# https://syzkaller.appspot.com/bug?id=389ea3bd2db54033d80e046b76e79adda09e5016
# See https://goo.gl/kgGztJ for information about syzkaller reproducers.
#{Threaded:true Collide:true Repeat:true Procs:1 Sandbox:namespace Fault:false FaultCall:-1 FaultNth:0 EnableTun:true UseTmpDir:true HandleSegv:true WaitRepeat:true Debug:false Repro:false}
mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = getpid()
r1 = gettid()
r2 = getpgrp(r1)
perf_event_open(&(0x7f0000349000-0x78)={0x2, 0x78, 0xdc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0xfe, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x78, 0x0, 0x0, 0x2, 0xfffffffffffffff9, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0xf560, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0}, r0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001000-0x9)="2f6465762f6b766d00", 0x2000, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0x8, 0x0)
r6 = eventfd2(0x8000000000800, 0x1)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000afd000-0x40)={0x7fffffff, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000b16000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000a8e000)="b9800000c00f3235002000000f308fe808a697598f515a22ea00300000e800c4e2f93169f60f01df0f23c3ded90f2118660f38152f660f38800c64", 0x3b}], 0x1, 0x40000060, &(0x7f00003b4000)=[], 0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f00003b9000)={r6, 0x1ff, 0x2, r6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
read$eventfd(r5, &(0x7f0000001000-0x8)=0x0, 0x8)
time(&(0x7f00009b9000)=0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000bfa000)={r5, 0x4, 0x2, r6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r8 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_GET_LAPIC(r8, 0x8400ae8e, &(0x7f0000ac8000)={"48634e364e5ceeef1683ec7734e0a9733dc8b636b1bca9b185e4c03811c850a4082c68173984a7ff3957c8f8515b3af08991b422877992269cec95d19222bb1eb55d1af7ac3c8d2fbe889621e2a76249dbef23ad3cf4049f41396ea9293a5c7230687be15c11f012351bc1a25f0a6549c1132231d323ee4708b35aec996507251431e1648c453560486610d5dd1d480c0ed5e0bbb4ca1d46ab5a723b8a700403b13856f83ca131bf4201a1e175b5b5824aa0b2733a65351883744ba6f0ee2f45bb06ad6a450b2d20324018e8d4f6c04b18b1a5797631ce7f67867959a6665e257dab0ba72e101b600759e5b050ea248f77491b1661935dea0429fba1a51206fdcf5305ab887657917a88a625bea2a472bbb2244efbac2824bbbfb68e2a269c2b87b4981f4bfaea14b95e67fbd302f7ea2f955683eeca2f2459418943d1b68655ddb03d614a8cadd54526dcb3586b24f264960d0359e53ff8793459ab7051b45254cf1e0edbaac448d6b1539be6e4535c6c2578c23108c0a4899b1403d7ed3d246015cb52e99fb81f5fe0973487966287b9d790ab49174f7c3a130c46f7c565083ba20e2961fb9f562ba001d62ebf5e7dfdea2349f4d94c6cef672afcdae93908691b014fc4500082bbc68ca57b304a05a36f2562502c6c51b219716a20c2e55ded85e98c7f75353baa5751a29adf9fc9955531b30d2330c0fb43b5db63e325f5ba6a0c228b6eacd852556c25e9a509635c2e9f5c3fd91add39b59712915ac212db30b8782a6ed9ea93d0ec5616f8856a8f4690a22b50d1bca5f0539c5b595dd1b88c369bfc74fdc2ea1101914373e0f82bdf712a18d959d38c1eeda6d7bda56c56b2cc5b5f48d4557c66ac8d8b19c4f21a0b05d0cb855c492c97e9646436895b89d43db246d908fafc5293665e12ddc6b6143852cc7bc5550cf5b12a5743b418e5d4cf3de7d6460e04d034efee590e40f85f4f4a1e669be0909a4a2b108b328ee579cb7f5ae5eb8288b10989063f33fa1b8c4cd473b298093515b2260a82565f3784d3b1a7858db4b8c3ef4f8768cef332cd409e579dbbe1951d92dc129fe25101ec4e6d553fe273c19c252b9118666f966cdd4687c187304d9efb5d1319ebc46a0a99e5686dfa4d1e519d6c0852a5dbc480a92fa9f9ed41710d2993bd751d03169bedbeb246b1d9158ba1a3877fe9d51ad3a2982f595e01ebe5b3a7a44a70af4b318bfaa16f6ad45c3344ac497c30611f7b01c707886d901532f5d7b427454ba6b32b51cab69915a79493bd675c21b8f1df572b7d76fe623b8595641ce468bb77f37682de79510b7be8a80a957b3518aef2d7282226cfbf425e7ba440a2ab630f176e2bf5e2ae7292e436300f63e79fb45e3bfd881b8a751d9cb4e17744649310e7df36732bd1f7e9cd4a3abc6d0a1036c82f1dc8f702c7c8c40ae614ec710a"})
ioctl$KVM_RUN(r7, 0xae80, 0x0)