last executing test programs:

1.948456943s ago: executing program 2 (id=7980):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x545082, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000040)={0x200000})
r2 = eventfd2(0x1, 0xc0801)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x22e40, 0x0)
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
ioctl$KVM_SET_TSC_KHZ_vm(r1, 0xaea2, 0x2)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, r4, 0x0, 0x12, r7, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, r4, 0x0, 0x13, r7, 0x0)
write$eventfd(r2, &(0x7f00000000c0)=0x2, 0x8)

1.854107829s ago: executing program 2 (id=7983):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_X86_SET_MCE(r5, 0x4040ae9e, &(0x7f00000010c0)={0x8380000000000000, 0xc000, 0xffffffffffffffff, 0x0, 0x2})
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r2, r6, &(0x7f000067d000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000300)="0f232566400f060f0766ba410066b82a0d66efb805000000b9eaea00000f01d9c4833d5d4cf50700b9800000c00f3235001000000f3048b800700000000000000f23c00f21f835010008000f23f8650f79ac5c077d0000f26d", 0x59}], 0x1, 0x4c, &(0x7f0000000380)=[@dstype3={0x7, 0xd}, @dstype3={0x7, 0xa}], 0x2)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2})
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_GUEST_MEMFD(r7, 0xc040aed4, &(0x7f0000000040)={0x200000})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_MEMORY_ENCRYPT_UNREG_REGION(r10, 0x4048aec9, &(0x7f0000000040)={0x1000, 0x201000})
write$eventfd(r8, &(0x7f0000000080)=0x2, 0xffffff43)

1.363875032s ago: executing program 2 (id=7988):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x400, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xda})
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000140)={0x9, 0x3})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f00000000c0)={0x81, 0x0, 0x1})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000540)=[@textreal={0x8, &(0x7f0000000040)="66b9b30a00000f3265660fc777172e6765660f38829c810000008098642e0f01c20f1142030f019508000fc7fef30fc77100", 0x32}], 0x1, 0x8, &(0x7f0000000580)=[@cstype3={0x5, 0xc}], 0x1)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r5, 0x4068aea3, &(0x7f0000000200)={0xbc, 0x0, 0x6})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000040)={0x200000})
write$eventfd(r7, &(0x7f0000000080)=0x2, 0xffffff43)

1.029526883s ago: executing program 0 (id=7989):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x1, 0x2000, 0x1})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x39)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
ioctl$KVM_GET_MSRS_cpu(r6, 0xc008ae88, &(0x7f00000002c0)={0x8, 0x0, [{0x26f, 0x0, 0xffffffff}, {0x916, 0x0, 0xdb}, {0xa45, 0x0, 0x6}, {0x2e4, 0x0, 0x5}, {0xa22, 0x0, 0x6}, {0xba1, 0x0, 0x400}, {0x0, 0x0, 0x5}, {0x210, 0x0, 0x4}]})
r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f0000000040)={0x200000, 0xf52})
write$eventfd(r7, &(0x7f0000000080)=0x2, 0x8)

1.02418337s ago: executing program 1 (id=7990):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
close(0xffffffffffffffff)
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000280)={0x2710, 0x4, 0xd000, 0x2000, &(0x7f0000895000/0x2000)=nil})

970.019333ms ago: executing program 2 (id=7991):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xc004ae02, 0x604000000000000)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_XCRS(r5, 0x4188aea7, &(0x7f0000000080)={0x5, 0x8001, [{0x9, 0x0, 0x7}, {0xf, 0x0, 0x3}, {0x7, 0x0, 0x401}, {0x2712, 0x0, 0x80000001}, {0x5, 0x0, 0x42}, {0x8005, 0x0, 0xe}, {0x2, 0x0, 0xff}, {0x7, 0x0, 0x1000000000}, {0x4, 0x0, 0x9}, {0x9, 0x0, 0x101}, {0x4, 0x0, 0x2}, {0x8, 0x0, 0x8}, {0x5, 0x0, 0x4}, {0x6, 0x0, 0x101}, {0x7, 0x0, 0x9}, {0x5, 0x0, 0x200}]})
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000080)="f06b1c42043a66edc199d0365e1fc8cc2316de5781473545efc9a6d0f29b068f26124a2eaedfadafa2ca98431c87eda900090000000000200000000000000000004400", 0x0, 0xfffffffffffffebe)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0x52)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r8, 0xc008ae88, &(0x7f0000000080)={0x2, 0x0, [{0x4000009e, 0x0, 0xe4}, {0xa27, 0x0, 0x2}]})
r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_XEN_HVM(r9, 0x4068aea3, &(0x7f0000000080)={0x26, 0x0, 0x60})
ioctl$KVM_CREATE_GUEST_MEMFD(r9, 0xc040aed4, &(0x7f0000000040)={0x200000})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r12, &(0x7f000066b000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000001b40)="650f2244650f019b6700f30fc7b20000baf80c66b817cfe48566efbafc0cb000ee0f3066b9800000c00f326635010000000f30baf80c66b83efa1b8166efbafc0cb88300ef65660fe7b470000fc76b0066b9800000c00f326635000100000f30", 0x60}], 0x1, 0x0, &(0x7f0000001bc0)=[@vmwrite={0x8, 0x0, 0x8, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1}], 0x1)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x1)
syz_kvm_setup_syzos_vm$x86(r14, &(0x7f0000672000/0x400000)=nil)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r15, &(0x7f0000711000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000040)="3e0f300f7974090f080fc7b6000093533030eb66b8010000000f01d9baf80c66382074c68c66b9800000c00f326635000100000f30bafc0cecf4", 0x3a}], 0x1, 0x4c, &(0x7f0000000040), 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)

