000 CR4=00000000001426f0
[   45.668545] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.668551] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.668554] *** Control State ***
[   45.668559] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   45.668563] EntryControls=0000d1ff ExitControls=0023efff
[   45.668570] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   45.668575] VMEntry: intr_info=80000202 errcode=00000000 ilen=00000000
[   45.668580] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.668585]         reason=80000021 qualification=0000000000000000
[   45.668589] IDTVectoring: info=00000000 errcode=00000000
[   45.668593] TSC Offset = 0xffffffe5e95bdda3
[   45.668596] TPR Threshold = 0x00
[   45.668601] EPT pointer = 0x00000001a052501e
[   45.701409] *** Guest State ***
[   45.701418] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   45.701428] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   45.701452] CR3 = 0x00000000fffbc000
[   45.701457] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.701463] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[   45.701471] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[   45.701478] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[   45.701489] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.701498] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.701508] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.701516] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.701524] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.701529] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.701538] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.701544] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[   45.701553] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   45.701559] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[   45.701564] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.701569] Interruptibility = 00000000  ActivityState = 00000000
[   45.701572] *** Host State ***
[   45.701577] RIP = 0xffffffff811b6777  RSP = 0xffff8801ca44f4c8
[   45.701586] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.701603] FSBase=00007fd08953f700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   45.701610] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   45.701618] CR0=0000000080050033 CR3=00000001cc823000 CR4=00000000001426e0
[   45.701626] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.701631] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.701633] *** Control State ***
[   45.701637] PinBased=0000003f CPUBased=b699edfa SecondaryExec=0000004a
[   45.701640] EntryControls=0000d1ff ExitControls=0023efff
[   45.701646] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   45.701649] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.701652] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.701656]         reason=80000021 qualification=0000000000000000
[   45.701659] IDTVectoring: info=00000000 errcode=00000000
[   45.701662] TSC Offset = 0xffffffe5e8be109b
[   45.701665] EPT pointer = 0x00000001cf9c101e
[   45.709497] *** Guest State ***
[   45.709505] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   45.709513] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   45.709516] CR3 = 0x0000000000010002
[   45.709520] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.709526] RFLAGS=0x00010002         DR7 = 0x0000000000000400
[   45.709533] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[   45.709540] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[   45.709550] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.709560] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.709569] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.709578] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.709588] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   45.709595] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.709605] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.709612] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[   45.709622] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   45.709628] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[   45.709635] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.709640] Interruptibility = 00000000  ActivityState = 00000000
[   45.709643] *** Host State ***
[   45.709650] RIP = 0xffffffff811b6777  RSP = 0xffff8801cc16f4c8
[   45.709662] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.709669] FSBase=00007ff213531700 GSBase=ffff8801dc000000 TRBase=ffff8801dc022cc0
[   45.709675] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   45.709683] CR0=0000000080050033 CR3=00000001d526f000 CR4=00000000001426f0
[   45.709691] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.709697] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.709700] *** Control State ***
[   45.709706] PinBased=0000003f CPUBased=b699edfa SecondaryExec=0000004a
[   45.709710] EntryControls=0000d1ff ExitControls=0023efff
[   45.709717] ExceptionBitmap=0006004a PFECmask=00000000 PFECmatch=00000000
[   45.709722] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.709728] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.709733]         reason=80000021 qualification=0000000000000000
[   45.709737] IDTVectoring: info=00000000 errcode=00000000
[   45.709740] TSC Offset = 0xffffffe5e3338038
[   45.709745] EPT pointer = 0x00000001d091901e
[   45.773240] *** Guest State ***
[   45.773251] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[   45.773258] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   45.773262] CR3 = 0x00000000fffbc000
[   45.773267] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   45.773273] RFLAGS=0x00227702         DR7 = 0x0000000000000400
[   45.773282] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   45.773291] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773316] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773327] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773336] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773346] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773355] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   45.773362] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   45.773372] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   45.773378] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   45.773387] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   45.773394] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   45.773400] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   45.773405] Interruptibility = 00000000  ActivityState = 00000000
[   45.773408] *** Host State ***
[   45.773414] RIP = 0xffffffff811b6777  RSP = 0xffff8801cc79f4c8
[   45.773425] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   45.773431] FSBase=00007f3e648f0700 GSBase=ffff8801dc000000 TRBase=ffff8801dc022cc0
[   45.773437] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   45.773445] CR0=0000000080050033 CR3=00000001ce6c1000 CR4=00000000001426f0
[   45.773452] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   45.773458] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   45.773460] *** Control State ***
[   45.773464] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=0000004b
[   45.773467] EntryControls=0000d1ff ExitControls=0023efff
[   45.773474] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   45.773479] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.773483] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   45.773487]         reason=80000021 qualification=0000000000000000
[   45.773491] IDTVectoring: info=00000000 errcode=00000000
[   45.773495] TSC Offset = 0xffffffe5d6bfe19e
[   45.773498] TPR Threshold = 0x00
[   45.773502] EPT pointer = 0x00000001a0b1101e
[   47.317345] CR0: actual=0x0000000080000031, shadow=0x0000000060000011, gh_mask=fffffffffffffff7
[   47.326190] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   47.335033] CR3 = 0x00000000fffbc000
[   47.338747] RSP = 0x0000000000000f80  RIP = 0x0000000000000000
[   47.344714] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[   47.350702] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810
[   47.357368] CS:   sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000
[   47.365344] DS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   47.373402] SS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   47.381372] ES:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   47.389348] FS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   47.397330] GS:   sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000
[   47.405295] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   47.413311] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   47.421291] IDTR:                           limit=0x000001ff, base=0x0000000000003800
[   47.429267] TR:   sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000
[   47.437235] EFER =     0x0000000000000001  PAT = 0x0007040600070406
[   47.443643] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   47.451114] Interruptibility = 00000001  ActivityState = 00000000
[   47.457348] *** Host State ***
[   47.460544] RIP = 0xffffffff811b6777  RSP = 0xffff8801cbe074c8
[   47.466525] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   47.472929] FSBase=00007fa8651bd700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   47.480725] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   47.486611] CR0=0000000080050033 CR3=00000001d2cce000 CR4=00000000001426e0
[   47.493625] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   47.500286] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   47.506512] *** Control State ***
[   47.509971] PinBased=0000003f CPUBased=b6a1edfe SecondaryExec=0000004b
[   47.516634] EntryControls=0000d1ff ExitControls=0023efff
[   47.522368] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[   47.529300] VMEntry: intr_info=80000202 errcode=00000000 ilen=00000000
[   47.535958] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   47.542544]         reason=80000021 qualification=0000000000000000
[   47.548856] IDTVectoring: info=00000000 errcode=00000000
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 1:
mlock2(&(0x7f0000bdf000/0x4000)=nil, 0x4000, 0x1)
mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0x3, 0x2871, 0xffffffffffffffff, 0x0)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil)
mremap(&(0x7f000053c000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00000cd000/0x2000)=nil)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f000053d000-0xc)={0x0, <r0=>0xffffffffffffffff, 0x1})
madvise(&(0x7f00000cc000/0x4000)=nil, 0x4000, 0x4)
mlock2(&(0x7f00000cc000/0x2000)=nil, 0x2000, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f00000cd000)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f000053b000)={0x5006, 0x10000, 0x0})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x11, r0, 0x0)
mbind(&(0x7f00000ce000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000001000-0x8)=0x0, 0x9, 0x6)
2017/08/11 22:10:47 executing program 4:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 7:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000ae6000)=0x2)
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 7:
mmap(&(0x7f0000000000/0xc5b000)=nil, 0xc5b000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000aef000-0x4)=0x7)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000af0000-0x8)=0x5003)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x101)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000aec000)={"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"})
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f00003c3000)=0x1)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f000040a000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 4:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 5:
[   47.554304] TSC Offset = 0xffffffe5ef603420
[   47.558616] TPR Threshold = 0x00
[   47.561981] EPT pointer = 0x00000001a092801e
2017/08/11 22:10:47 executing program 1:
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 4:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 7:
2017/08/11 22:10:47 executing program 4:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x870, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:47 executing program 1:
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 1:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 7:
mmap(&(0x7f0000000000/0xaf5000)=nil, 0xaf5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000af3000-0x24)="000000000000000000000000000000000000000000000000000000000000000000000000")
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b8c4e3995c2708000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e96d266767f2a50f20d835080000000f228b58580f070f01b102000000", 0x64}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f000011a000)={0x1397, 0x8b, 0x0, 0x4, 0x8})
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000af3000-0x4)=0x80)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000747000)=0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000aef000)={0x7b, 0x0, [0x6, 0xffffffff, 0x9, 0x1000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000763000-0x10)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000033d000-0x8)={0x1, 0x0})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000af3000)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000af4000)={0x8097, 0x10001})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
2017/08/11 22:10:47 executing program 4:
mmap(&(0x7f0000000000/0xaf2000)=nil, 0xaf2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x4, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000ae6000-0x20)={0x3, 0x0, 0x100000, 0x2000, &(0x7f00002cb000/0x2000)=nil})
mmap(&(0x7f0000af2000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f00000ca000+0x1b9)={0x74, 0x0, [0x1, 0xb9c, 0x6, 0x6], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000766000-0x20)={0x107000, &(0x7f0000af3000)=0x0, 0x8000, r1, 0x0})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae8000-0x48)={0x70003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff000000]})
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00001c7000-0x400)={"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"})
mbind(&(0x7f00007e6000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000af4000)=0x14001, 0x100000000, 0x4)
r3 = eventfd2(0x0, 0x801)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x6, 0x10, 0xffffffffffffffff, 0x3)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000af3000)=0x10002)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x1)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000af5000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000af6000-0xc)={0x1, <r4=>r2, 0x1})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000352000-0x20)={r3, 0x4, 0x7b7, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00008ba000/0x18000)=nil, &(0x7f000029f000)=[@text32={0x20, &(0x7f0000af7000-0x38)="0f38f1650166ba6100b800000000ef0f205d3e0f07f30f1ae40f320f090f0096090000000f00d0b93b0b0000b804000000ba000000000f30", 0x38}], 0x1, 0x0, &(0x7f00007bc000)=[], 0x0)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f00004b1000/0x18000)=nil, &(0x7f0000ae7000-0x18)=[@text16={0x10, &(0x7f0000af8000-0x52)="670f059d66b8b3ca00000f23c00f21f86635030000000f23f80f300f00153c76672e660f74c4baf80c66b8646e618766efbafc0cb06aee66b8005000000f23c80f21f866350c0010000f23f8b814000f00d8", 0x52}], 0x1, 0x0, &(0x7f0000aea000)=[], 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x1)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r4, &(0x7f0000af5000)=0x0, 0x8)
ioctl$KVM_S390_UCAS_MAP(r4, 0x4018ae50, &(0x7f0000af4000)={0x3ff, 0x9, 0x7fff})
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 1:
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 1:
[   47.775573] kvm_hv_get_msr: 12 callbacks suppressed
[   47.780731] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008f
[   47.791531] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008e
[   47.800351] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008d
[   47.810421] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008c
[   47.823710] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008b
[   47.835990] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x4000008a
[   47.844275] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000089
[   47.852923] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000088
[   47.861336] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000087
2017/08/11 22:10:47 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000583000-0x8)={0x0, 0x2})
2017/08/11 22:10:47 executing program 3:
2017/08/11 22:10:47 executing program 5:
2017/08/11 22:10:47 executing program 0:
2017/08/11 22:10:47 executing program 2:
2017/08/11 22:10:47 executing program 1:
[   47.869367] kvm [3565]: vcpu0, guest rIP: 0x9135 Hyper-V unhandled rdmsr: 0x40000086
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_RUN(r6, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x30, 0xffffffffffffffff, 0x1)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f0000ae4000)=0x2)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f000000a000-0x8)={0xa, 0x9})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:48 executing program 4:
2017/08/11 22:10:48 executing program 2:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 5:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:48 executing program 1:
2017/08/11 22:10:48 executing program 7:
2017/08/11 22:10:48 executing program 3:
2017/08/11 22:10:48 executing program 0:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f000024d000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 3:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 4:
2017/08/11 22:10:49 executing program 1:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 0:
2017/08/11 22:10:49 executing program 5:
2017/08/11 22:10:49 executing program 2:
2017/08/11 22:10:49 executing program 7:
2017/08/11 22:10:49 executing program 4:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000a6f000/0x6000)=nil, 0x6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f000061e000-0xc)={0x2, <r1=>r0, 0x1})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00008e1000)=@pic={0x4c0, 0x1, 0x80000001, 0x5c, 0x282c, 0xdb9, 0x5, 0x7ff, 0x10000, 0x8000000000, 0x3, 0x9, 0x52, 0xd2, 0x4, 0x7})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f0000354000)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000ae3000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:49 executing program 1:
