# https://syzkaller.appspot.com/bug?id=6cecb54b907d08b41a3a54c20f86f8b3bcb813ed
# See https://goo.gl/kgGztJ for information about syzkaller reproducers.
#{"threaded":true,"repeat":true,"procs":8,"slowdown":1,"sandbox":"none","sandbox_arg":0,"close_fds":false,"tmpdir":true,"segv":true}
openat$vnd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$vnd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, 0x0)
r1 = socket(0x2, 0x3, 0x0)
ioctl$FIONREAD(r1, 0x802069c5, &(0x7f00000001c0))
fcntl$lock(r0, 0x9, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1000100000004})
r2 = socket(0x2, 0x1, 0x0)
r3 = dup(r2)
r4 = fcntl$dupfd(r3, 0x2, 0xffffffffffffffff)
r5 = open$dir(&(0x7f0000001240)='.\x00', 0x0, 0x0)
getuid() (async)
r6 = getuid()
fcntl$lock(0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x3, 0x1, 0x3ff, 0xfffffffffffffffa}) (async)
fcntl$lock(0xffffffffffffffff, 0x8, 0x0)
fchown(r5, r6, 0xffffffffffffffff) (async)
fchown(r5, r6, 0xffffffffffffffff)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000080)={{0x0, 0x0, 0x0, 0x0, 0x0, 0xb2}})
ioctl$VMM_IOC_CREATE(0xffffffffffffffff, 0xc5005601, &(0x7f0000000000)={0x10, 0x0, [{&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x41000}, {}, {0x0, &(0x7f0000ffb000/0x3000)=nil}, {&(0x7f0000fff000/0x1000)=nil}, {0x0, &(0x7f0000ffb000/0x1000)=nil}, {&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil}, {&(0x7f0000ffe000/0x1000)=nil}, {&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil}, {0x0, &(0x7f0000ffa000/0x4000)=nil}, {&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil}, {&(0x7f0000002000/0x1000)=nil, &(0x7f0000ff9000/0x6000)=nil}, {&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil}, {0x0, &(0x7f0000ffd000/0x3000)=nil}, {0x0, &(0x7f0000ffe000/0x2000)=nil}, {&(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil}, {0x0, &(0x7f0000ffd000/0x3000)=nil}], './file0\x00'})
openat$vmm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r7 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
setrlimit(0x0, &(0x7f0000000000)={0x1, 0x1}) (async)
setrlimit(0x0, &(0x7f0000000000)={0x1, 0x1})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$VMM_IOC_RUN(r7, 0xc2585601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0}) (async)
ioctl$VMM_IOC_RUN(r7, 0xc2585601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0})
close(0xffffffffffffffff) (async)
close(0xffffffffffffffff)
r8 = socket(0x18, 0x2, 0x0)
close(r8)
setsockopt$sock_int(0xffffffffffffffff, 0xffff, 0x1000, &(0x7f0000000000)=0x8, 0x4)
ioctl$TIOCSETA(0xffffffffffffffff, 0x802c7414, &(0x7f00000000c0)={0x0, 0x0, 0x240009, 0x0, "210e0aec328e7700000000000200"})
bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@abs={0x1f95d27d48731892, 0x7}, 0x1c)
connect$unix(r8, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c)
getsockopt(r4, 0xab, 0x4, &(0x7f0000000240)=""/244, &(0x7f0000000440)=0xf4)
r9 = socket(0x800000018, 0x1, 0x0)
setsockopt$sock_int(r9, 0xffff, 0x1000, &(0x7f0000000000)=0x7, 0x4) (async)
setsockopt$sock_int(r9, 0xffff, 0x1000, &(0x7f0000000000)=0x7, 0x4)
bind$unix(r9, &(0x7f0000000080)=@abs={0x1f95d27d48731892, 0x7}, 0x1c) (async)
bind$unix(r9, &(0x7f0000000080)=@abs={0x1f95d27d48731892, 0x7}, 0x1c)