861.228341ms ago: executing program 1 (id=7992):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000040)={0x200000})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)

861.098888ms ago: executing program 0 (id=7993):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r3, 0xc008ae88, &(0x7f0000000280)={0x7, 0x0, [{0x290, 0x0, 0x2}, {0x2a, 0x0, 0x2}, {0x34e, 0x0, 0x80000001}, {0xa3d, 0x0, 0x2b5}, {0xb77, 0x0, 0x1000}, {0x3bb, 0x0, 0xf}, {0xb22, 0x0, 0xfff}]})
write$eventfd(0xffffffffffffffff, &(0x7f0000000080)=0x2, 0xffffff43)

739.185948ms ago: executing program 1 (id=7994):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000700)={[{0x0, 0x8, 0x7, 0xa0, 0x41, 0x2, 0x1, 0x42, 0x7, 0x4, 0x1, 0xc, 0x6}, {0xe73f, 0x4, 0x3, 0x6, 0x0, 0x3, 0x7, 0x1, 0x5, 0xff, 0xc3, 0x8, 0x7}, {0x7, 0xf678, 0xc, 0x1, 0x40, 0x0, 0x7, 0x8, 0xc5, 0x0, 0xfd, 0x8, 0x6}], 0x6})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000600)={0x2, 0x0, [{0x1, 0x3, 0x1, 0x0, @msi={0xc5, 0x7ff, 0x0, 0x5}}, {0xf, 0x4, 0x0, 0x0, @sint={0x7, 0x101}}]}) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x36)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(r1, 0x4068aea3, &(0x7f0000000580)={0xc5, 0x0, r3}) (async)
r4 = ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece)
ioctl$KVM_CAP_X86_USER_SPACE_MSR(r4, 0x4068aea3, &(0x7f0000000680)={0xbc, 0x0, 0x4})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x0, 0x8080000, 0x7, 0x6, 0x29}) (async)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r6, 0x4068aea3, &(0x7f0000000180)={0xa8, 0x0, 0x2})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_SUPPORTED_HV_CPUID_sys(r7, 0x5460, &(0x7f0000000040)={0x7, 0x0, [{0x7, 0xc, 0x0, 0xff, 0x2, 0x3, 0xfb}, {0x4, 0x3, 0x0, 0xffffffff, 0x3, 0x309e, 0x6}, {0x80000001, 0x3, 0x2, 0x5, 0x88, 0xe, 0x401}, {0x80000019, 0x5, 0x0, 0x4, 0x0, 0x800, 0x3}, {0xa, 0x7, 0xc, 0x1, 0x8, 0x1000, 0x200}, {0x4, 0x0, 0x1, 0x2, 0xfffffff4, 0x7, 0xff}, {0x1, 0xa08e, 0xa, 0x400, 0x1, 0x7fff, 0x2}]}) (async)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_SUPPORTED_HV_CPUID_sys(r8, 0x4020940d, &(0x7f0000000040)={0x7, 0x0, [{0x7, 0xc, 0x0, 0x1, 0x2, 0x3, 0xfb}, {0x40000001, 0x3, 0x0, 0x3, 0x3, 0x309e, 0x6}, {0x80000001, 0x3, 0x2, 0x1, 0x88, 0xe, 0x401}, {0x80000019, 0x7fffffff, 0x0, 0x4, 0x0, 0x3, 0x80007fff}, {0xa, 0x7, 0xa, 0x1, 0x8, 0x1000, 0x200}, {0x4, 0x0, 0x1, 0x2, 0xfffffff3, 0x7, 0xff}, {0x1, 0xa08e, 0xa, 0x400, 0x1, 0x7fff, 0x2}]})
r9 = ioctl$KVM_CREATE_GUEST_MEMFD(r6, 0xc040aed4, &(0x7f0000000040)={0x200000})
write$eventfd(r9, &(0x7f0000000080)=0x2, 0xffffff43) (async)