mmap(&(0x7f0000000000/0x28000)=nil, 0x28000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000017000)={{0x106000, 0xf001, 0x1f, 0x6, 0x5, 0x6000000000000000, 0x4, 0x8001, 0x1, 0x1f, 0x2, 0x6585099f, 0x0}, {0x3, 0xf000, 0x0, 0x9, 0x100000001, 0x2, 0x1f, 0x10000, 0x2, 0x8, 0x120000000, 0x2, 0x0}, {0x0, 0x6000, 0xe, 0x8, 0x4, 0x400, 0x800, 0x1f, 0x4, 0xfffffffffffffffc, 0x289, 0x2, 0x0}, {0x4000, 0x4, 0xe, 0x5, 0x20, 0x0, 0x3, 0x80000000, 0x4, 0x7, 0x1, 0xfffffffffffffffd, 0x0}, {0x4, 0x4000, 0xf, 0x3, 0x9f99, 0x1, 0x6d0, 0xfffffffffffffffe, 0x80, 0x9, 0x5, 0x400, 0x0}, {0x4000, 0x1f000, 0xb, 0x7fffffff, 0x3, 0x4, 0x7, 0x5, 0x100000001, 0x9, 0xff, 0x5, 0x0}, {0xd001, 0x5000, 0x0, 0x100000000, 0x101, 0x6, 0x200, 0x7, 0x3, 0xfffffffffffffc00, 0x5, 0x4, 0x0}, {0xf000, 0x3000, 0x0, 0x0, 0xf87b, 0x5, 0x8, 0xff, 0x4, 0x40, 0x7fffffff, 0x6, 0x0}, {0x1, 0x2, [0x0, 0x0, 0x0]}, {0x6000, 0x5000, [0x0, 0x0, 0x0]}, 0x4, 0x0, 0x0, 0x2000, 0x6, 0x8000, 0x2, [0x5, 0x100, 0x4, 0x8]})
syz_kvm_setup_cpu$x86(r0, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f0000024000-0x18)=[@text32={0x20, &(0x7f0000025000-0x64)="66b80d018ed00f21d3dfebc7442400de5f0000c7442402cc9e557bc7442406000000000f011c24c744240027610000c7442402dca79e83c7442406000000000f011c24b9a40b00000f32f2afb805000000b9fd1200000f01d90fc72d4000000066b809008ee0", 0x66}], 0x1, 0x0, &(0x7f0000023000)=[], 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000011000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34b582ec71cdec61, [0x4, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000022000-0x18)={0x1, 0x0, [{0x832, 0x0, 0xfffffffffffffffd}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000014000)="2f6465762f6b766d00", 0x8000, 0x0)
ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000008000)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:49 executing program 3:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000ae4000-0x14)={0xffffffffffffffff, 0x20, 0x9, 0x6, 0x0})
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f000008d000)=0x100000000000003)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r2, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f000031c000)={0xffff, 0x10000, 0xa1b6})
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}], 0x1)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r2, 0xc208ae62, &(0x7f0000a5e000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_GET_XSAVE(r3, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000784000)=0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r2, 0xae78, &(0x7f0000ae4000)=0x1)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000597000)={0x0, 0x10, 0x4, &(0x7f0000925000-0x8)=0x0})
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:49 executing program 0:
mmap(&(0x7f0000000000/0xaef000)=nil, 0xaef000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x2)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_S390_INTERRUPT_CPU(r2, 0x4010ae94, &(0x7f00007f2000-0x10)={0x10000, 0x8, 0x7})
r3 = eventfd2(0x5, 0x800)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r3, &(0x7f0000aef000)=0x4, 0x8)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f00004e2000-0x48)={0xe0000, 0x0, [0x1, 0x3b, 0x10000, 0x0, 0x8, 0x80000001, 0xbf4b, 0x1]})
2017/08/11 22:10:49 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 2:
mmap(&(0x7f0000000000/0xaf2000)=nil, 0xaf2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000af2000/0x1000)=nil, 0x1000, 0x3, 0x32, r0, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000acd000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b90401004066b8470066bad104b0a9ee0f3052c76dfef3ab66b86f000f00d099d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000af2000)=[], 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4068aea3, &(0x7f0000ae9000)={0x2007b, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000819000-0x10)={0x6, 0x8, 0x3, 0x4})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000af3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000af4000-0x78)={0x7, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
mmap(&(0x7f0000000000/0xe000)=nil, 0xe000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
madvise(&(0x7f0000004000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f00007cc000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f00004f1000/0x1000)=nil)
mremap(&(0x7f0000008000/0x2000)=nil, 0x2000, 0x3000, 0x3, &(0x7f0000009000/0x3000)=nil)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000006000)={0x7, <r4=>0xffffffffffffffff, 0x0})
ioctl$KVM_ASSIGN_SET_MSIX_NR(r4, 0x4008ae73, &(0x7f000000d000)={0x10001, 0x229cd9a4})
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000e000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r4, 0x4068aea3, &(0x7f000000f000-0x68)={0x81, 0x0, [0x100000000, 0x1, 0x8, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000000e000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CLOCK(r4, 0x8030ae7c, &(0x7f000000f000-0x30)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x2132, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f000036d000-0x40)={0x9b8d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:49 executing program 7:
mmap(&(0x7f0000000000/0xafe000)=nil, 0xafe000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x440, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000afb000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00009c3000-0x80)={0x3, 0x0, [{0x7, 0x1, 0x2, 0x800, 0x8, 0x9, 0x0, [0x0, 0x0, 0x0]}, {0xc0000001, 0x9, 0x1, 0x5, 0x9, 0x3, 0xffffffffffff7fff, [0x0, 0x0, 0x0]}, {0x8000000d, 0xffffffffffffffce, 0x5, 0x6ac, 0x1ff, 0x0, 0xffff, [0x0, 0x0, 0x0]}]})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000afc000-0xc)={0x7, <r3=>r2, 0x1})
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000afb000)={[{0x0, 0x8, 0x6, 0x3, 0x6, 0x7ff, 0x8, 0x9, 0x4, 0x8, 0x1, 0x401, 0x6}, {0x1, 0x0, 0x1, 0xa1, 0x9, 0x20, 0x8, 0x7ff, 0x0, 0x6, 0x100000000, 0x6, 0x7fff}, {0x7fffffff, 0x4, 0x4, 0x7, 0xff, 0xffffffffffff8001, 0x7fff, 0x200, 0x8, 0x4, 0x7f, 0xffffffff, 0x5}], 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000afb000)={0x40, 0x5, 0x1ff, 0x106})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000a3e000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000afc000)={0x2, 0x22})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000015000-0x1000)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000afc000)={0x6, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00002d3000/0x18000)=nil, &(0x7f0000add000)=[@text32={0x20, &(0x7f0000adf000-0x3c)="66ba200066ed0f0099d0330000300fe3c15044a2ea815cc5f57595d94d3e0f236eb8cc4ab08f6fececbafc0ced0f013f640f01caf26e36643e0f224566ba4040b800000000ef", 0x46}], 0x1, 0xf, &(0x7f0000ae9000)=[], 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f000095f000-0xc)={0x2, [0x100000000, 0xe0]})
mmap(&(0x7f0000afe000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f000063b000)={0x0, 0x3, 0xe81, &(0x7f0000afe000)=0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:49 executing program 1:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x2000002, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x9, 0x3cca})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00007c3000)={0x1, 0x0, [{0x0, 0x5, 0x7fff, 0x9, 0x8, 0x0}]})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000afb000-0x28)={0x400000000, 0x1000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000afb000)={0x400000000000000, 0xd000, 0xad9, 0x0, 0x20, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x4, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0x6, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x7}]})
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000045000)=@ioapic={0x1, 0x2, 0x2, 0x6, 0x0, [{0x1994f69b, 0x3, 0x0, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x8, 0x2db6, 0x1, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x6, 0x40, 0x10001, [0x0, 0x0, 0x0, 0x0], 0x100000000}, {0xfffffffffffffff9, 0x1, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x1000, 0x7fffffff, 0x8001, [0x0, 0x0, 0x0, 0x0], 0x899}, {0x2, 0x100, 0x100, [0x0, 0x0, 0x0, 0x0], 0xfffffffffffffff7}, {0x80, 0x5, 0x5, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x8000, 0xfffffffffffffff8, 0x7, [0x0, 0x0, 0x0, 0x0], 0xa}, {0xff, 0x6, 0x1, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0xff, 0x2, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x35b2, 0x400, 0x9, [0x0, 0x0, 0x0, 0x0], 0x1}, {0x9, 0x5, 0x9, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x4, 0x5, 0x29d7, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x0, 0x7fffffff, 0x7, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xffffffff7fffffff, 0x5, 0xfa3, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x5, 0x9, 0xfffffffeffffffff, [0x0, 0x0, 0x0, 0x0], 0x19c0000000000000}, {0xffffffffffffffff, 0x8, 0x5, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x9, 0xffffc00000000000, 0x2, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x8001, 0x1e, 0x4, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x3ff, 0x9, 0x100000000, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x6, 0x7bf, 0x5f1, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x800000000, 0x8001, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x6, 0x80, 0x93, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x5, 0x2, 0x7, [0x0, 0x0, 0x0, 0x0], 0x80}]})
mlock2(&(0x7f00003f7000/0x1000)=nil, 0x1000, 0x1)
mmap(&(0x7f0000afc000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f0000afc000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x20, 0x80000001, 0x2, 0x0, 0x14b98, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x4, 0x0})
mlock2(&(0x7f00007b0000/0x1000)=nil, 0x1000, 0x1)
2017/08/11 22:10:49 executing program 4:
mmap(&(0x7f0000000000/0xafa000)=nil, 0xafa000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000203000-0x9)="2f6465762f6b766d00", 0x80000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_UCAS_UNMAP(r4, 0x4018ae51, &(0x7f0000afb000-0x18)={0xffffffffffffffb2, 0xf424, 0x9})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000274000/0x18000)=nil, &(0x7f0000107000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595d2a1ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd253883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[@efer={0x2, 0xc00}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r5, 0x4008ae52, &(0x7f0000af7000)=0x9)
ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, &(0x7f0000af9000-0x80)={[0x10f000, 0x2, 0x100000, 0x10000], 0xfffffffffffffffd, 0xa9, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_MSRS(r5, 0xc008ae88, &(0x7f00005a0000-0x48)={0x4, 0x0, [{0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}, {0x0, 0x0, 0x0}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f0000017000-0x20)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_XCRS(r5, 0x4188aea7, &(0x7f0000896000-0x58)={0x5, 0x4, [{0x9, 0x0, 0x800000000}, {0x2, 0x0, 0x26b}, {0x4, 0x0, 0x7fffffff}, {0x7f, 0x0, 0x6}, {0x997, 0x0, 0xc7}]})
ioctl$KVM_S390_INTERRUPT_CPU(r5, 0x4010ae94, &(0x7f000074e000)={0x5, 0x7, 0x100000000007})
ioctl$KVM_GET_XSAVE(r5, 0x9000aea4, &(0x7f0000012000)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f0000af6000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c0137bc281d9f1a, [0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f0000010000-0x14)={0x10000000000000, 0x0, 0xfffffffffffffff8, 0x1, 0xf6})
munlock(&(0x7f000000a000/0x4000)=nil, 0x4000)
ioctl$KVM_GET_DIRTY_LOG(r3, 0x4010ae42, &(0x7f0000017000)={0x10201, 0x0, &(0x7f0000001000/0x2000)=nil})
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000af9000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000afb000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1ff)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f000025e000-0x14)={0x7, 0x3, 0xe39d, 0x1, 0x9b4b})
2017/08/11 22:10:49 executing program 0:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000ae3000)={0x2, <r2=>r0, 0x1})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000ae4000-0x10)={0x3ff, 0x2})
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f000008d000)=0x100000000000003)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, 0xffffffffffffffff, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x38)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae5000-0x8)=0x2)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}], 0x1)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r4, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x1)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000554000)={0x1fe, 0x3, 0xf002, 0x1000, &(0x7f0000170000/0x1000)=nil})
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000ae4000)={0x10, 0x1})
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f00002f1000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
[   49.819088] kvm [4026]: vcpu0, guest rIP: 0x9110 Hyper-V uhandled wrmsr: 0x4000008f data 0x4d1ba6600a9
2017/08/11 22:10:50 executing program 7:
mmap(&(0x7f0000000000/0x2a000)=nil, 0x2a000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000010000-0x8)={0x6bb7, 0x804})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000002a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000002b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f000002b000)={0xb0001, 0x0, [0x10000, 0xffffffff00000001, 0x0, 0x7, 0x2, 0x1000000000, 0x400, 0x1]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f000001b000-0x18)=[@textreal={0x8, &(0x7f000002a000)="0f38c80667c866b9830100000f323626660fd5f62e670f32ba400066b8d007000066ef66b93b0a00000f3236f20f110cd8c1666d66b9800000c00f326635001000000f30", 0x44}], 0x1, 0x10, &(0x7f000000a000-0x20)=[@cr4={0x1, 0x0}, @dstype0={0x6, 0x5}], 0x2)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000017000-0x68)={0x79, 0x0, [0x5, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:50 executing program 3:
mmap(&(0x7f0000000000/0xafa000)=nil, 0xafa000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f00007a1000-0x1004)={0x0, ""})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000274000/0x18000)=nil, &(0x7f0000adf000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595d2a1ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd253883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000af7000)={0x7fff, 0x2, 0x401})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000515000)={0x4, <r4=>r0, 0x1})
ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f00003e2000-0x138)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
mremap(&(0x7f0000294000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f00002da000/0x4000)=nil)
ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f0000a69000)=0x3)
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000afb000-0x400)={"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"})
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000af8000)={0xa3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_GET_LAPIC(r5, 0x8400ae8e, &(0x7f0000afa000-0x400)={"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"})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r5, 0x4004ae8b, &(0x7f0000afc000-0x14)={0x10, "3494b8b987ed89780fe3897eb3bdb3e5"})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f000079c000/0x18000)=nil, &(0x7f0000635000-0x18)=[@textreal={0x8, &(0x7f00004b0000)="baf80c66b88ad9018466efbafc0cedb800068ee866b9800000c00f326635000100000f300f01c9ba430066b86e60e0c766ef670f01cf9c660f6e9a00000fbc6800f0306201", 0x45}], 0x1, 0x74, &(0x7f0000afa000-0x20)=[@efer={0x3, 0x1000}, @efer={0x3, 0x9800}], 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
[   49.959841] kvm [4026]: vcpu0, guest rIP: 0x9110 Hyper-V uhandled wrmsr: 0x4000008f data 0x4d1ba6600a9
2017/08/11 22:10:50 executing program 1:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00003b4000-0x9)="2f6465762f6b766d00", 0x40, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae6000-0x20)={0x3, 0x0, 0x100000, 0x2000, &(0x7f00002cb000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000077000/0x18000)=nil, &(0x7f00009d5000-0x18)=[@text32={0x20, &(0x7f000064b000)="f36d670f004d1ec4c1f9e6c50f01cf0f06b8010000000f01c10f090f01d1d2580666660f388113", 0x27}], 0x1, 0x0, &(0x7f0000ae8000)=[@cr0={0x1, 0x40001}, @flags={0x4, 0x20000}], 0x2)
mmap(&(0x7f0000af4000/0x1000)=nil, 0x1000, 0x0, 0x50, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_REGS(r3, 0x8090ae81, &(0x7f0000af4000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00002f5000/0x18000)=nil, &(0x7f0000ae7000-0x18)=[@text64={0x40, &(0x7f0000ae7000-0x64)="54838c89bcaa94b4c64c902e4f5093e18859bc5129e376101bfe4c4deed68a37e2ec74f41c591ee04901e5261330d08f304123e8264a0385538f240ab98b6ad3c1118a991f748fb321e55ad1302cb9f1cfa1f54a9812a8dacf577d258c69ccf966b3df38", 0x64}], 0x1, 0x0, &(0x7f0000ad5000)=[@flags={0x4, 0x140}], 0x1)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000af6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_GET_DEBUGREGS(r3, 0x8080aea1, &(0x7f0000af2000)={[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000a36000)={0x2000, 0x118000, 0x0})
mmap(&(0x7f00004b6000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x2)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r5, 0x4008ae48, &(0x7f0000af7000-0x8)=0x110002)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4000000000)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_GET_REG_LIST(r6, 0xc008aeb0, &(0x7f0000af3000-0x20)={0x3, [0x2, 0xffffffffffffff80, 0x800]})
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x61010, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000077000/0x18000)=nil, &(0x7f0000af7000)=[@text32={0x20, &(0x7f000067f000-0x4e)="650f01cbb9910b00000f32c4e27d1e7a040fc71b66baf80cb830221e8def66bafc0cb8ab2d1cadefc4c1cf7c45c7f79761651fe0b9cd0b0000b807800000ba000000000f303e2e0f011a640f00d6", 0x4e}], 0x1, 0x4b, &(0x7f0000af6000)=[], 0x0)
ioctl$KVM_GET_MSR_INDEX_LIST(r1, 0xc004ae02, &(0x7f0000329000-0x10)={0x3, [0x3, 0x1, 0xfff]})
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f0000485000-0x8)=0x0)
