# https://syzkaller.appspot.com/bug?id=2bf7b7983c2398ec6f0c4c6c87cb50223e8873f8 # See https://goo.gl/kgGztJ for information about syzkaller reproducers. #{Threaded:true Collide:true Repeat:true Procs:8 Sandbox:none Fault:false FaultCall:-1 FaultNth:0 EnableTun:true UseTmpDir:true HandleSegv:true WaitRepeat:true Debug:false Repro:false} mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000919000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f00008fa000)={0x79, 0x0, [0x0, 0x0, 0x0, 0x0], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$TIOCSBRK(r1, 0x5427) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000aaa000-0x8)=0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000c7b000)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000cdc000/0x2000)=nil}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000ebf000-0x400)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000007000-0x9)='/dev/ppp\x00', 0x2, 0x0) mprotect(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x0) ioctl$EVIOCGPROP(r3, 0xc004743e, &(0x7f0000001000)=""/246) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r4 = userfaultfd(0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x3, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) fcntl$lock(0xffffffffffffffff, 0x40e, &(0x7f0000491000)={0x1, 0x0, 0x0, 0x0, 0x0}) io_setup(0x5, &(0x7f0000916000)=0x0) readv(0xffffffffffffffff, &(0x7f000016b000-0x50)=[{&(0x7f0000d94000-0x22)=""/34, 0x22}, {&(0x7f000087d000-0x81)=""/129, 0x81}, {&(0x7f0000955000)=""/250, 0xfa}, {&(0x7f0000dea000-0xcb)=""/203, 0xcb}, {&(0x7f0000955000-0x69)=""/105, 0x69}], 0x5) r5 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000c5b000-0x11)='/selinux/relabel\x00', 0x2, 0x0) ioctl$KDADDIO(r5, 0x4b34, 0x200) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1, 0x0}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) clone(0x0, &(0x7f0000f39000)="", &(0x7f0000eaa000-0x4)=0x0, &(0x7f0000bf3000-0x4)=0x0, &(0x7f0000013000)='\f') ioctl$UFFDIO_ZEROPAGE(r4, 0x8010aa02, &(0x7f0000956000-0x10)={&(0x7f0000011000/0x3000)=nil, 0x3000})