close(r9) (async)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_X86_SET_MSR_FILTER(r11, 0x4188aec6, &(0x7f0000000b80)={0x1, [{0x3, 0x190, 0x200, &(0x7f00000000c0)="bbbbd700d8a6bc0e7e6404a2025ba379d240edece18d500137871c04d70eb5a4c3d3f7d49cfdbfae6871809eedd5f6e4572c"}, {0x3, 0x608, 0x3, &(0x7f0000000100)="49bf815405934c4dab77594989073edd4407b1f81c8df50315e78c7bcfcd4ecf7b2e239fbff35681d3630f74c81902fcb15b1084f17c459f388cc6900a59d0575db75561714300a9a5ebfa150e806640eb69e15faa4715028beb226951ef763d0b9b4a30382a1f640ce09a88249acb08c5902cd9fd3c758268d90aa848470f3a5a561ccc09579b67aea84052789d52e9d880e5a134c52b4b8894c13f57fae2ca4f88db32599fb28237214fbb47c1f030583c5a623d56eccd0afa4a3a204f8f0ec4"}, {0x3, 0x570, 0x6, &(0x7f0000000d80)="61879963c638921621d729885d7b8403e9c0939e01d65cd2c29be95462c75610bf5528ab6347fafeb999e8c5356bd3d8e7387164becde4d777984afe37a9598e4216bbc6ced4c46dfe5bda78366c34000aa2d1812a3bacf613557068dcdde053c8e94c5fdd48454e59796b5fac18f913e54dcd6163361c0c3279a0f05e243d8dff114e826dac81eb8a08fd2509e3e8fd819ad1e8a85804940bec87e408aac04779a3e432bc4337643b84ed4d2200"}, {0x2, 0x738, 0x6, &(0x7f0000000400)="5862ce27198e0bb160c38ec135a085c753fd5d7dc6fe74880637098c7e542ff86210943823688692f40756280019f64f1039b3f7abeea48a8863b7c60ff325298a71c43bd010dfd85789e03c7d2b9f374611e145742d6b142b61dcfa317d1c6715c472bd17fee88c484de447572ce179eebfed1bd3b4a28a35ae5ea85b94a7a9b8886359509ca9f332ec7db9f2805a66e8d2ca4532d967705aff544b775a20e297f3d2b9b258b1ce210a152cb0d5b5efc5a8fbc84fc8e33c2e6f50b6d8344ccbdcbf7eb00b7d30ccaba5b9ef206efc0f5417e1cfbb57f845d4920564e627f0af7ab75fdeab6deb"}, {0x2, 0x268, 0x0, &(0x7f0000000200)="074f1fb2b203c35de736714304901d6ac99bd6269b9349caa5cfd1be7905c76f43f40220096627fe45738051e996f1572680c98af07a299b3ab49d3049211b18a22231c6aa22290e76297a13c8"}, {0x1, 0x150, 0x5, &(0x7f0000000500)="cf27332556ac85d97ad60d91fcc12c53835bbec48105f79a6f64253f4f1f38478f0ed477af693bdb2c15"}, {0x3, 0x290, 0x6, &(0x7f0000000540)="8baac5d6d60a43ce2031a1e2e1004c9902d749fa3f9ae35ccfcf7a44e07536f5a916841a4db7766ddd83c0950a18710c42c34d817d25f4a5bb8ab11b853d417e4c95e2f4c917a9dd6349aeb013ca1ae5b694"}, {0x3, 0x488, 0x2, &(0x7f00000005c0)="f09932142beed8b7784020ce8c7114df10f91f49329800d024c11d537d757e310dc9eed86326ace1cb385250bc498203ec7827dc00a2a43710a69d77145dd61ed660d1411103935f5b577eec016cce0f683ba2782405168e1ae181a1449f271efe5074aa3f51a3a5c4bbe2edae3019e2b8915cd3aa1e008236f79c0c0584c8635d10da13f47968082fa7878ec6e2133f9e"}, {0x3, 0xb8, 0xe, &(0x7f0000000680)="a0dc229c8a9e2e60eb7f4c4cd0d928f3e1910d30425d25"}, {0x2, 0x318, 0xfffffffb, &(0x7f00000006c0)="9a9cbdc509653a83ca058cdff665d8b72c839c0050315ad40da09acee83fd626b69563cfe3a41599e59460188ffb99f73924773fccb8c9882a9a0091d05fe0a4c98654b494f34b71a14ca71c4907c91ab381b24090e8b1c99f842fc7d25303fe74bf4f"}, {0x3, 0x280, 0x2, &(0x7f0000000740)="5f4fccaf1c5b97ee520a6335e492730937f7307b1cf637e4959687761d1b16b85a552a28c973765052c5a6d5bc92e899269b45d39a6e4b938ca167b4f78826ad937ddd1145fec8aa77eef59c75208ade"}, {0x3, 0x4c0, 0x6d5, &(0x7f00000007c0)="902888ecb89dd4903d9b07fb431d772c1f3ea6e1ff7fa155a9c8fd871ea5a2f956b2a3c9ef2309f26fb1a9fc35a20e52e27cc8090e335cc63659f2a970347472a016b0dfde75bda4519e0c2a705420d8d737755f2b4594bf16e06984b59471c68615e57f973761893b3394af4467b910993f007bfdca190d8a2817b9849f0a9cd433248df504de6a2fee9429eb51836f1a3bb53d9b6baf8f"}, {0x1, 