mmap(&(0x7f0000509000/0x1000)=nil, 0x1000, 0x4, 0x2110, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000226000-0x68)={0x74, 0x0, [0x200000, 0x9, 0x80000001, 0x80000001], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00004d2000-0x148)={0x8, 0x0, [{0xd, 0x7, 0x5, 0x1000, 0x7, 0x164, 0x7, [0x0, 0x0, 0x0]}, {0x40000003, 0xfff, 0x6, 0xfffffffffffffff8, 0x2, 0xffffffffffffffe0, 0x1000020, [0x0, 0x0, 0x0]}, {0x8000001f, 0x0, 0x1, 0x4, 0x1, 0x6, 0x1, [0x0, 0x0, 0x0]}, {0xb, 0x10001, 0x0, 0x401, 0x0, 0x4, 0xffff, [0x0, 0x0, 0x0]}, {0xc0000019, 0xffffffff, 0x2, 0x5535, 0x2, 0x0, 0x2, [0x0, 0x0, 0x0]}, {0x80000007, 0x2, 0x4, 0x4ca004d5, 0xe400, 0x5b63, 0xdca, [0x0, 0x0, 0x0]}, {0x80000019, 0x9, 0x3, 0x5, 0xedc8, 0x4, 0x6, [0x0, 0x0, 0x0]}, {0x4, 0x100, 0x6, 0x6, 0x0, 0x4, 0x0, [0x0, 0x0, 0x0]}]})
ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0xc028ae92, &(0x7f0000538000-0x28)={0x8001, 0xfffffffffffffc01, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000519000)={0x100000000000000, 0x6000, 0xd, 0x6, 0x1c, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000aa1000-0x10)={0x1000, 0x100000, 0x0})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f0000092000)={0xffffffffffffffff, 0x18000, 0x0})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 2:
mmap(&(0x7f0000000000/0xaf4000)=nil, 0xaf4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000af2000)={0x7, 0x200, 0x8, 0x0, 0xc55, 0x1, 0x370d31e6, 0x1, 0x9, 0x9, 0x8, 0x7, 0x0, 0xb57, 0x8, 0x401, 0x200000000000, 0x6, 0x6})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000acd000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b90401004066b8470066bad104b0a9ee0f3052c76dfef3ab66b86f000f00d099d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000af2000)=[], 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000819000-0x10)={0x0, 0x0, 0x3, 0x4})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mlock2(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0)
madvise(&(0x7f0000004000/0x9000)=nil, 0x9000, 0x0)
madvise(&(0x7f000034e000/0x1000)=nil, 0x1000, 0x64)
mremap(&(0x7f00007cc000/0x3000)=nil, 0x3000, 0x1000, 0x0, &(0x7f00004f1000/0x1000)=nil)
mremap(&(0x7f0000008000/0x2000)=nil, 0x2000, 0x3000, 0x0, &(0x7f0000009000/0x3000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000af3000-0x20)={0x10002, 0x1, 0x0, 0x1000, &(0x7f000054b000/0x1000)=nil})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000006000)={0x7, <r3=>0xffffffffffffffff, 0x0})
ioctl$KVM_GET_CLOCK(r3, 0x8030ae7c, &(0x7f000000f000-0x30)={0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000005000/0x4000)=nil)
mprotect(&(0x7f00004aa000/0x1000)=nil, 0x1000, 0x8)
2017/08/11 22:10:50 executing program 4:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x7)="2f6465762f6b766d00", 0x18000, 0x0)
mmap(&(0x7f0000000000/0xafc000)=nil, 0xafc000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000afc000-0x98)={0x2, 0x0, [{0x0, 0x4, 0x0, 0x0, @msi={0x0, 0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @adapter={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}}]})
2017/08/11 22:10:50 executing program 7:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000165000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00004ee000-0x18)={0x0, 0x2, 0x2, &(0x7f0000ae9000)=0x0})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000424000-0x39)="ba43000f20c0b8aecbeecbdfd200000f230f21f86635800000a00f23c165640f019809000fbf56020f35defe0f060fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000aeb000)={0x5, 0x0, [{0xc0000001, 0x1, 0x3, 0x4, 0x7ff, 0x2, 0x82ea, [0x0, 0x0, 0x0]}, {0xc0000007, 0x400, 0x5, 0xaf, 0x8, 0x6, 0x9, [0x0, 0x0, 0x0]}, {0x4, 0x81, 0x0, 0x0, 0xffffffff, 0x9, 0x8, [0x0, 0x0, 0x0]}, {0x0, 0xfffffffffffffffe, 0x6, 0xfa75, 0x1dc, 0x3f, 0x6, [0x0, 0x0, 0x0]}, {0xc0000005, 0x7f, 0x1, 0x3f, 0xfffffffffffffff9, 0x3ff, 0x8, [0x0, 0x0, 0x0]}]})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118000, 0x5, 0x8000, 0xc611, 0x9, 0x8, 0x4000000000000000, 0x6, 0x5, 0x20, 0x82, 0x3}, {0x400, 0x2ab000, 0x500, 0x0, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x7fff, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x100000000, 0x3, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000aeb000-0xc)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:50 executing program 0:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x80000000007fe, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000039000-0x10)={0x954, 0x0, 0xfffffffc, 0x1563a85c6c8d69ab})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, <r2=>r1, 0x0})
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f0000ae7000)={"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"})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000ae8000)={0xfffffffffffffffe, 0xffffffffffffffff})
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f00000e8000)={0x400, 0x0, &(0x7f0000a26000)="4cb9db57fe359dcd85e16208f68c5ca7a2d34624fe20c9e841a17462fcd1cc4c2c5ecbb59fc1e313b4e05223352370cba366c8effd7dec9b86587940b5218954be1b5debcf1d69bd88ca2401957f4dc460638ebd79bb5b640a4c519081bc0ba9b196b689e5e179df14cbb5330e9ec9b5d77f741005f441cb2ef3b116a84d623060", &(0x7f00000ec000-0x56)="fd7135cd6431b3957bdda16fac3bf38eb69e128afed7b5b6ca64bee3bd1d39f1ebfa5eab1c2a64646f366498444c97b8ee1b4c790f225db3341d0573a99f0d94920ecd3ec2e7a962720c5bb1f757bdb009c43497580b", 0x81, 0x56, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f0000ae9000)={0xffffffff, 0x0})
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000ae8000)={0x7fffffff, 0x800})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000134000)=@ioapic={0x2, 0x5, 0x7f, 0x4, 0x0, [{0x5, 0x9, 0x2, [0x0, 0x0, 0x0, 0x0], 0xa1}, {0x4, 0x80000000, 0x40, [0x0, 0x0, 0x0, 0x0], 0x800}, {0x400000000000000, 0x1, 0x4, [0x0, 0x0, 0x0, 0x0], 0x6}, {0xfffffffffffffff9, 0x100000000, 0x8, [0x0, 0x0, 0x0, 0x0], 0x80000000}, {0x8, 0x1f, 0x4, [0x0, 0x0, 0x0, 0x0], 0x4cabdc08}, {0x9, 0x400, 0xfffffffffffffc01, [0x0, 0x0, 0x0, 0x0], 0x401}, {0xfff, 0x7a7, 0x0, [0x0, 0x0, 0x0, 0x0], 0xeb2}, {0x3ff, 0x446, 0x8, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x100000001, 0x4, 0xb89a, [0x0, 0x0, 0x0, 0x0], 0x80000000000000}, {0x6, 0x9, 0x6, [0x0, 0x0, 0x0, 0x0], 0xffff}, {0x80, 0x5, 0x10001, [0x0, 0x0, 0x0, 0x0], 0x67}, {0x40, 0x7, 0x400, [0x0, 0x0, 0x0, 0x0], 0x5c}, {0xab, 0x0, 0x1f, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x6, 0x4, 0x80000000, [0x0, 0x0, 0x0, 0x0], 0x80}, {0x7fffffff, 0xfffffffffffffffc, 0x9, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x401, 0x3, 0x4, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x12, 0x1, 0x3, [0x0, 0x0, 0x0, 0x0], 0x1}, {0x2, 0x4, 0x9b, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x20, 0x4, 0x40, [0x0, 0x0, 0x0, 0x0], 0x2}, {0x8, 0x8, 0x80, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x80, 0x9, 0x3, [0x0, 0x0, 0x0, 0x0], 0x243}, {0x4, 0x6, 0x4, [0x0, 0x0, 0x0, 0x0], 0x19}, {0x3f, 0x0, 0x48e, [0x0, 0x0, 0x0, 0x0], 0x80000000}, {0xb6, 0x2, 0x8e, [0x0, 0x0, 0x0, 0x0], 0x6}]})
2017/08/11 22:10:50 executing program 4:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, r0, 0x0)
ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000000)={0x4, 0x8})
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae4000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f000008d000)=0x100000000000003)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_GET_IRQCHIP(r4, 0xc208ae62, &(0x7f000098d000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x8, 0x32, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x10001, 0x0, 0x6ffd, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f00004a2000)={0x6, 0x0, [{0x5, 0x1, 0x0, 0x0, @msi={0xfffffffffffffffd, 0x9, 0x9}}, {0x1, 0x0, 0x0, 0x0, @sint={0x9, 0x1}}, {0x100, 0x3, 0x0, 0x0, @sint={0x20, 0x87}}, {0x1d, 0x6, 0x0, 0x0, @msi={0x6b1a508e, 0x1, 0x3}}, {0x9, 0x2, 0x0, 0x0, @adapter={0x5, 0x3f, 0x7f, 0x2, 0x92f8}}, {0x8000000000000000, 0x0, 0x0, 0x0, @irqchip={0xfffffffffffffff4, 0x1000}}]})
mmap(&(0x7f0000309000/0x400000)=nil, 0x400000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000ae4000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, r1, 0x0)
ioctl$KVM_IRQ_LINE(r4, 0x4008ae61, &(0x7f000000a000-0x8)={0x40006, 0x7ff})
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0x1000000000002, 0x20010, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000ae5000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f000081a000-0x8)={0x3, 0x7fffffff})
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:50 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000ae4000)=0x3)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 0:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x0, 0x3cca})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffe)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000afc000-0xf8)={0x6, 0x0, [{0xc0000001, 0x9567, 0x5, 0x9, 0x6, 0x3, 0x8, [0x0, 0x0, 0x0]}, {0x4, 0x7f, 0x3, 0x4, 0x2000000000000, 0x2c5, 0x401, [0x0, 0x0, 0x0]}, {0x80000007, 0x7, 0x2, 0xffff, 0x6, 0x24, 0x80000001, [0x0, 0x0, 0x0]}, {0x8000000f, 0x3, 0x0, 0x3a, 0x6, 0xa79c, 0x8, [0x0, 0x0, 0x0]}, {0xb, 0x2, 0x5, 0x8, 0x80, 0x8, 0x80, [0x0, 0x0, 0x0]}, {0x8000000f, 0x3, 0x0, 0x1, 0x401, 0x8aa, 0x0, [0x0, 0x0, 0x0]}]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x400000000002, 0x0, 0x0, 0x0, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x1, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x5d9a, 0x0, 0x20000, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
2017/08/11 22:10:50 executing program 7:
mmap(&(0x7f0000000000/0x2e000)=nil, 0x2e000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f000002b000)={0x3, 0x0, [{0x0, 0x7, 0x1, 0x3, 0x3, 0x40, 0x8, [0x0, 0x0, 0x0]}, {0xc0000000, 0x0, 0x0, 0x6, 0x8, 0x99, 0x6, [0x0, 0x0, 0x0]}, {0x80000019, 0x1, 0x1, 0x7, 0x7, 0x8, 0x3000, [0x0, 0x0, 0x0]}]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000002c000)="2f6465762f6b766d00", 0x200000022000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x0)
r4 = eventfd2(0x0, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000021000)={[{0x3, 0x1, 0xffffffffffffffff, 0xfff, 0x7, 0x4, 0x101, 0x4e, 0x0, 0x80, 0x8, 0x0, 0x80000000}, {0x100, 0xc4, 0x1c000000000000, 0x0, 0xe9ad, 0x6, 0x4, 0x3, 0x11e7989e, 0x2, 0x1ab800000000000, 0x10000, 0x80000001}, {0x8000, 0x7, 0xe45, 0x7, 0x800, 0x5aca5db1, 0x7fffffff, 0x3, 0xff, 0x6, 0x49c54089, 0xacb, 0x8}], 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_TSC_KHZ(r0, 0xaea3)
mmap(&(0x7f000002e000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f000002f000-0x10)={0x100000001, 0x7})
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000026000-0x20)={r3, 0x0, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
read$eventfd(r3, &(0x7f000002e000-0x8)=0x0, 0x8)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f000002d000)={r3, 0x2007, 0x2, r4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
write$eventfd(r3, &(0x7f000000f000-0x8)=0x401, 0x8)
2017/08/11 22:10:50 executing program 2:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aed000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f00006c5000-0x18)={0x0, 0x9f4afeb, 0x81, &(0x7f0000aed000)=0x0})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f000048a000)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x804000000003, 0x5810, r2, 0x0)
ioctl$KVM_GET_LAPIC(r2, 0x8400ae8e, &(0x7f000014a000)={"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"})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aee000)={0x8, 0x1, 0x3, 0x200})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000602000/0x18000)=nil, &(0x7f00002cf000)=[@text32={0x20, &(0x7f00008e1000-0x54)="f20f019901000000c4e1a176800d00000036f3360f300f0175c6c74424009b000000c744240200300000c7442406000000000f0114240fb7943b00680000650fc72ec4e295b811660f38818caf000000000f01cf", 0x54}], 0x1, 0x21, &(0x7f0000af0000-0x10)=[@efer={0x2, 0x1900}], 0x1)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000af0000)={"d04003a9db104c0349d5cb58ac7eb2bcb86348f2f1aee069d47bca5de970710253279ee82cd4f8cf0c0720203d2f46b8bea35f8cb195e73efb9592853aa6ec14a565d1315e915b10aefffc3865ec0dfca46ce4504c0e9a80914df3032f8dfd7991c1c600ccb38a573cf5c2a440dd00b2e17202bf226b3244308dd3f3dc2bb23db7a102b1129017235c885f67056dfe38cd0d8f021a6067fcc4e91740622290c316f94d886aca61f9a1e7463b51dbc35f1ffab100afbdc181ce05efd1b595fefbcff8824fe7ec7345cfe370f2a7f19fbb300336ef3ae44825e3061a27f2ac04e32e1f46e9c652dde6b872e60786ad9db218ffd3f54518b8b8c66f743dad8c048d9b9b71142615b1f7f4d26c5aa11de7dfd07494251fe8a6e8080be194309f48496276f54445075bb00db8367d3ed67094864a89eb6e9c2aff784b52bdb5245390bf4afae1f1d56b4c4ee8df589792cb6f39234b40dcb2afd3e2d6aba87d228d6bdc3ad0e1e7f2907a605ace46c2000000043a4e5b6b4da1ad7233f5849d7e5df7289a13a939be28abad18f6e694842bc361fe210a9495d8b7463e1684b11589d7be2a5e00a6e35667061eee80247abddd932a51aa591642e1ce3b391b70ec593c45c022b1809740bd315f97589b6c002def16fe0a766f8779f311aa79824244949c7c4d9384b5196c395c168bf7ef4f4198f354d2fabe0260f8067138de05ab37a234042c9bf18888e460d34a432ba4f28454ef78911a0d40aa0666caca46c82c7ab26197cecd37390dae7737639e46c4bb72e180a620b27ea540aa489589125e4078130c095c1e73de17dd89888a8761ab6e3885a4f286056adcfe82587ea79baf3ccd265129b5f9a9ae2e582630df45ce252cc18fc75c641f2ab8b8b63450a873eb227b30641cad3a925332b3e4371b9b8726c43f21fd2440409e318c8098d128322f7f9cf0a686b742767c71be122d44a37baa0f4064e8b5f9221e0d21f34e9e592a1e5ee46e7e0190e079f8709f3aaf4780441cb3db714b045373834ea9b8cef1c7109b8d92e4015378b0e7517b11a12c7e68f4ebb2de55519d79ae88b2653be67cbf9d5cb7a4483f41c314a165cb325435b3eb5d66578ed33188e0412673eb06a3d6650460dc231bf90ebc6a02f92fb0a29c7c17f21b4028d569e4688275e4025ba7d383066af18c4830f5323b2a5d136e5925c214e5e353558b158c1722fc1d825e9b56e97ad8d7369f9f935d770f4362ec0ff811be058a435ff86f7941bcc36acac9eb776a1c2ca7f68e27c8d7f2fdd690175a6395f98c5009570774f6669568189aaa6d4b0c209835c358f0d1f473730c314cc4895d62ebf49efe2aef671484629d9fbbc442833fe56c626d4089edb4966bff91e0b2f6157df85568c8d4c2f1ba03445e898a0700e7f7af110ab6f0fc5ca67345d92218d82ac570393a"})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x6, 0x1811, r0, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000aec000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000aed000)=0x7)
ioctl$KVM_SMI(r2, 0xaeb7)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 1:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x2000002, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000afb000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f000050f000)={0x9, 0x3cca})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f00007c3000)={0x1, 0x0, [{0x0, 0x5, 0x7fff, 0x9, 0x8, 0x0}]})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000afc000-0x14e)={0x7, 0x0, [{0x7, 0x1, 0x0, 0x0, @irqchip={0xe94, 0x40}}, {0x6, 0x3, 0x0, 0x0, @msi={0x0, 0x20, 0x1000}}, {0x5, 0x2, 0x0, 0x0, @adapter={0x6, 0x9, 0x8001, 0x0, 0x8}}, {0xfffffffffffffbae, 0x2, 0x0, 0x0, @sint={0x10001, 0x1b41}}, {0x8, 0x3, 0x0, 0x0, @irqchip={0xfffffffffffffffb, 0x7}}, {0x10001, 0x0, 0x0, 0x0, @msi={0x8, 0x8, 0x5}}, {0x1, 0x7, 0x0, 0x0, @sint={0x8, 0x7ff}}]})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc028ae92, &(0x7f0000afb000-0x28)={0x400000000, 0x1000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r2, 0x4010ae74, &(0x7f000023b000-0xc)={0x6, 0x7, 0x100})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f000057e000)={0x6, 0x0, [{0x80000019, 0x1200000000000000, 0x40, 0x72, 0xffff, 0x0}, {0x80000008, 0x8001, 0x3, 0x10001, 0x7fff, 0x0}, {0x40000001, 0x3, 0x2, 0x401, 0xfd9, 0x0}, {0x80000008, 0xffffffff, 0x1, 0xa9, 0x2bf9f6e3, 0x0}, {0x0, 0x5, 0x7, 0x3, 0x40, 0x0}, {0x80000001, 0xf03c, 0x2, 0x4, 0xffffffffffff0000, 0x0}]})
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
[   50.328567] kvm: apic: phys broadcast and lowest prio
2017/08/11 22:10:50 executing program 3:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x80000000007fe, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, r1, 0x0})
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000ae7000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
[   50.380903] kvm: apic: phys broadcast and lowest prio
2017/08/11 22:10:50 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 0:
mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x2871, 0xffffffffffffffff, 0x0)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000816000/0x4000)=nil)
mmap(&(0x7f0000000000/0xb99000)=nil, 0xb99000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f000001f000)={0x1, 0xae14, [{0x0, 0x0, 0x0}]})
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f000000c000)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000002b000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000062e000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f000000c000)={0x2, 0x0, [{0x1, 0x0, 0x0, 0x4, 0x400, 0x0}, {0xa, 0xff9, 0x0, 0x0, 0x0, 0x0}]})
ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000300000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f000002c000-0x18)={0x1, 0x0, [{0x18e, 0x0, 0xbd992f9}]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005b8000/0x18000)=nil, &(0x7f0000a37000-0x18)=[@textreal={0x8, &(0x7f0000ae1000-0x2d)="66b822f908230f23c80f21f866350800c0000f23f866b8e10ce9300f23c80f21f866350400b0000f23f8653e0fc3050f01d9f3ac0f01cfb80d028ee8bad00466ed26660f01c966660f3a1650d800", 0x4e}], 0x1, 0x0, &(0x7f000018a000-0x20)=[@cr0={0x0, 0x0}, @efer={0x2, 0x100}], 0x2)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000f1000-0xc)={0x6, <r3=>r0, 0x1})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, r2, 0x0)
mbind(&(0x7f00000cc000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000001000-0x8)=0x380000000000000, 0x4, 0x2)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x1)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x3)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000f21000/0x18000)=nil, &(0x7f0000002000-0x18)=[@text32={0x20, &(0x7f0000002000-0x5c)="c4c1a45ea200000000670f01cf66baf80cb8309c8887ef66bafc0cb8ff000000eff2af0f0fb43f05000000b7f20f35660fae730c660f388293256141970fc71ac744240000900000c74424025b000000c7442406000000000f011424", 0x5c}], 0x1, 0x20, &(0x7f0000001000-0x20)=[@cr4={0x1, 0x80}, @cstype3={0x5, 0xe}], 0x2)
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000000000)={0x2000000000000000, 0x6000, 0x0, 0x4, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000144000+0x119)={0x1, [0xb58]})
munlock(&(0x7f00000cf000/0x1000)=nil, 0x1000)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000130000-0x14)={0xfffffffffffffff7, 0x7fff, 0x5, 0x2, 0x8})
mremap(&(0x7f000053c000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00000cd000/0x2000)=nil)
ioctl$KVM_GET_TSC_KHZ(r3, 0xaea3)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f000031f000)={0x6000, 0x0, 0x8, 0xfb, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000b99000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000099d000/0x3000)=nil, 0x3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000b99000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000b99000/0x1000)=nil, 0x1000, 0x300000e, 0x28050, r3, 0x0)
mmap(&(0x7f0000b99000/0x1000)=nil, 0x1000, 0x2000000, 0x3e, 0xffffffffffffffff, 0x4)
mmap(&(0x7f0000b9a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000963000/0x4000)=nil, 0x4000, 0x3, 0x10, r0, 0x40000000)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000b9b000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
[   50.448504] irq bypass consumer (token ffff8801dbd6dc00) registration fails: -16
2017/08/11 22:10:50 executing program 4:
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae8000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f00006bb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000620000/0x1000)=nil, 0x1000, 0x3, 0x10, r0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000af1000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00007fa000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x9, 0x7, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000320000-0x1c)={0x80000000, 0x1ff, 0x10001, 0x0, 0x9, 0x2, 0x80000001, 0xa863, 0x4, 0x6, 0x0, 0x8000, 0x0, 0x10001, 0x0, 0x1ff, 0x5, 0x2090, 0x3})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000adf000)="b904010040b87c004000ba000000000f300fc76d07f3ab66b86f000f00d00f20e0d3ea0000280f22e066baf80cb9800000c00f32351410000f30ef66bafc0c66ed6767266767f2a50fc79f57000000650f070f01b102000000", 0x59}], 0x1, 0x0, &(0x7f0000ae6000)=[], 0x0)
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000ae3000-0x68)={0x7b, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00009d4000-0x4)=0x100000004)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0xffffffffffffffff, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 3:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00002bd000)={0x4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000088e000/0x18000)=nil, &(0x7f0000ae0000-0x13)=[@textreal={0x8, &(0x7f0000aed000-0x4f)="0f7fa5e2600f49fd2e0fc79d0b8066ffab0100baf80c66b82050978266efbafc0ced66b8000000800f23d00f21f86635300000030f23f80f32baf80c66b8a1dfb28266efbafc0cec0f03c10f01730e", 0x4f}], 0x1, 0x20, &(0x7f0000adf000)=[], 0x0)
r3 = eventfd2(0x0, 0x800)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r3, &(0x7f0000aec000)=0x0, 0x8)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000aea000-0x18)={0x0, 0x0, []})
eventfd2(0x6, 0x800)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
eventfd2(0x5, 0x800)
ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc028ae92, &(0x7f0000aee000-0x28)={0x9, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = eventfd2(0x8001, 0x0)
r6 = eventfd2(0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, &(0x7f0000071000-0x50)={0x4c, "1c4c820efa6b7414d1451725b70130486bbb62b52d1988fed8d4e07f6759f6f8bb9b7bd91f07536afca166954696c90af92f61c54c15daa13f1877ec029bc190d2f351321a498a14db24be40"})
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0xfffffffffffffffa)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000aee000-0xf1)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00005e5000-0x20)={r5, 0x3, 0x2, r6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f00009bf000-0x8)=0x4000)
read$eventfd(r6, &(0x7f0000782000-0x8)=0x0, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 2:
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000aef000-0x4)=0x7)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b86f000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00008d1000-0x8)=0x4fff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000aec000)={"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"})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xc59000)=nil, 0xc59000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
munmap(&(0x7f000064f000/0x3000)=nil, 0x3000)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = eventfd2(0x0, 0x0)
mmap(&(0x7f0000996000/0x3000)=nil, 0x3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000c5a000-0xc)={0x3, r4, 0x1})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r5, &(0x7f000043e000)=0x0, 0x8)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000c5a000)=@ioapic={0x2, 0x10000, 0x200, 0x3caf5cbe, 0x0, [{0x1f, 0x63, 0x800, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x4, 0x1ff, 0xc67, [0x0, 0x0, 0x0, 0x0], 0x101}, {0x9, 0x9, 0x10000, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x10001, 0x3, 0x2, [0x0, 0x0, 0x0, 0x0], 0x4}, {0xfffffffffffffff9, 0x9, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1f}, {0x6, 0x100, 0x7, [0x0, 0x0, 0x0, 0x0], 0xc3d6}, {0x100, 0x7f, 0x2, [0x0, 0x0, 0x0, 0x0], 0x10000}, {0x200, 0x1, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1eebd052}, {0x800, 0x1, 0x9, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x401, 0x8, 0x101, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x20, 0x40, 0x7, [0x0, 0x0, 0x0, 0x0], 0x667114e8}, {0x6, 0x4, 0x7, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xa20, 0x1ff, 0x8, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x2, 0x8001, 0x7, [0x0, 0x0, 0x0, 0x0], 0x1000}, {0x4, 0x4, 0x100000000, [0x0, 0x0, 0x0, 0x0], 0x1c}, {0x4, 0xfffffffffffffff7, 0x5, [0x0, 0x0, 0x0, 0x0], 0xffffffff}, {0x6, 0x7, 0x7, [0x0, 0x0, 0x0, 0x0], 0x5}, {0x8, 0x9, 0x0, [0x0, 0x0, 0x0, 0x0], 0x94}, {0x7ff, 0x8000, 0xffffffff, [0x0, 0x0, 0x0, 0x0], 0xf3b}, {0x3, 0x8, 0xffffffff, [0x0, 0x0, 0x0, 0x0], 0x15}, {0x8, 0x1f, 0x1, [0x0, 0x0, 0x0, 0x0], 0xfffffffffffff000}, {0x80000001, 0xfffffffffffffffb, 0x9, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x7f, 0xfff, 0xc1, [0x0, 0x0, 0x0, 0x0], 0x1c4e}, {0x10000, 0x100000001, 0x40, [0x0, 0x0, 0x0, 0x0], 0x1}]})
write$eventfd(r5, &(0x7f0000c57000)=0xe318, 0x8)
ioctl$KVM_X86_SETUP_MCE(r4, 0x4008ae9c, &(0x7f00005b3000-0x4)={0x6, 0x4, 0x81, 0x0})
mremap(&(0x7f000020f000/0x4000)=nil, 0x4000, 0x4000, 0x2, &(0x7f0000b84000/0x4000)=nil)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000c5b000-0x70)={[{0x8, 0x1, 0x1, 0x4, 0xe38, 0x1, 0x5, 0x9, 0x40, 0x0, 0x9, 0x9, 0x7}, {0x5, 0x5, 0x8000, 0x6, 0x7f, 0x1000, 0x20, 0xcde9, 0x8000, 0x100000001, 0x3, 0x71, 0x4c48}, {0x7f, 0x6, 0x0, 0x88, 0x7f, 0x4, 0x60, 0x10000, 0x9, 0x5, 0x7, 0x1, 0x80}], 0xdf, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:50 executing program 7:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x2)
mmap(&(0x7f00000b4000/0x3000)=nil, 0x3000, 0x200002, 0x35, r0, 0x1)
mmap(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x3, 0x8972, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe000, 0x0, &(0x7f0000b18000/0xe000)=nil)
mmap(&(0x7f0000b1a000/0x3000)=nil, 0x3000, 0x3, 0x10010, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000001000-0x10)={0x5, 0x6000})
mmap(&(0x7f0000ae0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000)="2f6465762f6b766d00", 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00008f9000-0x70)={[{0xfffffffffffffff8, 0x2b2, 0x3, 0x9, 0xa00000, 0x10000, 0x8, 0x9, 0x95, 0x5, 0x3, 0x3, 0x7}, {0x800, 0x80000001, 0xf74f, 0xb5, 0x4ad, 0x8, 0x81, 0x2, 0x4, 0x1, 0x9, 0xffff, 0x80}, {0x2, 0x80000001, 0x6, 0x800000000, 0x5, 0x4, 0x7, 0x5, 0x5, 0xc65e, 0x8, 0xefa, 0x3}], 0x10000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x6e5)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f00004a3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000ae1000-0x64)="ccbc354571d0c4e2f9b7b2867dc286dbb1cdfb335216eb5c1d3040394a381d7833fdaf218e9a220295084ba09751326d3cdd944cf0e3cb2c33bc59b60301e86d30787c52b3acc959a2df10c9147278779a3b0f5242384b40baabcf1e1a7d1c76515f6055c8f13bca42", 0x69}], 0x1, 0x0, &(0x7f0000ae0000)=[], 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000000)={0x8, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000ae0000/0x1000)=nil, 0x1000, 0xc, 0x200000000000032, 0xffffffffffffffff, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000663000)={0x0, 0x0, &(0x7f0000814000/0x4000)=nil})
mmap(&(0x7f0000b20000/0x3000)=nil, 0x3000, 0x2, 0x33, r2, 0x0)
ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f0000ae1000)={0x3, [0x1, 0xfffffffffffffffe, 0x10001]})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae1000-0x20)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000adb000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r2, r5, &(0x7f00009cb000/0x18000)=nil, &(0x7f0000ae1000)=[@text32={0x20, &(0x7f000039c000)="c4e27d34e766b81e000f00d0c4e2d9dd9ec84332be66b838010f00d0c4c2099c611b0f01d1b96f0800000f3209ebb95c0a00000f32c4e1f1f3d5", 0x3a}], 0x1, 0x4, &(0x7f0000ae2000)=[@flags={0x3, 0x2200}, @cr4={0x1, 0x200}], 0x2)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f000029d000/0x18000)=nil, &(0x7f0000001000)=[@text16={0x10, &(0x7f0000ae1000-0x5b)="66b8000000000f23c00f21f86635020009000f23f8baf80c66b86c0f718166efbafc0c66b82ad6555766efba4200ed650f01d166b9ec0900000f32baf80c66b80d1c758e66efbafc0cec670f01d10f07b89c000f00d864660fd601", 0x5b}], 0x1, 0x11, &(0x7f0000001000)=[], 0x0)
mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000003000-0x80)={[0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 1:
mmap(&(0x7f0000000000/0xaf8000)=nil, 0xaf8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aeb000)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000af8000)={0x0, <r1=>0xffffffffffffffff, 0x1})
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000683000-0x18)={0x0, 0x6, 0x0, &(0x7f0000af9000-0x8)=0x0})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r2, 0xc048ae65, &(0x7f0000645000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
mmap(&(0x7f0000af8000/0x1000)=nil, 0x1000, 0x2000008, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000013a000/0x2000)=nil, 0x2000, 0x2, 0x3e, 0xffffffffffffffff, 0x1)
mmap(&(0x7f0000676000/0x2000)=nil, 0x2000, 0x1, 0x72, r1, 0x0)
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r1, &(0x7f0000afa000-0x8)=0xffffffff80000001, 0x8)
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000562000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x3a, r1, 0x0)
mmap(&(0x7f0000888000/0x1000)=nil, 0x1000, 0x3, 0x1000000000032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f00004ca000/0x4000)=nil, 0x4000, 0x3, 0x3c, r2, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f0000afb000-0x48)={0xf0001, 0x0, [0x4000000000000067, 0x10000000001f, 0x80000002, 0x5, 0x0, 0x9, 0x6, 0x101]})
mmap(&(0x7f0000af9000/0x1000)=nil, 0x1000, 0x3, 0x32, r1, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000af8000)={0x73, 0x100000001, 0x1, 0x0, 0x4, 0x337, 0x6, 0x8, 0x0, 0x8, 0x40, 0x2, 0x0, 0x0, 0x3, 0x81, 0x5, 0x8, 0x1})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae7000-0x20)={0x0, 0x2, 0x0, 0x2000, &(0x7f00005b3000/0x2000)=nil})
mmap(&(0x7f00009d3000/0x4000)=nil, 0x4000, 0xc, 0x30, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000165000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aab000-0x10)={0x4, 0x3, 0x3, 0x6})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00004ee000-0x18)={0x0, 0x2, 0x2, &(0x7f0000ae9000)=0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000aec000-0x70)={[{0x8, 0x100, 0x3ff, 0xfffffffffffffffe, 0x90, 0x2, 0x2, 0x8, 0x0, 0x2, 0x3, 0x2c4, 0x200}, {0xfffffffffffffffb, 0xff, 0x6, 0x8, 0x4, 0x1017ea99, 0x4, 0x4, 0xffffffff00000000, 0x0, 0x7, 0x3, 0x80}, {0x6, 0x7, 0x65, 0x1, 0x0, 0x9, 0x3, 0x66a, 0x3, 0xffffffffffffffff, 0x101, 0x3a16, 0x7}], 0xfffffffffffff800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000424000-0x39)="ba43000f20c0b8aecbeecbdfd200000f230f21f86635800000a00f23c165640f019809000fbf56020f35defe0f060fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118000, 0x5, 0x8000, 0xc611, 0x9, 0x8, 0x4000000000000000, 0x6, 0x5, 0x20, 0x82, 0x3}, {0x400, 0x2ab000, 0x500, 0x0, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x7fff, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x100000000, 0x3, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000aed000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000aed000)={0x9d2, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000aeb000-0xc)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:50 executing program 4:
mmap(&(0x7f0000000000/0x2f000)=nil, 0x2f000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000002c000)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
r3 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000026000-0x20)={r2, 0x0, 0x0, r3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000002f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000012000)={0x79, 0x0, [0x0, 0x6, 0x8000, 0x8], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
read$eventfd(r2, &(0x7f000002f000)=0x0, 0x8)
read$eventfd(r2, &(0x7f000002e000-0x8)=0x0, 0x8)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f000002d000)={r2, 0x2007, 0x0, r3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
write$eventfd(r2, &(0x7f000000f000-0x8)=0x401, 0x8)
2017/08/11 22:10:50 executing program 5:
mmap(&(0x7f0000000000/0xaf1000)=nil, 0xaf1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 2:
mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x2871, 0xffffffffffffffff, 0x0)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000816000/0x4000)=nil)
mmap(&(0x7f0000000000/0xb99000)=nil, 0xb99000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f000001f000)={0x1, 0xae16, [{0x0, 0x0, 0x0}]})
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f000000c000)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000002b000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f00006cd000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f000000c000)={0x2, 0x0, [{0x1, 0x0, 0x0, 0x0, 0x0, 0x0}, {0xa, 0xff9, 0x0, 0x0, 0x0, 0x0}]})
ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000300000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f000002c000-0x18)={0x1, 0x0, [{0x18e, 0x0, 0xbd992f9}]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005b8000/0x18000)=nil, &(0x7f0000a37000-0x18)=[@textreal={0x8, &(0x7f0000ae1000-0x2d)="66b822f908230f23c80f21f866350800c0000f23f866b8e10ce9300f23c80f21f866350400b0000f23f8653e0fc3050f01d9f3ac0f01cfb80d028ee8bad00466ed26660f01c966660f3a1650d800", 0x4e}], 0x1, 0x0, &(0x7f000018a000-0x20)=[@cr0={0x0, 0x0}, @efer={0x2, 0x100}], 0x2)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000cf000)={0x2, <r3=>0xffffffffffffffff, 0xfffffffffffffffd})
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00000cc000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000001000-0x8)=0x380000000000000, 0x4, 0x2)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x1)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000f21000/0x18000)=nil, &(0x7f0000002000-0x18)=[@text32={0x20, &(0x7f0000002000-0x5c)="c4c1a45ea200000000670f01cf66baf80cb8309c8887ef66bafc0cb8ff000000eff2af0f0fb43f05000000b7f20f35660fae730c660f388293256141970fc71ac744240000900000c74424025b000000c7442406000000000f011424", 0x5c}], 0x1, 0x20, &(0x7f0000001000-0x20)=[@cr4={0x1, 0x80}, @cstype3={0x5, 0xe}], 0x2)
ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000000000)={0x2000000000000000, 0x6000, 0x0, 0x4, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000001000)={0x5, [0x8f, 0x4, 0x82415a6, 0x1, 0x8001]})
munlock(&(0x7f00000cf000/0x1000)=nil, 0x1000)
ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000b9a000-0x14)={0xfffffffffffffff7, 0x7fff, 0x5, 0x4, 0x8})
ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000547000-0x8)=0x100)
mremap(&(0x7f000053c000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00000cd000/0x2000)=nil)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f000010d000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 1:
mmap(&(0x7f0000000000/0xb9b000)=nil, 0xb9b000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000816000/0x4000)=nil)
ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, &(0x7f000001f000)={0x1, 0xae14, [{0x0, 0x0, 0x0}]})
ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f000000c000)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000002b000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000062e000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000b9b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f000000c000)={0x3, 0x0, [{0x80000008, 0x0, 0x6, 0x0, 0x9, 0x0}, {0xd, 0x40, 0x8, 0x7, 0x4000000928, 0x0}, {0x280000001, 0x7fff, 0xffffffff00000000, 0x4, 0xc8437bd, 0x0}]})
ioctl$KVM_GET_REGS(r2, 0x8090ae81, &(0x7f0000300000-0x90)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f000002c000-0x18)={0x1, 0x0, [{0x18e, 0x0, 0xbd992f9}]})
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f00007a6000-0x8)={0x8000, 0x4})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005b8000/0x18000)=nil, &(0x7f0000a37000-0x18)=[@textreal={0x8, &(0x7f0000ae1000-0x2d)="66b822f908230f23c80f21f866350800c0000f23f866b8e10ce9300f23c80f21f866350400b0000f23f8653e0fc3050f01d9f3ac0f01cfb80d028ee8bad00466ed26660f01c966660f3a1650d800", 0x4e}], 0x1, 0x0, &(0x7f000018a000-0x20)=[@cr0={0x0, 0x0}, @efer={0x2, 0x100}], 0x2)
mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil)
mmap(&(0x7f0000b9b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000b9b000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000cf000)={0x0, <r3=>0xffffffffffffffff, 0xfffffffffffffffd})
mbind(&(0x7f00000cc000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000660000-0x8)=0x380000000000000, 0xfffffffdffffffff, 0x2)
ioctl$KVM_SET_TSC_KHZ(r3, 0xaea2, 0x0)
syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000f21000/0x18000)=nil, &(0x7f0000002000-0x18)=[@text32={0x20, &(0x7f0000002000-0x5c)="c4c1a45ea200000000670f01cf66baf80cb8309c8887ef66bafc0cb8ff000000eff2af0f0fb43f05000000b7f20f35660fae730c660f388293256141970fc71ac744240000900000c74424025b000000c7442406000000000f011424", 0x5c}], 0x1, 0x20, &(0x7f0000001000-0x20)=[@cr4={0x1, 0x80}, @cstype3={0x5, 0xe}], 0x2)
munlock(&(0x7f00000cf000/0x1000)=nil, 0x1000)
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 3:
mmap(&(0x7f0000000000/0x28000)=nil, 0x28000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000013000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000002000)={0x1000, "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"})
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x6)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead)
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r3, 0x4004ae8b, &(0x7f0000029000-0xf0)={0xe9, "47cf76a325f1cebd290297e39a7c8d8fd70e45957266a814bb026391e4905fb317f76eead21d6a3495f5802132a6a721d2cba3ef4e715bdea1ad72931f783f3a43eac4ca594ec1fe4302ff8189887ba8d3f1040a81835bb3a0c9c5d6cc66e613e2d6f974a2d2bfb96d79e0d309af201d97bf8034d21b143ce8738e64cd52679b125e90276a0534bc29ba4c0ea75ad512d1c60358f70f60b4956dca2508961c31a8dc9236a03a2539c7ede41b4d4e5060d1f42ab1b661e578938b2d0bf229d37b76da7a14da5b6e111787733cfeaef632a3ea10c253032958953702303b87c48bb8c742a5639cfb615c"})