0x350, 0x3, &(0x7f0000000880)="dd7ae947815f31183d317af48aa4c7d42ba51d62e50933943757b221079b562d1435018ded2af8ee3594a4d03a2406ca5bd6728ac2f2b466a79de349eae9b7e4014d8a9320814955a465218c4bccba4c805b1feb6796cefe5bc1d04724a5f6666785390edaaf1f43696e"}, {0x2, 0x620, 0x5, &(0x7f0000000900)="ed2ed26f8b818fe4f250c0f9d8e99b66fb288ebad30fb9d6489688bbebab70919cf93eda76f7abb85fa274ec16a6d3a0a70325dba11b2838523169eaeed85282c7cf32ed76cce9d001654aef79f7778cc77abfafdbaa723d90529b6a3f28f388a4c92a7024c4d47e8e0444209e38b16deb69b7215b7131293c82de4327dc500c84aa85b503f72dd031eaaea6cfd2f5c1082cb6b2f098021d47a1104ae585cdd124b7662cf16ef175ade77d988be5d5c74064eaa71f86f4e788968b62ea47c3012f281b5b"}, {0x2, 0x610, 0xffffff53, &(0x7f0000000a00)="305e2d55b7525067848d05e2f05857bd41c10d1ec2da6436a4239594bc3300b7304a44347e0c3430633e1095ef6555e2c9f8b12e2262d06105f7a1931354f1c504da5ded933a4b052bbf2e8fb64974e03c0658b8958ef8339d74035e71743840c1e29d5e46b07e50a791cfd8d1241d79faebfeeb8e73fabbfd9343e79a96b9ea7058d7df144ce3351733493626e56aff8363ce3509f300a55bd07e17272a90bb552e86e1854a145a15b8870796a143c0661f88acc242f770c48c4e692d229267ea46"}, {0x3, 0x248, 0x5, &(0x7f0000000b00)="bcb0bd19dad9a6ab93d83b4872466af8b1c71728e32eb1be757d254a3e0dde40313bd35ef132b848c97073dc3b1ea81db674551a12beecfb2a89058ad3731a37599a18c45d95125ff2"}]}) (async)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
r12 = syz_kvm_add_vcpu$x86(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1400000000000000180000000000000004000000000000003200000000000000180000000000000000000040000000000a000000000000005800000000000000c48179e7a71c000000470f063666f2490faef2c462a1be3166b81f008ed8b9e0020000b8c5fedde9ba000000000f3066660f149e00000000f2adc4c1797eac7309000000f243a6c30a000000000000003f000000000000000f18d8b9020a00000f3267d900f30fbc77fd430f063e39599ec4e255b9dfb91f0001c00f324c0f6e00680c000000c31400000000000000180000000000000000800100aa00000032000000000000001800000000000000090b0000000000001400000000000000180000000000000006000000000000000a000000000000004b0000000000000066b807000f00d82e0f01c50f00d0b8010000000f01d967ad460f17400f01bf48f00000461bbb0041ca00b805000000b9040000000f01d90f01d1c3140000000000000018000000000000000500000009000000460000000000000020000000000000000400000000000000020000000000000000000000000000001800000000000000070000000000000014000000000000001800004000000000fd000000020000000a000000000000004e00000000000000b9f50800000f32f30f221c450f300f01cb66b86f008ee8410f08b805000000b9ea0000000f01d96464430f09b9800000c00f3235001000000f300f01c3c314000000000000001800000000000000000000f8800000000a000000000000005800000000000000d9a100000000b986090000b807250000ba000000000f3066baf80cb80c1af380ef66bafc0c66ed0f073e420f23cdc42205de48efc4e1d5752f400fc7762c470fb91bccc1de0fcc6fc54105da7f0900000000000000c31e000000000000002000000000000000000014000000000000001800"/696], 0x2b8})
ioctl$KVM_GET_CPUID2(r12, 0xc008ae91, &(0x7f0000000500)={0x2, 0x0, [{}, {}]})