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000026000)={0x1f, 0x70d9, 0x3, 0x0, 0x1, 0x200, 0x8, 0x800, 0x4, 0xffffffffffffffff, 0x3, 0x5f5, 0x0, 0x0, 0x4, 0x4, 0x9, 0x8, 0x4})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000017000)={{0x106000, 0xf001, 0x1f, 0x6, 0x5, 0x6000000000000000, 0x4, 0x8001, 0x1, 0x1f, 0x2, 0x6585099f, 0x0}, {0x3, 0xf000, 0x0, 0x9, 0x100000001, 0x2, 0x1f, 0x10000, 0x2, 0x8, 0x120000000, 0x2, 0x0}, {0x0, 0x6000, 0xe, 0x8, 0x4, 0x400, 0x800, 0x1f, 0x4, 0xfffffffffffffffc, 0x289, 0x2, 0x0}, {0x4000, 0x4, 0xe, 0x5, 0x20, 0x0, 0x3, 0x80000000, 0x4, 0x7, 0x1, 0xfffffffffffffffd, 0x0}, {0x4, 0x4000, 0xf, 0x3, 0x9f99, 0x1, 0x6d0, 0xfffffffffffffffe, 0x80, 0x9, 0x5, 0x400, 0x0}, {0x4000, 0x1f000, 0xb, 0x7fffffff, 0x3, 0x4, 0x7, 0x5, 0x100000001, 0x9, 0xff, 0x5, 0x0}, {0xd001, 0x5000, 0x0, 0x100000000, 0x101, 0x6, 0x200, 0x7, 0x3, 0xfffffffffffffc00, 0x5, 0x4, 0x0}, {0xf000, 0x3000, 0x0, 0x0, 0xf87b, 0x5, 0x8, 0xff, 0x4, 0x40, 0x7fffffff, 0x6, 0x0}, {0x1, 0x2, [0x0, 0x0, 0x0]}, {0x6000, 0x5000, [0x0, 0x0, 0x0]}, 0x4, 0x0, 0x0, 0x2000, 0x6, 0x8000, 0x2, [0x5, 0x100, 0x4, 0x8]})
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000000f000/0x18000)=nil, &(0x7f0000029000-0x18)=[@text16={0x10, &(0x7f000000d000)="0f06ba4200ec66b8e90000000f23d80f21f86635000000400f23f866b8008000000f23d00f21f866352000000d0f23f86766c74424002f9f9ae46766c7442402480000006766c744240600000000670f011c240fc76a2a66b98508000066b80078000066ba000000000f300f07b861000f00d866b9800000c00f326635008000000f30", 0x83}], 0x1, 0x37, &(0x7f0000009000-0x20)=[@cr0={0x0, 0x40040001}, @dstype3={0x7, 0x1}], 0x2)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000002000/0x18000)=nil, &(0x7f0000024000-0x18)=[@text32={0x20, &(0x7f0000025000-0x64)="66b80d018ed00f21d3dfebc7442400de5f0000c7442402cc9e557bc7442406000000000f011c24c744240027610000c7442402dca79e83c7442406000000000f011c24b9a40b00000f32f2afb805000000b9fd1200000f01d90fc72d4000000066b809008ee0", 0x66}], 0x1, 0x0, &(0x7f0000023000)=[], 0x0)
mmap(&(0x7f0000029000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f000002a000-0x1c)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000011000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34b582ec71cdec61, [0x4, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000015000)={0x0, 0x0, []})
ioctl$KVM_GET_LAPIC(r3, 0x8400ae8e, &(0x7f0000004000-0x400)={"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"})
2017/08/11 22:10:50 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000165000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aab000-0x10)={0x4, 0x3, 0x3, 0x6})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00004ee000-0x18)={0x0, 0x2, 0x2, &(0x7f0000ae9000)=0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000aec000-0x70)={[{0x8, 0x100, 0x3ff, 0xfffffffffffffffe, 0x90, 0x2, 0x2, 0x8, 0x0, 0x2, 0x3, 0x2c4, 0x200}, {0xfffffffffffffffb, 0xff, 0x6, 0x8, 0x4, 0x1017ea99, 0x4, 0x4, 0xffffffff00000000, 0x0, 0x7, 0x3, 0x80}, {0x6, 0x7, 0x65, 0x1, 0x0, 0x9, 0x3, 0x66a, 0x3, 0xffffffffffffffff, 0x101, 0x3a16, 0x7}], 0xfffffffffffff800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000424000-0x39)="ba43000f20c0b8aecbeecbdfd200000f230f21f86635800000a00f23c165640f019809000fbf56020f35defe0f060fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118000, 0x5, 0x8000, 0xc611, 0x9, 0x8, 0x4000000000000000, 0x6, 0x5, 0x20, 0x82, 0x3}, {0x400, 0x2ab000, 0x500, 0x0, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x7fff, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x100000000, 0x3, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000aed000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000aed000)={0x9d2, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000aeb000-0xc)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
[   50.770872] *** Guest State ***
[   50.782724] *** Guest State ***
[   50.782734] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
2017/08/11 22:10:50 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:50 executing program 3:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae9000)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000aed000)={0x7, <r1=>r0, 0x1})
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x35, r1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f000009a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x20000000)
mmap(&(0x7f0000333000/0x1000)=nil, 0x1000, 0x5, 0x34, r3, 0xfffffffffffffffd)
ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000aef000-0x4)=0x7)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b86f000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f000071f000)=0xffffffffffffffff)
ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000aec000)={"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"})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xc59000)=nil, 0xc59000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
munmap(&(0x7f00000f3000/0x1000)=nil, 0x1000)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r8 = eventfd2(0x0, 0x0)
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00001d4000-0xc)={0x3, r7, 0x1})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x5, 0x810, r6, 0x0)
read$eventfd(r8, &(0x7f000043e000)=0x0, 0x8)
2017/08/11 22:10:50 executing program 4:
mmap(&(0x7f0000000000/0xae8000)=nil, 0xae8000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000007000)={0x6, [0x14bbf6c5, 0xff, 0x1, 0x2, 0x1, 0x9]})
mmap(&(0x7f0000ae8000/0x1000)=nil, 0x1000, 0x2000000, 0x10, r0, 0x4)
mmap(&(0x7f0000ae9000/0x1000)=nil, 0x1000, 0x3, 0x10, r0, 0x0)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = eventfd2(0x100000fff, 0x80003)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x33, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000aec000-0x40)={0x9000000000000000, 0x0, 0x8, 0x2, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
read$eventfd(r3, &(0x7f0000964000-0x8)=0x0, 0x8)
r4 = pkey_alloc(0x0, 0x3)
pkey_free(r4)
mbind(&(0x7f0000a7d000/0x2000)=nil, 0x2000, 0x4003, &(0x7f0000aeb000-0x8)=0x1, 0x7, 0x13)
r5 = eventfd2(0x7, 0x80000)
read$eventfd(r5, &(0x7f000044a000)=0x0, 0x8)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f000099d000-0x120)={0x7, 0x0, [{0x80000006, 0x9, 0x2, 0x9, 0xe669, 0xffffffff, 0x7f, [0x0, 0x0, 0x0]}, {0xb, 0x401, 0x0, 0xffffffff, 0x0, 0x909, 0x9, [0x0, 0x0, 0x0]}, {0x40000000, 0x4788, 0x5, 0x2, 0x7ff, 0x80000000, 0x2, [0x0, 0x0, 0x0]}, {0x40000007, 0xfff, 0x2, 0xffff, 0x2, 0x1ff, 0x3, [0x0, 0x0, 0x0]}, {0x40000001, 0x80000000, 0x2, 0x3, 0x4, 0x5c0a, 0xc7, [0x0, 0x0, 0x0]}, {0x80000019, 0x80, 0x1, 0x0, 0x1, 0x8, 0x9, [0x0, 0x0, 0x0]}, {0x0, 0x6, 0x4, 0x401, 0x3, 0x63f, 0x1, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000295000/0x4000)=nil, 0x4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000054b000/0x18000)=nil, &(0x7f0000828000-0x18)=[@text32={0x20, &(0x7f0000ae8000)="c4c17d2b461a66ba2000ec26670ff29f775466b804008ee8c744240000900000c7442402b0000000c7442406000000000f01142466baa000b87b0000000f23d00f21f835100000020f23f8f6774666baa000ed66ba42ecc4e27d2a85a2a50000", 0x60}], 0x1, 0x0, &(0x7f0000ae1000)=[@cr0={0x0, 0x10000}, @dstype0={0x6, 0x5}], 0x2)
mmap(&(0x7f0000aea000/0x1000)=nil, 0x1000, 0x2000007, 0x32, 0xffffffffffffffff, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000079f000)={0x101ff, 0x3, 0x10000, 0x1000, &(0x7f0000996000/0x1000)=nil})
madvise(&(0x7f0000711000/0x4000)=nil, 0x4000, 0x6)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000aeb000-0x10)={0x15004, 0x10000, 0x0})
r6 = eventfd2(0x9, 0x0)
read$eventfd(r5, &(0x7f0000120000-0x8)=0x0, 0x8)
write$eventfd(r6, &(0x7f0000789000)=0x7, 0x8)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000379000-0xc)={0x4, r2, 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae7000)={0x1, 0x0, [{0x11, 0x0, 0x5}]})
[   50.782742] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
2017/08/11 22:10:50 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
[   50.782746] CR3 = 0x00000000fffbc000
2017/08/11 22:10:51 executing program 1:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x6)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000001000-0xc)={0xfffffffffffffffd, <r2=>r0, 0xffffffffffffffff})
ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000ecd000)={0x7b, 0x0, [0x1, 0x4, 0x8, 0x3], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xaf5000)=nil, 0xaf5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000af6000-0x9)="2f6465762f6b766d00", 0x204040, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x0, &(0x7f00007f5000-0x20)={0x7fffffff, 0xa8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f00002ee000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text16={0x10, &(0x7f0000af5000-0x46)="66b9e00600000f3207440f20c0663502000000440f22c00fc72c660f71e70d66b9ff0900000f320f01cabaf80c66b83cdf128e66efbafc0c66ed67f20f5e40e73e26260f2817", 0x46}], 0x1, 0x0, &(0x7f0000af4000)=[], 0x0)
mmap(&(0x7f0000af6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
read$eventfd(r2, &(0x7f0000af6000)=0x0, 0x8)
mmap(&(0x7f0000000000/0x2c000)=nil, 0x2c000, 0x1, 0x3f, 0xffffffffffffffff, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = eventfd2(0x0, 0x0)
r9 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f0000026000-0x20)={r8, 0x0, 0x2, r9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000002c000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_DEV_IRQ(r7, 0x4040ae70, &(0x7f000002d000-0x10)={0x82e7, 0x1, 0xf35, 0x705})
r10 = eventfd2(0x0, 0x0)
r11 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f0000018000)={r10, 0x5, 0x7f, r11, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f0000017000)={r10, 0x0, 0x2, r11, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
[   50.782751] RSP = 0x0000000000001006  RIP = 0x0000000000000000
[   50.782758] RFLAGS=0x00033002         DR7 = 0x0000000000000400
[   50.782766] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   50.782772] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782780] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782790] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782799] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782809] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782819] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   50.782825] GDTR:                           limit=0x000007ff, base=0x0000000000001000
[   50.782835] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800
[   50.782841] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   50.782849] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   50.782854] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   50.782860] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   50.782865] Interruptibility = 00000000  ActivityState = 00000000
[   50.782868] *** Host State ***
[   50.782874] RIP = 0xffffffff811b6777  RSP = 0xffff8801d18cf4c8
[   50.782885] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   50.782891] FSBase=00007f8b91628700 GSBase=ffff8801dc100000 TRBase=ffff8801dc122cc0
[   50.782896] GDTBase=ffffffffff576000 IDTBase=ffffffffff57b000
[   50.782903] CR0=0000000080050033 CR3=00000001d2094000 CR4=00000000001426e0
[   50.782911] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   50.782918] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   50.782920] *** Control State ***
[   50.782926] PinBased=0000003f CPUBased=b699edfa SecondaryExec=0000004a
[   50.782930] EntryControls=0000d1ff ExitControls=0023efff
[   50.782937] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   50.782941] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[   50.782946] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   50.782950]         reason=80000021 qualification=0000000000000000
[   50.782954] IDTVectoring: info=00000000 errcode=00000000
[   50.782958] TSC Offset = 0xffffffe3306c4f1a
[   50.782963] EPT pointer = 0x00000001d255501e
[   50.831707] irq bypass consumer (token ffff8801d2d21f00) registration fails: -16
[   51.331549] CR0: actual=0x0000000080000031, shadow=0x0000000060000010, gh_mask=fffffffffffffff7
[   51.340424] CR4: actual=0x0000000000002051, shadow=0x0000000000000000, gh_mask=fffffffffffff871
[   51.350180] CR3 = 0x00000000fffbc000
[   51.353954] RSP = 0x000000000000fffa  RIP = 0x0000000000000000
[   51.360193] RFLAGS=0x00033000         DR7 = 0x0000000000000400
[   51.366202] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[   51.373153] CS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.381163] DS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.389143] SS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.397148] ES:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.405117] FS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.413110] GS:   sel=0x0000, attr=0x000f3, limit=0x0000ffff, base=0x0000000000000000
[   51.421090] GDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   51.429080] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000
[   51.437074] IDTR:                           limit=0x0000ffff, base=0x0000000000000000
[   51.445057] TR:   sel=0x0000, attr=0x0008b, limit=0x00002088, base=0x0000000000000000
[   51.453510] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[   51.459938] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[   51.467381] Interruptibility = 00000000  ActivityState = 00000000
[   51.473609] *** Host State ***
[   51.476792] RIP = 0xffffffff811b6777  RSP = 0xffff8801ce8474c8
[   51.482774] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[   51.489173] FSBase=00007ff213531700 GSBase=ffff8801dc100000 TRBase=ffff8801dc022cc0
[   51.496963] GDTBase=ffffffffff577000 IDTBase=ffffffffff57b000
[   51.502844] CR0=0000000080050033 CR3=00000001c03d8000 CR4=00000000001426e0
[   51.509867] Sysenter RSP=0000000000000000 CS:RIP=0010:ffffffff8449ef40
[   51.516542] EFER = 0x0000000000000d01  PAT = 0x0000000000000000
[   51.522600] *** Control State ***
[   51.526047] PinBased=0000003f CPUBased=b699edfa SecondaryExec=0000004a
[   51.532709] EntryControls=0000d1ff ExitControls=0023efff
[   51.538158] ExceptionBitmap=ffffbfff PFECmask=00000000 PFECmatch=00000000
[   51.545085] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
2017/08/11 22:10:51 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, 0xffffffffffffffff, 0x1})
ioctl$KVM_CHECK_EXTENSION_VM(0xffffffffffffffff, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:51 executing program 2:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000a6f000/0x6000)=nil, 0x6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:51 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000165000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aab000-0x10)={0x4, 0x3, 0x3, 0x6})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00004ee000-0x18)={0x0, 0x2, 0x2, &(0x7f0000ae9000)=0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000aec000-0x70)={[{0x8, 0x100, 0x3ff, 0xfffffffffffffffe, 0x90, 0x2, 0x2, 0x8, 0x0, 0x2, 0x3, 0x2c4, 0x200}, {0xfffffffffffffffb, 0xff, 0x6, 0x8, 0x4, 0x1017ea99, 0x4, 0x4, 0xffffffff00000000, 0x0, 0x7, 0x3, 0x80}, {0x6, 0x7, 0x65, 0x1, 0x0, 0x9, 0x3, 0x66a, 0x3, 0xffffffffffffffff, 0x101, 0x3a16, 0x7}], 0xfffffffffffff800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000424000-0x39)="ba43000f20c0b8aecbeecbdfd200000f230f21f86635800000a00f23c165640f019809000fbf56020f35defe0f060fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118000, 0x5, 0x8000, 0xc611, 0x9, 0x8, 0x4000000000000000, 0x6, 0x5, 0x20, 0x82, 0x3}, {0x400, 0x2ab000, 0x500, 0x0, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x7fff, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x100000000, 0x3, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000aed000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000aed000)={0x9d2, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000aeb000-0xc)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:51 executing program 1:
mmap(&(0x7f0000000000/0xafe000)=nil, 0xafe000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00002d3000/0x18000)=nil, &(0x7f0000add000)=[@text64={0x40, &(0x7f0000150000)="660f388170fd4d0f5ae3c48191c44e00b5490f01f8662e36f3480f2a6093263626670faeb100000000c422599324ef4a0fa93649d9f82e0fc7690e", 0x3b}], 0x1, 0xf, &(0x7f0000ae9000)=[@efer={0x2, 0x401}, @cstype0={0x4, 0xe}], 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000afe000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_S390_INTERRUPT(r2, 0x4010ae94, &(0x7f0000aff000-0x10)={0x1000000000, 0x5, 0x3})
2017/08/11 22:10:51 executing program 7:
mmap(&(0x7f0000000000/0xaec000)=nil, 0xaec000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x804000000003, 0x5810, r2, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000aed000-0x400)={"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"})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x6, 0x1811, r0, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000aec000)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000aed000)=0x7)
mmap(&(0x7f00003b0000/0x4000)=nil, 0x4000, 0x4, 0x4010, 0xffffffffffffffff, 0xfffffffffffffffe)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000aee000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SMI(r2, 0xaeb7)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000aef000-0x8)={0x40, 0x1})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000891000)={0x60000, 0x0, [0x3, 0x8000, 0x95a9, 0x2, 0x7, 0x4, 0x2, 0x2]})
2017/08/11 22:10:51 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000af0000)={0x9, 0x52, 0xa523, 0x4, 0x3f})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:51 executing program 3:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000045a000/0x3000)=nil, 0x3000, 0x3, 0x32, 0xffffffffffffffff, 0xffffffffffffffff)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000088e000/0x18000)=nil, &(0x7f0000ae0000-0x13)=[@text64={0x40, &(0x7f0000aee000-0x34)="c482c0f22af3670f0864640f32666764d272270f302666420f3881676d49dfb88043000066bad104ed66b845000f00d864400f08", 0x34}], 0x1, 0x20, &(0x7f0000adf000)=[], 0x0)
r3 = eventfd2(0x0, 0x800)
mmap(&(0x7f00000fa000/0xb000)=nil, 0xb000, 0x3, 0x40010, r2, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000aed000)={0x1, 0x0, [{0x200, 0x0, 0x7f}]})
read$eventfd(r3, &(0x7f0000118000-0x8)=0x0, 0x8)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000aee000)={0x1, 0x0, [{0x1, 0x0, 0xfffffffffffffaa7}]})
eventfd2(0x8001, 0x800)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, r0, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0xc028ae92, &(0x7f0000aef000-0x28)={0x6, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = eventfd2(0x101, 0x800)
r5 = eventfd2(0x12, 0x80001)
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000071000-0x50)={0x4c, "1c4c820efa6b7414d1451725b70130486bbb62b52d1988fed8d4e07f6759f6f8bb9b7bd91f07536afca166954696c90af92f61c54c15daa13f1877ec029bc190d2f351321a498a14db24be40"})
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0xfffffffffffffffa)
mmap(&(0x7f0000652000/0x1000)=nil, 0x1000, 0x4, 0x30, r2, 0x0)
ioctl$KVM_PPC_GET_PVINFO(r1, 0x4080aea1, &(0x7f0000aee000-0xf1)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000aeb000-0x20)={r4, 0x3, 0x2, r5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000aef000-0x8)=0x4000)
read$eventfd(r5, &(0x7f0000aee000-0x8)=0x0, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:51 executing program 4:
mmap(&(0x7f0000000000/0xaf2000)=nil, 0xaf2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000042b000-0x9)="2f6465762f6b766d00", 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f00002fa000/0x4000)=nil, 0x4000, 0x3, 0x2012, r2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
[   51.551752] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000
[   51.558331]         reason=80000021 qualification=0000000000000000
[   51.564638] IDTVectoring: info=00000000 errcode=00000000
[   51.570092] TSC Offset = 0xffffffe334ee4163
[   51.574407] EPT pointer = 0x00000001cefcb01e
2017/08/11 22:10:51 executing program 2:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000049e000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f000069c000-0x10)={0x1fd, 0x0, &(0x7f00003b2000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000003e000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@text64={0x40, &(0x7f0000ae6000-0x52)="660f08260f01f8470fc76f006535c71fcfc443cd6c4bfaa066baf80cb828054e82ef66bafc0ced0f20c035200000000f22c066baf80cb89a5c0280ef66bafc0cb000ee66baf80cb88025468366bafc0ced", 0x51}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r1, 0x4038ae7a, &(0x7f000000f000)={0x0, 0x1, &(0x7f0000ae0000)="", &(0x7f0000ae0000)="", 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000aef000-0x8)={0x3, 0x2d85ed34})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000aed000)=[@text16={0x10, &(0x7f0000aed000)="38c70fc76a983e6026f2f2d9e1640f0050eaba4300b80200ef66b80500000066b9133c00000f01c1f466b9800000c00f326635008000000f30660f5b8ec200", 0x3f}], 0x1, 0x10, &(0x7f0000aee000-0x10)=[@flags={0x3, 0x160040}], 0x1)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000aef000)={0x2, 0x0, [{0x2b5cc5539f4615a, 0x7, 0xfffffffffffffe00, 0x1, 0x100000000, 0x0}, {0x4, 0x3, 0xae7c, 0x7fff, 0x7, 0x0}]})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae0000-0x28)={0x1, 0x0, [{0x1, 0x0, 0x0}]})
ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000ae5000)="")
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)="2f6465762f6b766d00", 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(r4, 0x8040ae69, &(0x7f0000006000)={0x0, 0x0, 0x10, 0x1, 0x0})
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f000000d000-0x40)={0x8000000400000004, 0x800000000000000, 0x401, 0xc, 0x20, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
2017/08/11 22:10:51 executing program 7:
mmap(&(0x7f0000000000/0xe99000)=nil, 0xe99000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000da8000-0x8)={0x1f, 0x0})
r2 = eventfd2(0xedf, 0x800)
mmap(&(0x7f0000e99000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
write$eventfd(r2, &(0x7f0000e9a000-0x8)=0x1000, 0x8)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000565000)="2f6465762f6b766d00", 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0x0, 0x0)
r6 = eventfd2(0x0, 0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000026000-0x20)={r5, 0x0, 0x2, r6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000e99000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000e9a000-0x18)={0x0, 0x0, 0x140000, &(0x7f0000695000)=0x0})
mmap(&(0x7f0000e9a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000e9b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000e9b000-0x18)={0x0, 0x7f, 0x8001, &(0x7f0000e9b000)=0x0})
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000e97000)={0x9, 0x0, [{0x7, 0x2, 0x0, 0x0, @msi={0x0, 0x3ff, 0x8}}, {0x985, 0x3, 0x0, 0x0, @irqchip={0x9, 0x2}}, {0x1000, 0x2, 0x0, 0x0, @adapter={0x0, 0x8ff, 0x8, 0x6f5, 0x19ad}}, {0x7fff, 0x6, 0x0, 0x0, @adapter={0x9, 0x343, 0x1, 0xc1, 0x7}}, {0xffffffffffffff86, 0x7, 0x0, 0x0, @adapter={0x7, 0x8, 0x0, 0x9, 0x2}}, {0xc6, 0x0, 0x0, 0x0, @irqchip={0x4, 0x2}}, {0x99, 0x4, 0x0, 0x0, @irqchip={0x5, 0x8000}}, {0xd46, 0x1, 0x0, 0x0, @irqchip={0x4000000000000, 0x1}}, {0x22, 0x4, 0x0, 0x0, @msi={0x6, 0x6, 0x8001}}]})
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000e97000-0x20)={0xffffffffffffffff, 0x2, 0x2, r2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xb8a2c6a223faa5bc)
2017/08/11 22:10:51 executing program 6:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:51 executing program 4:
mmap(&(0x7f0000000000/0xaef000)=nil, 0xaef000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f000028e000)={0x0, 0x71a7, 0x4, &(0x7f0000ad3000)=0x0})
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap(&(0x7f0000000000/0xae7000)=nil, 0xae7000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000af1000-0x9)="2f6465762f6b766d00", 0x1c1000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000ae6000-0x40)={0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_ASSIGN_DEV_IRQ(r3, 0x4040ae70, &(0x7f0000032000)={0x954, 0x8, 0xffffffff, 0x1563a85c6c8d698b})
ioctl$KVM_GET_PIT(r3, 0xc048ae65, &(0x7f0000625000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r3, 0x4008ae73, &(0x7f000069d000)={0x0, 0x0})
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r3, 0x8008ae9d, &(0x7f0000ae8000-0x1)="00")
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000af0000-0x1000)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000000000/0xaea000)=nil, 0xaea000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f000096a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000763000-0xc)={0x4, r6, 0x0})
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f0000ae8000)={0x0, 0x0})
ioctl$KVM_SET_PIT(r6, 0x8048ae66, &(0x7f0000478000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000}, {0x0, 0x1, 0x200000000000, 0x0, 0x101, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfbf, 0x0, 0x0, 0x2, 0x0, 0x717c8be1, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000af1000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000088e000/0x18000)=nil, &(0x7f0000ae0000-0x13)=[@text32={0x20, &(0x7f0000af1000)="0f01c9f30f011ac744240000900000c74424025810b3b3c7442406000000000f0114240f017e18260f20d166f20f01d88fc860ee8200000100040f20e035000040000f22e0c4e16311ea66baf80cb8da62cf80ef66bafc0c66b8631766ef", 0x5e}], 0x1, 0x0, &(0x7f0000adf000)=[], 0x0)
2017/08/11 22:10:51 executing program 1:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0xc, 0x3cce})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000afb000-0x28)={0x400000000, 0x1000, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0xfffffffffffffffd, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0x4ad7, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000afc000-0x28)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
ioctl$KVM_SET_FPU(r2, 0x41a0ae8d, &(0x7f00000aa000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1000, 0x7fffffff, 0x4, 0x0, 0x1, 0x3000, 0x5001, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x80000000, 0x0})
mmap(&(0x7f0000afb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000afb000)={0x1, 0x0, 0x0})
2017/08/11 22:10:51 executing program 3:
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x0, &(0x7f000000e000-0x8)=0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000ef6000)={0x6000, 0x104000, 0x5, 0x8, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mremap(&(0x7f0000137000/0x3000)=nil, 0x3000, 0xd000, 0x3, &(0x7f000053c000/0xd000)=nil)
munlock(&(0x7f0000189000/0x2000)=nil, 0x2000)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000f72000/0x1000)=nil, 0x1000, 0x4000000001000, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00009d4000)={0x3, 0x1, 0x10002, 0x2000, &(0x7f0000021000/0x2000)=nil})
mmap(&(0x7f0000f73000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000f73000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00002ba000)={0x1, 0x13003, 0x0})
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000b30000)=0x0, 0x8, 0x2)
2017/08/11 22:10:51 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
mmap(&(0x7f0000af0000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:51 executing program 0:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x3, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000165000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000aab000-0x10)={0x4, 0x3, 0x3, 0x6})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00004ee000-0x18)={0x0, 0x2, 0x2, &(0x7f0000ae9000)=0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000aec000-0x70)={[{0x8, 0x100, 0x3ff, 0xfffffffffffffffe, 0x90, 0x2, 0x2, 0x8, 0x0, 0x2, 0x3, 0x2c4, 0x200}, {0xfffffffffffffffb, 0xff, 0x6, 0x8, 0x4, 0x1017ea99, 0x4, 0x4, 0xffffffff00000000, 0x0, 0x7, 0x3, 0x80}, {0x6, 0x7, 0x65, 0x1, 0x0, 0x9, 0x3, 0x66a, 0x3, 0xffffffffffffffff, 0x101, 0x3a16, 0x7}], 0xfffffffffffff800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000424000-0x39)="ba43000f20c0b8aecbeecbdfd200000f230f21f86635800000a00f23c165640f019809000fbf56020f35defe0f060fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118000, 0x5, 0x8000, 0xc611, 0x9, 0x8, 0x4000000000000000, 0x6, 0x5, 0x20, 0x82, 0x3}, {0x400, 0x2ab000, 0x500, 0x0, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x7fff, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x100000000, 0x3, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_FPU(r2, 0x81a0ae8c, &(0x7f0000aed000-0x1a0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000aed000)={0x9d2, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000aeb000-0xc)={0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:51 executing program 3:
mmap(&(0x7f0000000000/0xae4000)=nil, 0xae4000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r1, 0xae45, 0x2)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
2017/08/11 22:10:51 executing program 7:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x11, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000-0x9)="2f6465762f6b766d00", 0x200100, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000aec000)={0x3a1515a4d5981ecf, r0, 0x0})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f000073e000/0x1000)=nil, 0x1000, 0x1000007, 0x110, r1, 0x200)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000082c000)={0x2713, 0x2, 0x16006, 0x2000, &(0x7f0000500000/0x2000)=nil})
mmap(&(0x7f0000000000/0xb000)=nil, 0xb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f000000b000-0x10)={0x0, 0x0, 0x2fb76d4a, 0x0})
openat$kvm(0xffffffffffffff9c, &(0x7f000000b000-0x8)="2f6465762f6b766d00", 0x101000, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000014000/0x1000)=nil, 0x1000, 0x3, 0x53, r0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)="2f6465762f6b766d00", 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(r3, 0x8040ae69, &(0x7f0000006000)={0x0, 0x0, 0x10, 0x1, 0x0})
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000015000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:52 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x0, <r0=>0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 7:
mmap(&(0x7f0000000000/0xc59000)=nil, 0xc59000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = eventfd2(0x0, 0x0)
read$eventfd(r1, &(0x7f00006c1000-0x8)=0x0, 0x8)
read$eventfd(r1, &(0x7f000043e000)=0x0, 0x8)
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f0000c5a000-0x20)={r1, 0x100000000, 0xfffffffffffffd90, r1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x1f)
ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000c59000)={0x7, 0x0, [{0xfffffffffffffffe, 0x4, 0x0, 0x0, @sint={0xffffffff00000001, 0x800}}, {0x1f, 0x4, 0x0, 0x0, @adapter={0x7, 0x8, 0x41, 0x3, 0x4}}, {0x2, 0x3, 0x0, 0x0, @irqchip={0x80000001, 0x7}}, {0x3, 0x5, 0x0, 0x0, @sint={0x0, 0x80000001}}, {0x4, 0x3, 0x0, 0x0, @msi={0x8, 0x7, 0xc7}}, {0x28000000, 0x1, 0x0, 0x0, @msi={0x1, 0x7, 0x0}}, {0x1, 0x5, 0x0, 0x0, @msi={0x3, 0x101, 0x80}}]})
ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f00003a8000)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000074000)={0x81, 0x0, [0x3, 0x10000000, 0x3, 0x2], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_REINJECT_CONTROL(r0, 0xae71, &(0x7f0000c5a000)={0x81ff, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = pkey_alloc(0x0, 0x10000001)
pkey_mprotect(&(0x7f000032f000/0x2000)=nil, 0x2000, 0x1, r2)
write$eventfd(r1, &(0x7f0000c57000)=0xe318, 0x8)
ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f00005b3000-0x4)={0x6, 0x4, 0x81, 0x0})
mremap(&(0x7f000020f000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000c58000/0x1000)=nil)
mmap(&(0x7f0000c5b000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f0000c5b000)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
2017/08/11 22:10:52 executing program 1:
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x0, 0x4d031, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x48031, 0xffffffffffffffff, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000ae0000/0x1000)=nil, 0x1000, 0x2000009, 0x32, r0, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f000089c000-0x18)={0x0, 0x4, 0x8, &(0x7f0000ae0000)=0x0})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f000030f000)={0x3, 0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000304000)={0x3, 0xffffffffffffffff, 0x1})
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xffffffbffffffffc)
ioctl$KVM_GET_TSC_KHZ(r2, 0xaea3)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x200000, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x2000004, 0x44031, r3, 0x0)
mremap(&(0x7f00003fb000/0x400000)=nil, 0x400000, 0x400000, 0x3, &(0x7f0000bec000/0x400000)=nil)
2017/08/11 22:10:52 executing program 2:
mmap(&(0x7f0000000000/0xafa000)=nil, 0xafa000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f00000aa000/0x1000)=nil, 0x1000, 0x300000a, r1)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
munlock(&(0x7f000093e000/0x3000)=nil, 0x3000)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
mprotect(&(0x7f00009d5000/0x3000)=nil, 0x3000, 0x8)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
2017/08/11 22:10:52 executing program 1:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000009a000-0x9)="2f6465762f6b766d00", 0x20000000002000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f0000007000)={0x6, [0x14bbf6c5, 0xff, 0x1, 0x2, 0x1, 0x9]})
r3 = eventfd2(0xfff, 0x80000)
read$eventfd(r3, &(0x7f0000964000-0x8)=0x0, 0x8)
r4 = pkey_alloc(0x0, 0x3)
pkey_free(r4)
mbind(&(0x7f00003d2000/0x400000)=nil, 0x400000, 0x2, &(0x7f0000aeb000-0x8)=0x1, 0x7, 0x1)
r5 = eventfd2(0x80000000, 0x80801)
read$eventfd(r5, &(0x7f000044a000)=0x0, 0x8)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f000099d000-0x120)={0x7, 0x0, [{0x80000006, 0x9, 0x2, 0x9, 0xe669, 0xffffffff, 0x7f, [0x0, 0x0, 0x0]}, {0xb, 0x401, 0x0, 0xffffffff, 0x0, 0x909, 0x9, [0x0, 0x0, 0x0]}, {0x40000000, 0x4788, 0x5, 0x2, 0x7ff, 0x80000000, 0x2, [0x0, 0x0, 0x0]}, {0x40000007, 0xfff, 0x2, 0xffff, 0x2, 0x1ff, 0x3, [0x0, 0x0, 0x0]}, {0x40000001, 0x80000000, 0x2, 0x3, 0x4, 0x5c0a, 0xc7, [0x0, 0x0, 0x0]}, {0x80000019, 0x80, 0x1, 0x0, 0x1, 0x8, 0x9, [0x0, 0x0, 0x0]}, {0x0, 0x6, 0x4, 0x401, 0x3, 0x63f, 0x1, [0x0, 0x0, 0x0]}]})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000525000-0x18)={0x0, 0xffff, 0x996, &(0x7f0000aec000-0x8)=0x0})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000ae7000)={0x1, 0x0, [{0x12, 0x0, 0x5}]})
2017/08/11 22:10:52 executing program 0:
mmap(&(0x7f0000000000/0x24000)=nil, 0x24000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000001e000-0x20)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000005000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f000001d000-0x18)=[@text64={0x40, &(0x7f000001c000)="5561768db3e6122d41a5c68a561d07d0bd937869ecfcda6fdac7109d23a756c3a66c647ccfbf3f36330f1dfe523e674af213b56fad718020c21915b1c4b1a37bfb1119ef6477d2d5992cf4079aa6fc2b7e2243ae91c0ca941773350bb4a9157016188f88", 0x64}], 0x1, 0x0, &(0x7f000001c000)=[], 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000002000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0xe0000021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000018000-0x20)={0x10003, 0x0, 0x0, 0x2000, &(0x7f000000d000/0x2000)=nil})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000023000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f000001f000)={0x4, 0x0, &(0x7f000001c000/0x4000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000003000/0x18000)=nil, &(0x7f0000014000)=[@text64={0x40, &(0x7f0000007000-0x49)="66baf80cb8f0e82d8def66bafc0cb800000000efb8010000000f01c1480f074b0f01c866baa00066ed2e430f01c9664f0f38808cca0f000000c4a2f91e1366ba420066ed4d0f005581", 0x49}], 0x1, 0x9, &(0x7f0000022000)=[], 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000023000)={0x0, 0x0, 0x0, 0x0, 0xffff})
2017/08/11 22:10:52 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x0})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 4:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x11, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000-0x9)="2f6465762f6b766d00", 0x200100, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000aec000)={0x3a1515a4d5981ecf, <r1=>r0, 0x0})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f000073e000/0x1000)=nil, 0x1000, 0x1000007, 0x110, r2, 0x200)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f000082c000)={0x2713, 0x2, 0x16006, 0x2000, &(0x7f0000500000/0x2000)=nil})
mmap(&(0x7f0000000000/0xb000)=nil, 0xb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f000000b000-0x10)={0x0, 0x0, 0x2fb76d4a, 0x0})
openat$kvm(0xffffffffffffff9c, &(0x7f000000b000-0x8)="2f6465762f6b766d00", 0x101000, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000014000/0x1000)=nil, 0x1000, 0x3, 0x53, r0, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r3, 0x4040ae75, &(0x7f0000014000)={0xe27f, 0x20, 0x3f, 0x4})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)="2f6465762f6b766d00", 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_ASSIGN_PCI_DEVICE(r5, 0x8040ae69, &(0x7f0000006000)={0x0, 0x0, 0x10, 0x1, 0x0})
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
mmap(&(0x7f0000000000/0x3b9000)=nil, 0x3b9000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(r8, 0x4008ae48, &(0x7f0000010000)=0x5000)
mlock2(&(0x7f00002eb000/0x14000)=nil, 0x14000, 0x0)
ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f000000c000)={0x366, 0x2f25})
mmap(&(0x7f0000014000/0x1000)=nil, 0x1000, 0x2000000000000003, 0x12, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000015000-0xc)={0x3, r4, 0x0})
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aec000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SET_MCE(r6, 0x4040ae9e, &(0x7f0000aed000-0x40)={0x8000000000000000, 0xf001, 0x5, 0x2, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
mmap(&(0x7f0000015000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
2017/08/11 22:10:52 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000040f000/0x18000)=nil, &(0x7f0000aee000-0x18)=[@textreal={0x8, &(0x7f00007b4000)="3e360f07f30f1ac30f20e426df0b66b8d30000000f23d00f21f86635000000080f23f80f0766b9440300000f32260f01cfba2100b0dcee26650fc75f00", 0x3d}], 0x1, 0x8, &(0x7f0000af0000-0x20)=[@cr4={0x1, 0xa3}, @flags={0x3, 0x3f8e678d6328a999}], 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 3:
mmap(&(0x7f0000000000/0x28000)=nil, 0x28000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
madvise(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x6f)
ioctl$KVM_KVMCLOCK_CTRL(r2, 0xaead)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000028000-0x49)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000017000)={{0x106000, 0xf001, 0x1f, 0x6, 0x5, 0x6000000000000000, 0x4, 0x8001, 0x1, 0x1f, 0x2, 0x6585099f, 0x0}, {0x3, 0xf000, 0x0, 0x9, 0x100000001, 0x2, 0x1f, 0x10000, 0x2, 0x8, 0x120000000, 0x2, 0x0}, {0x0, 0x6000, 0xe, 0x8, 0x4, 0x400, 0x800, 0x1f, 0x4, 0xfffffffffffffffc, 0x289, 0x2, 0x0}, {0x4000, 0x4, 0xe, 0x5, 0x20, 0x0, 0x3, 0x80000000, 0x4, 0x7, 0x1, 0xfffffffffffffffd, 0x0}, {0x4, 0x4000, 0xf, 0x3, 0x9f99, 0x1, 0x6d0, 0xfffffffffffffffe, 0x80, 0x9, 0x5, 0x400, 0x0}, {0x4000, 0x1f000, 0xb, 0x7fffffff, 0x3, 0x4, 0x7, 0x5, 0x100000001, 0x9, 0xff, 0x5, 0x0}, {0xd001, 0x5000, 0x0, 0x100000000, 0x101, 0x6, 0x200, 0x7, 0x3, 0xfffffffffffffc00, 0x5, 0x4, 0x0}, {0xf000, 0x3000, 0x0, 0x0, 0xf87b, 0x5, 0x8, 0xff, 0x4, 0x40, 0x7fffffff, 0x6, 0x0}, {0x1, 0x2, [0x0, 0x0, 0x0]}, {0x6000, 0x5000, [0x0, 0x0, 0x0]}, 0x4, 0x0, 0x0, 0x2000, 0x6, 0x8000, 0x2, [0x5, 0x100, 0x4, 0x8]})
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000029000-0x10)={0x7fffffff, 0x80, 0x20, 0x400})
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_PIT2(r1, 0x8070ae9f, &(0x7f0000028000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000015000-0x8)=0x0)
mmap(&(0x7f0000028000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000001000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mmap(&(0x7f0000029000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000017000)={0x0, 0x2, 0x8, &(0x7f000002a000-0x8)=0x0})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000f000/0x18000)=nil, &(0x7f0000029000-0x18)=[@text16={0x10, &(0x7f000000d000)="0f06ba4200ec66b8e90000000f23d80f21f86635000000400f23f866b8008000000f23d00f21f866352000000d0f23f86766c74424002f9f9ae46766c7442402480000006766c744240600000000670f011c240fc76a2a66b98508000066b80078000066ba000000000f300f07b861000f00d866b9800000c00f326635008000000f30", 0x83}], 0x1, 0x37, &(0x7f0000009000-0x20)=[@cr0={0x0, 0x40040001}, @dstype3={0x7, 0x1}], 0x2)
mmap(&(0x7f000002a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000000000)=0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000025000)={0x1, 0x0, [0x5, 0x2, 0xffffffff, 0x5, 0x1, 0x3, 0x606, 0x0]})
ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f000002b000-0x14)={0x1, 0x3ff, 0x8, 0x2, 0x6})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000011000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34b582ec71cdec61, [0x4, 0x0, 0x0, 0x0]})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f000001a000-0x7)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
2017/08/11 22:10:52 executing program 7:
mmap(&(0x7f0000000000/0x24000)=nil, 0x24000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000001e000-0x20)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000005000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f000001d000-0x18)=[@text64={0x40, &(0x7f000001c000)="5561768db3e6122d41a5c68a561d07d0bd937869ecfcda6fdac7109d23a756c3a66c647ccfbf3f36330f1dfe523e674af213b56fad718020c21915b1c4b1a37bfb1119ef6477d2d5992cf4079aa6fc2b7e2243ae91c0ca941773350bb4a9157016188f88", 0x64}], 0x1, 0x0, &(0x7f000001c000)=[], 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000002000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0xe0000021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000018000-0x20)={0x10003, 0x0, 0x0, 0x2000, &(0x7f000000d000/0x2000)=nil})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000023000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f000001f000)={0x0, 0x0, &(0x7f000001c000/0x4000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000003000/0x18000)=nil, &(0x7f0000014000)=[@text64={0x40, &(0x7f0000007000-0x49)="66baf80cb8f0e82d8def66bafc0cb800000000efb8010000000f01c1480f074b0f01c866baa00066ed2e430f01c9664f0f38808cca0f000000c4a2f91e1366ba420066ed4d0f005581", 0x49}], 0x1, 0x9, &(0x7f0000022000)=[], 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000023000)={0x0, 0x0, 0x400000000000, 0x8000000000000009, 0xffff})
2017/08/11 22:10:52 executing program 7:
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000a6f000/0x6000)=nil, 0x6000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f000083d000/0x2000)=nil, 0x2000, 0x3, 0x100000000032, 0xffffffffffffffff, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f000000a000-0x8)={0x0, 0x7ff})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f000081b000)={0x400000000000000, 0x0, 0x5, 0x7, 0x15, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000ae6000-0x400)={"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"})
ioctl$KVM_SET_BOOT_CPU_ID(r1, 0xae78, &(0x7f0000ae4000)=0x1)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000079000)={0x4, 0x2000, 0x0, 0x6000000000, 0x7})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xf72000)=nil, 0xf72000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x20000000000003, &(0x7f0000f72000)=0xc0000000, 0x6, 0x3)
2017/08/11 22:10:52 executing program 1:
mmap(&(0x7f0000000000/0xaeb000)=nil, 0xaeb000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f000009a000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000000000/0xaee000)=nil, 0xaee000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x20000000)
mmap(&(0x7f0000333000/0x1000)=nil, 0x1000, 0x5, 0x34, r1, 0xfffffffffffffffd)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000aef000-0x4)=0x7)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000a71000/0x18000)=nil, &(0x7f0000ae2000-0x18)=[@text32={0x20, &(0x7f0000aeb000-0x5f)="b90401004066b84710000000d0ba000000000f3052c76dfef3ab66b86f000f99d520e0e0ea0000b2b20ff6e02ec1e8050f3235001000000d30ef66bafc0cc966e955e955266767f2a50f20d835080000000f22d8650f070f01b102000000", 0x5e}], 0x1, 0x0, &(0x7f0000ae8000)=[], 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f000071f000)=0xffffffffffffffff)
ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc028ae92, &(0x7f00000ab000)={0x2, 0x800, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000aec000)={"3a5ca361a0df102fae43a3f1ec872c0185c9813608eed8f847374008d61d0bcfc300bc75ce5da3001ccb1007655a4f7410ae2abb351756d32573ad07efbff26b6c29f3f5b20949d1948e7dc1c8f2b7a1f53f726c506fca42d4a7935507ddb99198bc1ac4b348ae7c27061ead76d16ca486010f0a3be5e5fb88b250282a1f4370084b669a6aa05d6f099ea5ce98744d4d02be5ff2bfc8a7b31392162b70f9bf6a7921ca46c22eba76a3f5fada926a9e3d39e841a85aff9e2e11df5a017550dd503eafb49349716d060d697bd0978eac053d12de846fb7d0ef0ce4f7942061ad998b000619474f6ab8bbaf74f23bef3d8874a920f438d7a3bbe9ac54c269dd8463b191dfff03924e9ef495aad2c7831f72e87d20d39c031000c2b6b009dc52fe4a87d2adbd31ef3991643480dc4e1194dad4aaae0bbd182f86a7572202d932534fe78aa6205a387714ba722fc29e394626c6950754c5bd8e959a3d108590f13f43f23507624d0f3b464f483d2f11441d510b1269bd87224f20a2cb5984b4f2be4d93aef0f2ae60ada076cc86b6ecd9f9cd27c13ff16725a99f1d96fb35409d9aad7cd14b4a0a6fa33249d40760c0dd77c75cea3ced7055169a87c767c91aadd231e5b211e9b8df16a1e2aef8d3a7e02a4f7c8fa5e989f9a2c488638fec8d03543fededef667b0b0cde85958ef5dd2355e3dade1126022ada4186160bcf69013a938bd9c5fe1f46fd5c8d522320840de0ede209ee11a4655a157b1ed47b6aa5daad7bc7f96313d2e02144e50a7f64ccfb866b1cc3a04ebd7e460e69f42856b474e681e2917b593b931c8987a487329d58151d14f4f1eb1b123f29f21899c524c2808269f7a833d5ed3cd93e2ffc0dbdf3c50c736b10512607837e8f50144c1c14e052c788381a2b236becb2d2bfdf0467cefcbe6926090434d31323d47576de4566f61ab7f1fab0f73e2e9b58c328f73f8fecef3e9bbad4b177d9dd2a0e3e7a6f108477afef361fd23ea1a575dd9b86515833f5bd4ccf9ddb9e5432d723f3eb50339ae229108ae769ac632d312761db5057fe4ddfae2f22be1f709bc0feef9d8dcf05a425d354bda07e3780f19d3a073e737bcc8220febd750e3ce8549870615e1e9c969d3883126c687ff7ef6c0a16aa18bf594c681ae4c2ec063b792ae01166868672360aefb97539f6825c2f17933ce890a2d7ca53fcf77dc8dd4a0e64b7010aa7fd14f7833ab907d4d3c5df1ce497abfea23c94ab44d6b0f389480b4f0c077b98ba319dff8ab86cb7ff6b9f26e1f7e88b01d346504ab1cbc30fb5acf132544e59a2dec45e8019ef4642e672aebc040bfbfd6e7caf8846917b3e21e9b5673b31c4f3528baaf61b01bf160c3b535bcc7b23ee34371286407409fa292ad059d4e40624e76bad7d3d516adae9c3fcecb877f4d9d39035338787435f6372c5fb88cd"})
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xc59000)=nil, 0xc59000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
munmap(&(0x7f00000f3000/0x1000)=nil, 0x1000)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = eventfd2(0x0, 0x0)
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000c5a000-0xc)={0x3, <r7=>r5, 0x1})
mmap(&(0x7f0000c59000/0x1000)=nil, 0x1000, 0x5, 0x810, r4, 0x0)
read$eventfd(r6, &(0x7f000043e000)=0x0, 0x8)
mmap(&(0x7f0000c5a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000064f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000064f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000064f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r7, 0x4038ae7a, &(0x7f000064f000)={0x401, 0xfe, &(0x7f000064f000)="5b7301c29af338056ae818c3dccd3fea0665a34a7124d190343d62b1b5ff03b99d781e704b88529884bfe01097b4d13c4632c0a3bd04b773ed9f59ff1934ab98670eb4373e317a38d06fa54a7642572e64dc448ab900ce7d4e8e3866c81e85f2413ff1d83327b07c205f7fbed8280213bfd9ffdbde50d4f61cd52ecc48bc7215360da6c02777bfe3de86dba8a10741c9418075c7fd", &(0x7f000064f000)="67dd0883fe6fe3d90c3249a803f9698ff21e9e788efa952f8236088d05c10f648a57f641634d0b452195966f78295667771269041d4789fccf5f13d249087f", 0x95, 0x3f, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:52 executing program 0:
mmap(&(0x7f0000000000/0x24000)=nil, 0x24000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000001e000-0x20)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000005000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f000001d000-0x18)=[@text64={0x40, &(0x7f000001c000)="5561768db3e6122d41a5c68a561d07d0bd937869ecfcda6fdac7109d23a756c3a66c647ccfbf3f36330f1dfe523e674af213b56fad718020c21915b1c4b1a37bfb1119ef6477d2d5992cf4079aa6fc2b7e2243ae91c0ca941773350bb4a9157016188f88", 0x64}], 0x1, 0x0, &(0x7f000001c000)=[], 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000002000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0xe0000021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000018000-0x20)={0x10003, 0x0, 0x0, 0x2000, &(0x7f000000d000/0x2000)=nil})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000023000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f000001f000)={0x4, 0x0, &(0x7f000001c000/0x4000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000003000/0x18000)=nil, &(0x7f0000014000)=[@text64={0x40, &(0x7f0000007000-0x49)="66baf80cb8f0e82d8def66bafc0cb800000000efb8010000000f01c1480f074b0f01c866baa00066ed2e430f01c9664f0f38808cca0f000000c4a2f91e1366ba420066ed4d0f005581", 0x49}], 0x1, 0x9, &(0x7f0000022000)=[], 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000023000)={0x0, 0x0, 0x0, 0x0, 0xffff})
2017/08/11 22:10:52 executing program 2:
mmap(&(0x7f0000000000/0xafb000)=nil, 0xafb000, 0x2000002, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
2017/08/11 22:10:52 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, <r0=>0xffffffffffffffff, 0x0})
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 4:
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000010000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DEASSIGN_DEV_IRQ(r1, 0x4040ae75, &(0x7f0000010000)={0xfff, 0x0, 0x11da, 0x100})
mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x3)
mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000009000-0x4)=0x0)
mmap(&(0x7f0000011000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000011000)="")
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x0, 0x32, r0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f000000f000-0x6)="2f6465762f6b766d00", 0x240000, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f000000f000)={0x3, <r3=>r0, 0x0})
mmap(&(0x7f0000010000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000010000)={0x7fff, 0x7})
2017/08/11 22:10:52 executing program 3:
mmap(&(0x7f0000000000/0x64000)=nil, 0x64000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000011000-0xc)={0xef, 0x0, 0x3ff})
r2 = eventfd2(0x8000000003, 0x1)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f000000d000-0x70)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f000003e000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000065000-0x20)={0xf000, 0x0, 0x2, 0x7f, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000064000)=0x2)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000006000)={0x0, &(0x7f000002d000)=0x0, 0x200000000000000, r2, 0xa})
mmap(&(0x7f0000064000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0xfffffffffffffffe)
mmap(&(0x7f0000065000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000065000)=@pic={0x9, 0x8001, 0x4, 0x20, 0x1000, 0x7, 0x8, 0x0, 0x6, 0x7, 0x0, 0x0, 0x9, 0xff, 0x2, 0x9})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000064000)={0x3, &(0x7f000002d000)=0x0, 0x2, r2, 0x100000003})
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f000004e000)=0x7)
2017/08/11 22:10:52 executing program 0:
mmap(&(0x7f0000000000/0x24000)=nil, 0x24000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f000001e000-0x20)={0x0, 0x3, 0x0, 0x1000, &(0x7f0000005000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f000001d000-0x18)=[@text64={0x40, &(0x7f000001c000)="5561768db3e6122d41a5c68a561d07d0bd937869ecfcda6fdac7109d23a756c3a66c647ccfbf3f36330f1dfe523e674af213b56fad718020c21915b1c4b1a37bfb1119ef6477d2d5992cf4079aa6fc2b7e2243ae91c0ca941773350bb4a9157016188f88", 0x64}], 0x1, 0x0, &(0x7f000001c000)=[], 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000002000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0xe0000021, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000018000-0x20)={0x10003, 0x0, 0x0, 0x2000, &(0x7f000000d000/0x2000)=nil})
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000023000-0xd8)=@pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f000001f000)={0x4, 0x0, &(0x7f000001c000/0x4000)=nil})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000003000/0x18000)=nil, &(0x7f0000014000)=[@text64={0x40, &(0x7f0000007000-0x49)="66baf80cb8f0e82d8def66bafc0cb800000000efb8010000000f01c1480f074b0f01c866baa00066ed2e430f01c9664f0f38808cca0f000000c4a2f91e1366ba420066ed4d0f005581", 0x49}], 0x1, 0x9, &(0x7f0000022000)=[], 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000023000)={0x0, 0x0, 0x0, 0x0, 0xffff})
2017/08/11 22:10:52 executing program 4:
mmap(&(0x7f0000000000/0xaf1000)=nil, 0xaf1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f000019b000)={0x0, 0x10000000, 0xfffffffffffffffe, &(0x7f000038d000)=0x0})
ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f00005d1000-0xc)={0x2, <r0=>0xffffffffffffffff, 0x0})
mmap(&(0x7f0000291000/0x8000)=nil, 0x8000, 0x4000000003, 0x32, r0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f000034f000-0x9)="2f6465762f6b766d00", 0x1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_GET_XCRS(r3, 0x8188aea6, &(0x7f0000386000-0x38)={0x3, 0x8001, [{0x3, 0x0, 0x7}, {0x4, 0x0, 0x7}, {0x80, 0x0, 0x9}]})
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_S390_UCAS_UNMAP(r6, 0x4018ae51, &(0x7f000017a000)={0x400, 0x6, 0x200})
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text64={0x40, &(0x7f000017c000)="66baf80cb800d0d883ef66bafc0c66edc74424003fd1ce03c744240200300000c7442406000000000f0114244c351e0000008f491099bc9c040726294cc1eddac7442400ba000000c7442402fa7f0000ff1c24c45fe2daf52500dd000000442400e99eefbac744240200000000c7442406000000000f011424c4431d4a8c28000000000066f93c0c", 0x88}], 0x1, 0x0, &(0x7f0000ae1000)=[@cr0={0x1, 0x0}], 0x1)
mmap(&(0x7f00000a6000/0x1000)=nil, 0x1000, 0x3, 0x20032, 0xffffffffffffffff, 0x0)
ioctl$KVM_X86_SET_MCE(r6, 0x4040ae9e, &(0x7f0000ae8000-0x40)={0x4000000000000000, 0x6000, 0x200, 0x2, 0x20, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text32={0x20, &(0x7f0000ae4000-0x74)="b9dd0b0000b871d90000ba000000000f30650f2181b8e90000000f23d80f21f835000000b00f23f8c4c2d5a602c744240000000000c744240276540000c7442406000000000f011424363e3e0f01d1c4c101f45b0c66baf80cb8a4e73281ef66bafc0cedc4e27959af8cc60000b92a0800000f32", 0x74}], 0x1, 0x0, &(0x7f0000ae1000)=[@cr4={0x2, 0x0}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap(&(0x7f0000309000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000002000-0x8)=0x0, 0x2, 0x2)
2017/08/11 22:10:52 executing program 2:
mmap(&(0x7f0000000000/0xafa000)=nil, 0xafa000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f000050f000)={0x9, 0x3cca})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000274000/0x18000)=nil, &(0x7f0000afa000)=[@text64={0x40, &(0x7f000099d000-0x64)="b6c3f8e788595dc51ba31779d22e2453ab6fe204d8cb17bc3c4ab8e3e0483b9931418b5c1612cb68cb1f08acd613883205213823efd610026d3b892f9ecf43c837882ddb41cb3a22a62644cc9081d865b5c7d6d371bfbc1b7da5ab28911fcb5667d0b08b", 0x64}], 0x1, 0x42, &(0x7f0000aeb000+0x7dc)=[], 0x0)
mmap(&(0x7f0000afa000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000afa000)={0x3, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0]}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00006b4000)=@ioapic={0x2, 0x0, 0x0, 0x4, 0x0, [{0x3, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x6}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0xe2, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x6, 0x0, [0x0, 0x0, 0x0, 0x0], 0x7}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x1, 0x4, 0x3, [0x0, 0x0, 0x0, 0x0], 0x80000001}, {0x5d9a, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x5, 0x2, 0x7f, [0x0, 0x0, 0x0, 0x0], 0x40}, {0x9, 0x3f, 0x1, [0x0, 0x0, 0x0, 0x0], 0x9}, {0x9, 0x1, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x4}, {0x0, 0x9, 0x5, [0x0, 0x0, 0x0, 0x0], 0x20}, {0x100000000, 0x6, 0xffff, [0x0, 0x0, 0x0, 0x0], 0x3}, {0x80000000, 0x10001, 0x8, [0x0, 0x0, 0x0, 0x0], 0x1ff}, {0x7fffffff, 0x9, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x5}, {0xfffffffffffffffc, 0x1, 0xffffffffffffffe1, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x3, 0x6, 0xe945, [0x0, 0x0, 0x0, 0x0], 0xfff}, {0xfffffffffffff135, 0x6, 0x8000, [0x0, 0x0, 0x0, 0x0], 0x8001}, {0x5bd, 0x3f, 0x7ff, [0x0, 0x0, 0x0, 0x0], 0x10001}, {0x400, 0x4, 0x9, [0x0, 0x0, 0x0, 0x0], 0x5d1f}, {0x100, 0x7f, 0xfffffffffffff801, [0x0, 0x0, 0x0, 0x0], 0x8}, {0x5, 0x3f, 0x6, [0x0, 0x0, 0x0, 0x0], 0x1e71}, {0x3, 0x6, 0x6, [0x0, 0x0, 0x0, 0x0], 0x5}]})
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000326000)={0x3f, 0x1})
2017/08/11 22:10:52 executing program 7:
2017/08/11 22:10:52 executing program 7:
mmap(&(0x7f0000000000/0x2a000)=nil, 0x2a000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000029000)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x3, 0x3, 0x3, 0x0, 0x7ff, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, [0x0, 0x0, 0x0]}, {0x0, 0x0, [0x0, 0x0, 0x0]}, 0x0, 0x0, 0x0, 0x540, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000017000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000017000)={{0x106000, 0x0, 0x0, 0x0, 0x0, 0x6000000000000000, 0x4, 0x8001, 0x1, 0x1f, 0x2, 0x6585099f, 0x0}, {0x3, 0xf000, 0x0, 0x9, 0x100000001, 0x2, 0x1f, 0x10000, 0x2, 0x8, 0x120000000, 0x2, 0x0}, {0x0, 0x6000, 0xe, 0x8, 0x4, 0x400, 0x800, 0x1f, 0x4, 0xfffffffffffffffc, 0x289, 0x2, 0x0}, {0x4000, 0x4, 0xe, 0x5, 0x20, 0x0, 0x3, 0x80000000, 0x4, 0x7, 0x1, 0xfffffffffffffffd, 0x0}, {0x4, 0x4000, 0xf, 0x3, 0x9f99, 0x1, 0x6d0, 0xfffffffffffffffe, 0x80, 0x9, 0x5, 0x400, 0x0}, {0x4000, 0x1f000, 0xb, 0x7fffffff, 0x3, 0x4, 0x7, 0x5, 0x100000001, 0x9, 0xff, 0x5, 0x0}, {0xd001, 0x5000, 0x0, 0x100000000, 0x101, 0x6, 0x200, 0x7, 0x3, 0xfffffffffffffc00, 0x5, 0x4, 0x0}, {0xf000, 0x3000, 0x0, 0x0, 0xf87b, 0x5, 0x8, 0xff, 0x4, 0x40, 0x7fffffff, 0x6, 0x0}, {0x1, 0x2, [0x0, 0x0, 0x0]}, {0x6000, 0x5000, [0x0, 0x0, 0x0]}, 0x4, 0x0, 0x0, 0x2000, 0x6, 0x8000, 0x2, [0x5, 0x100, 0x4, 0x8]})
ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000006000-0x28)={0x2, 0x5, [{0x6c, 0x0, 0xf859}, {0x7, 0x0, 0x10000}]})
mmap(&(0x7f000002a000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f000002b000-0x38)={0x1, 0x0, [{0x6, 0x2, 0x0, 0x0, @sint={0x5, 0x0}}]})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f0000024000-0x18)=[@text32={0x20, &(0x7f0000025000-0x64)="66b80d018ed00f21d3dfebc7442400de5f0000c7442402cc9e557bc7442406000000000f011c24c744240027610000c7442402dca79e83c7442406000000000f011c24b9a40b00000f32f2afb805000000b9fd1200000f01d90fc72d4000000066b809008ee0", 0x66}], 0x1, 0x0, &(0x7f0000013000)=[], 0x0)
2017/08/11 22:10:52 executing program 6:
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00004fd000)={0x7, 0xffffffffffffffff, 0x0})
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(0xffffffffffffffff, 0xae03, 0x4)
mmap(&(0x7f0000000000/0xae3000)=nil, 0xae3000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
mmap(&(0x7f0000ae3000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000ae4000)=0x3)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000ae4000-0x20)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000055000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00003ba000/0x18000)=nil, &(0x7f000018e000)=[@textreal={0x8, &(0x7f0000ae4000)="3e0f001b66b9800000c00f326635010000000f30d88a45000f32b800018ec80f23b9360ff9c3662664f2addd8f0900f30f5805", 0x33}], 0x1, 0x0, &(0x7f0000adf000)=[@flags={0x3, 0x2c32ef086520573a}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x6}], 0x2)
mmap(&(0x7f0000000000/0xae0000)=nil, 0xae0000, 0x3, 0x4d031, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 3:
mmap(&(0x7f0000000000/0xaf1000)=nil, 0xaf1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000025000-0x9)="2f6465762f6b766d00", 0x404, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000020000-0x13)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae0000-0x9)="2f6465762f6b766d00", 0x8000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000ade000-0x40)={0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_PPC_GET_PVINFO(r3, 0x4080aea1, &(0x7f000014b000)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f00003b8000/0x18000)=nil, &(0x7f0000ad1000)=[@textreal={0x8, &(0x7f0000ae7000-0x37)="ba43000f20c0b8eecbeecbdfd200000f230f21f86635800000a00f23f865640f019809000fbf56020f35defedbe20fc79f00000f330fbaf601", 0x39}], 0x1, 0x0, &(0x7f0000ae4000)=[], 0x0)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f000054d000-0x70)={[{0x6, 0x6118201, 0x25, 0x8000, 0xc611, 0x9, 0x8, 0x4, 0x6, 0x5, 0x20, 0x84, 0x3}, {0x1000000000000400, 0x2ab000, 0x500, 0xed5, 0xffffffff, 0x6, 0x40, 0x5, 0x312, 0x4, 0x4c8, 0x3f, 0x1}, {0x82f, 0x0, 0x80, 0x0, 0xe, 0x4, 0x7f, 0x4000000000000003, 0x1d, 0x0, 0x1a3b374d400, 0x100, 0x7}], 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000005000-0x9)="2f6465762f6b766d00", 0x1ffffc, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x3)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00001fb000/0x18000)=nil, &(0x7f0000adf000)=[@text64={0x40, &(0x7f000022a000)="b9800000c0b98f0400000f3235008000000f3048b89e000000000000000f23d80f21f835c00000300f23f8662e64314d00400f9bf2f26cc740442400df0000000044240200000080c7442406000000040f011c246564f20f1bffc4e3bd78ca08430f01cfb9940000400f32", 0x6b}], 0x1, 0x0, &(0x7f0000230000)=[], 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f00002e0000-0x9)={0x0, 0x12000, 0x0})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000a97000/0x18000)=nil, &(0x7f00002d7000)=[@textreal={0x8, &(0x7f00000ba000-0x4c)="66b8e70000000f23c80f21f86635040000000f23f80f18ae050066b90d03000066b80d00000066ba000000000f30660f38311d2099d0f6da9c060064260f005800f26f0f01c83667360f01d1", 0x4c}], 0x1, 0x4, &(0x7f0000af0000)=[@cr0={0x0, 0x40028}], 0x1)
mbind(&(0x7f00007d8000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000af1000)=0x100000000, 0x801, 0x4)
2017/08/11 22:10:52 executing program 2:
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001000-0xc)={0x2, <r0=>0xffffffffffffffff, 0x0})
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x1877)
mmap(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x3, 0x31, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000000f000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x400000000001)
mmap(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x2000004, 0x50, r0, 0xb)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003000)="2f6465762f6b766d00", 0x581001, 0x0)
mbind(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x8002, &(0x7f000000c000-0x8)=0xef3d, 0x5d4, 0x1)
mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000005000-0x8)=0x9, 0x7f, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f0000006000-0xfa)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000")
mmap(&(0x7f0000010000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000011000-0x8)=0x6, 0x1, 0x0)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f000000c000)={0x7, <r2=>r1, 0x1})
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000002000-0x68)={0x2, 0x0, [{0x100, 0x2, 0x0, 0x0, @adapter={0x2, 0x1, 0x400, 0x3, 0x240000}}, {0xd93d, 0x7, 0x0, 0x0, @adapter={0xbc, 0x5, 0x5, 0x800000000, 0xecb8}}]})
mbind(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x5, &(0x7f000000d000-0x8)=0x0, 0x2, 0x3)
2017/08/11 22:10:52 executing program 1:
mmap(&(0x7f0000000000/0xae5000)=nil, 0xae5000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000aeb000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xff8000)=nil, 0xff8000, 0x6, 0x8071, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000d3a000/0x4000)=nil, 0x4000, 0x9)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4000000000000000)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x0, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f00001f2000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae5000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000ae6000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
read$eventfd(r4, &(0x7f0000aa7000-0x8)=0x0, 0x8)
ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000960000)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}], 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
mmap(&(0x7f0000ae6000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000ae8000-0xc)={0x6, <r7=>r0, 0x1})
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ae7000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r7, r3, &(0x7f000009e000/0x18000)=nil, &(0x7f0000ae7000)=[@text32={0x20, &(0x7f00002f8000)="2e0f229fc4c17917493b2ef20f708e5c0000001c36660f2eb772ffffff0f0137c4e1956b0dc104000066b895008ed80f3805d80f09f30f12c8", 0x39}], 0x1, 0x0, &(0x7f0000ae7000)=[], 0x0)
ioctl$KVM_S390_VCPU_FAULT(r7, 0x4008ae52, &(0x7f0000ae6000)=0x2)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000777000)=[@text64={0x40, &(0x7f0000add000)="66b834010f00d026656766480f388274fb6a3e4c0f01cbc4820dbe75fac4e3fd6d0d5f090000803e360f01d1c4e139586d0036f2410f5934f066baf80cb822eaf082ef66bafc0cb062eec744240074240000c744240252000000c7442406000000000f011424", 0x66}], 0x1, 0x41, &(0x7f0000ad8000)=[], 0x0)
eventfd2(0x44e7, 0x80001)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000ff9000-0xd8)=@ioapic={0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}, {0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0], 0x0}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000ff8000)={[{0x10000, 0x2, 0x1, 0x5, 0x6, 0x5, 0x7f, 0xfff, 0x80000000, 0x4, 0x20, 0xffffffffffffff7f, 0x401}, {0x80, 0x100000000000, 0xffffffffffffffff, 0x6, 0x6, 0xfffffffffffffffa, 0xffffffffffffc3af, 0x8, 0x6, 0x10001, 0x0, 0x4, 0x7fffffff}, {0x1ff, 0x10001, 0x1544119e, 0x9, 0x0, 0x80, 0x3, 0x80, 0x6, 0x3ff, 0xffffffffffffffe1, 0x3, 0x401}], 0x5, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
2017/08/11 22:10:52 executing program 5:
mmap(&(0x7f0000000000/0xaed000)=nil, 0xaed000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000aec000)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000937000-0x28)={0x0, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000ae5000-0x48)={0x80003, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000aed000)={{0xf000, 0x4, 0x19, 0x7fffffff, 0x0, 0x8, 0x0, 0x97, 0x1, 0x6, 0x2, 0x4, 0x0}, {0x11000, 0x5, 0xf, 0x8, 0xffffffff, 0xfff, 0x4, 0x4, 0x7f, 0x7, 0x2, 0x9, 0x0}, {0x4, 0xf000, 0xf, 0x7f0000, 0x3ff, 0x3, 0xfe00000000000000, 0x3, 0x5, 0xfe0, 0x9, 0x1, 0x0}, {0xdc97dc77cb2c6988, 0x1f007, 0xf, 0x0, 0x5, 0x5, 0x3ad0, 0xffff, 0x3, 0x80, 0x800, 0x80, 0x0}, {0xd000, 0xf000, 0xf, 0x1, 0x5, 0x9, 0x7, 0x5, 0x401, 0x0, 0x1, 0x2, 0x0}, {0xfffe, 0x5000, 0x0, 0x5, 0x4, 0x81, 0xc9, 0x9, 0x4, 0x2, 0x7ff, 0x100000000, 0x0}, {0x7000, 0x0, 0xa, 0x4, 0x1000, 0xfffffffffffffffd, 0x8, 0x3, 0x2, 0x4e, 0x1ff, 0x1, 0x0}, {0x10d002, 0xf000, 0xd, 0x3, 0xa96, 0x8, 0x5439, 0x8cb, 0xfff, 0x7, 0x1, 0x7, 0x0}, {0x7002, 0x1, [0x0, 0x0, 0x0]}, {0x3000, 0x2, [0x0, 0x0, 0x0]}, 0x80000004, 0x0, 0xf006, 0x200000, 0x4, 0x8100, 0xf000, [0x1, 0x4411, 0xd, 0x81]})
mmap(&(0x7f0000aee000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000aee000)=[@text64={0x40, &(0x7f00009e1000-0xe)="f341882048b804000000000000000f23d00f21ef353000000b0f23f848831af34fdce436f3640f09260fbde65ef34da566baf80cb8b2c6be83efec0f22c40f0685", 0x41}], 0x1, 0x400065, &(0x7f0000ad8000)=[], 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000aed000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r3 = pkey_alloc(0x0, 0x2)
pkey_free(r3)
mmap(&(0x7f0000aef000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00001b3000/0x18000)=nil, &(0x7f0000ae1000)=[@text16={0x10, &(0x7f0000aee000-0x78)="6766c7442400009000006766c7442402050000006664c73524068d00000000000f011c240f0866b80f20d86635080000000f22d80000000f23d00f21f86735a630000066b91503000066b8d400000066ba000000000f3067f36d0f3266b97e0300000f3266b9760900000f32f22e0f001d0f183f66640f06", 0x78}], 0x1, 0x40, &(0x7f0000ae1000)=[], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
2017/08/11 22:10:52 executing program 2:
mmap(&(0x7f0000000000/0x67000)=nil, 0x67000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f000001d000)={0x0, &(0x7f000001d000)=0x0, 0x0, r2, 0x8})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000006000)={0x0, &(0x7f000002d000)=0x0, 0x0, r2, 0xa})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000064000)={0x0, &(0x7f0000067000-0x8)=0x0, 0x2, r2, 0x0})
[   52.622917] ------------[ cut here ]------------
[   52.627875] WARNING: CPU: 1 PID: 4428 at arch/x86/kvm/mmu.c:719 mmu_spte_clear_track_bits+0x366/0x400
[   52.637271] Kernel panic - not syncing: panic_on_warn set ...
[   52.637271] 
[   52.644631] CPU: 1 PID: 4428 Comm: syz-executor4 Not tainted 4.13.0-rc4-next-20170811 #1
[   52.652846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   52.662185] Call Trace:
[   52.664761]  dump_stack+0x194/0x257
[   52.668379]  ? arch_local_irq_restore+0x53/0x53
[   52.673066]  panic+0x1e4/0x417
[   52.676249]  ? __warn+0x1d9/0x1d9
[   52.679727]  ? show_regs_print_info+0x65/0x65
[   52.684218]  ? __warn+0x1a9/0x1d9
[   52.687666]  ? mmu_spte_clear_track_bits+0x366/0x400
[   52.692755]  __warn+0x1c4/0x1d9
[   52.696025]  ? mmu_spte_clear_track_bits+0x366/0x400
[   52.701113]  report_bug+0x211/0x2d0
[   52.704735]  fixup_bug+0x40/0x90
[   52.708093]  do_trap+0x260/0x390
[   52.711456]  do_error_trap+0x120/0x390
[   52.715335]  ? do_trap+0x390/0x390
[   52.718890]  ? mmu_spte_clear_track_bits+0x366/0x400
[   52.723978]  ? debug_check_no_locks_freed+0x3c0/0x3c0
[   52.729162]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   52.733997]  do_invalid_op+0x1b/0x20
[   52.737695]  invalid_op+0x1e/0x30
[   52.741134] RIP: 0010:mmu_spte_clear_track_bits+0x366/0x400
[   52.746824] RSP: 0018:ffff8801d42872f0 EFLAGS: 00010212
[   52.752172] RAX: 0000000000010000 RBX: 1ffff1003a850e60 RCX: ffffc900025d1000
[   52.759420] RDX: 000000000000096f RSI: ffffffff810f0436 RDI: ffffea000578d0cc
[   52.766668] RBP: ffff8801d4287408 R08: 0000000000000001 R09: 0000000000000000
[   52.773924] R10: ffff8801d42875a0 R11: 0000000000000003 R12: 40000001903bac77
[   52.781180] R13: 1ffff1003a850e64 R14: ffff8801d42873e0 R15: 00000000001903ba
[   52.788468]  ? mmu_spte_clear_track_bits+0x366/0x400
[   52.793578]  ? mmu_spte_update+0x220/0x220
[   52.797825]  ? check_noncircular+0x20/0x20
[   52.802047]  ? __put_compound_page+0xb0/0xb0
[   52.806441]  ? __lock_acquire+0x6aa/0x3bc0
[   52.810674]  drop_spte+0x24/0x270
[   52.814127]  kvm_zap_rmapp+0x7e/0xd0
[   52.817831]  ? drop_spte+0x270/0x270
[   52.821534]  ? __lock_is_held+0xb6/0x140
[   52.825582]  ? __pagevec_lru_add_fn+0x726/0xed0
[   52.830235]  ? rmap_walk_init_level+0x1a/0x200
[   52.834810]  kvm_unmap_rmapp+0x1d/0x30
[   52.838687]  kvm_handle_hva_range+0x3ed/0x6e0
[   52.843180]  ? kvm_zap_rmapp+0xd0/0xd0
[   52.847061]  ? shadow_page_table_clear_flood+0x5c0/0x5c0
[   52.852494]  ? kvm_mmu_notifier_invalidate_range_start+0x66/0x130
[   52.858714]  ? kvm_flush_remote_tlbs+0x150/0x150
[   52.863464]  ? lock_release+0xa40/0xa40
[   52.867429]  ? lock_release+0xa40/0xa40
[   52.871408]  kvm_unmap_hva_range+0x2e/0x40
[   52.875631]  kvm_mmu_notifier_invalidate_range_start+0x9a/0x130
[   52.881682]  ? kvm_flush_remote_tlbs+0x150/0x150
[   52.886429]  __mmu_notifier_invalidate_range_start+0x1cd/0x2d0
[   52.892399]  ? mmu_notifier_unregister_no_release+0x3f0/0x3f0
[   52.898288]  ? pagevec_lru_move_fn+0x1c8/0x250
[   52.902861]  ? get_kernel_page+0x110/0x110
[   52.907091]  unmap_vmas+0x14b/0x1b0
[   52.910712]  unmap_region+0x2b2/0x4f0
[   52.914510]  ? reusable_anon_vma+0x560/0x560
[   52.918909]  ? do_raw_spin_trylock+0x190/0x190
[   52.923481]  ? may_expand_vm+0x5ba/0x860
[   52.927544]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   52.932549]  ? trace_hardirqs_on+0xc/0x10
[   52.936689]  ? userfaultfd_remove+0x220/0x220
[   52.941166]  ? vmacache_find+0x61/0x270
[   52.945127]  ? vmacache_update+0xfe/0x130
[   52.949262]  ? find_vma+0x30/0x150
[   52.952793]  do_munmap+0x726/0xdf0
[   52.956340]  mmap_region+0x59e/0x15a0
[   52.960146]  ? SyS_brk+0x6f0/0x6f0
[   52.963672]  ? arch_get_unmapped_area_topdown+0xba/0x8a0
[   52.969119]  ? arch_get_unmapped_area+0x750/0x750
[   52.973950]  ? lock_acquire+0x1d5/0x580
[   52.977911]  ? vm_mmap_pgoff+0x198/0x280
[   52.981966]  ? selinux_mmap_addr+0x1f/0xf0
[   52.986189]  ? security_mmap_addr+0x79/0xa0
[   52.990499]  ? get_unmapped_area+0x265/0x300
[   52.994904]  do_mmap+0x69b/0xd40
[   52.998262]  ? mmap_region+0x15a0/0x15a0
[   53.002305]  ? vm_mmap_pgoff+0x198/0x280
[   53.006353]  ? down_write+0x120/0x120
[   53.010139]  ? security_mmap_file+0x14e/0x190
[   53.014632]  vm_mmap_pgoff+0x1de/0x280
[   53.018522]  ? vma_is_stack_for_current+0xa0/0xa0
[   53.023357]  ? trace_event_raw_event_sys_exit+0x260/0x260
[   53.028878]  ? kasan_check_write+0x14/0x20
[   53.033118]  SyS_mmap_pgoff+0x23b/0x5f0
[   53.037078]  ? find_mergeable_anon_vma+0xd0/0xd0
[   53.041812]  ? trace_hardirqs_on_caller+0x421/0x5c0
[   53.046806]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   53.051544]  SyS_mmap+0x16/0x20
[   53.054802]  entry_SYSCALL_64_fastpath+0x1f/0xbe
[   53.059539] RIP: 0033:0x4512e9
[   53.062793] RSP: 002b:00007f9eb44efc08 EFLAGS: 00000216 ORIG_RAX: 0000000000000009
[   53.070475] RAX: ffffffffffffffda RBX: 0000000000718000 RCX: 00000000004512e9
[   53.077807] RDX: 0000000000000003 RSI: 0000000000af1000 RDI: 0000000020000000
[   53.085051] RBP: 0000000000000086 R08: ffffffffffffffff R09: 0000000000000000
[   53.092296] R10: 0000000000000032 R11: 0000000000000216 R12: 00000000004b960f
[   53.099549] R13: 00000000ffffffff R14: 0000000020000000 R15: 0000000000002000
[   53.107508] Dumping ftrace buffer:
[   53.111111]    (ftrace buffer empty)
[   53.114788] Kernel Offset: disabled
[   53.118384] Rebooting in 86400 seconds..