649.974989ms ago: executing program 0 (id=7995):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20300, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(0xffffffffffffffff, 0xc008ae05, &(0x7f0000000600)={0x3, 0x0, [{0x40000000, 0x0, 0x3, 0x1, 0xf8d6, 0x1, 0x2d1}, {0x80000008, 0x8, 0x1, 0x100, 0x2, 0x6, 0x37}, {0x80000007, 0x3, 0x4, 0x3, 0x2cb6, 0xfffffff7, 0x2}]})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x60080, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0xd)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
ioctl$KVM_GET_MSRS_cpu(r7, 0xc008ae88, &(0x7f00000005c0)={0x3, 0x0, [{0x961, 0x0, 0x7}, {0x920, 0x0, 0x7}, {0xc0011039, 0x0, 0x4000008}]})
ioctl$KVM_HAS_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f0000000700)=@attr_other={0x0, 0x1, 0x20017ce6, &(0x7f0000000240)=0x3})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
eventfd2(0x9, 0x80001)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000580)=@attr_other={0x0, 0x800, 0x1ff, &(0x7f0000000540)=0x6})
ioctl$KVM_SET_LAPIC(r10, 0x4400ae8f, &(0x7f0000000140)={"862d067430b5b93611927f488c6f265144671fb554ce925e49bcdf0fb271e124f30914debd9dfcefc0138ac67d0ceaac399e84e8d110fd6c94390e0ca2c66cbd02f145da0f421e144c6a9b56deef6beeb7ea6d7b0d1b6c0f8b67347cf8d32a5e42efe1617a7333396ecc0ce978302c8fcbc8d55a34bbff551a76e930c802f193c6c1cd423d48138e213d5c564a0f99aea20ce0da3faf5df5d79ff03d9f56cb1ea9124593ddabdd8020bc9714f9fb147bf8a2932e4e73328df7c56b2b7d47f4d71a1a862d5081ddc28bbb482f63dbdc12549c501129a07e1f705e54e814a3f04b2c8020e728ac0d2cbd0c4c51b3ee2e5daedd0ffdd586fe7012415713cb52ab4643a8f068d97748f60ea94596be99e65e085cf41284f669683dc884971e6f57f925b5607a7dfed923e4856dee27efe7d051bb38d776ef51b71f91eb66b20443d903d349095d3342f6a4bcbf478b4642df12bdf983b16820f1d915c5d7b1066497307b65f5f6e95628e78a46ebe6493e3fb08f71d824305776b8120000000000000067871af9747120d01aa8568e52dd8137c198fdd525f5149e7aff93b508ad16aefa463bff8105a978e33efb8551dda70b10b17daa8431df5df82359f962ddf2a2be3601000000000000000feaec680022eb974acea62e89af73e45654aec6d43293672b8305ea482a9929be377f0a9e25a0e6b007543c02b5abaa0bb76844a2f30223a5f71b6bf4e2fc824771754c608c02d93b967a4a5deaecf989e93e731f1073f367086669b1c943aae858bfd874a4f5f3fd072ef24017c7165e7ec70def63d8c1b12677659814a6dc862e86d8daee838ee78ff4d4867fb8c6a89e11734853436cb2b9c2fba0396584ec29f56e844d8549f85440a6353799fc270fda52531e6e2d6dc7e544e23d358e780727aeaaa11d7785868ead7f2c72e114139043235c4603b7122190906a7d6a6a816cf31b92bb16b34a8be83a2570b7695ac840be088584e5b619503ec8d62950e9c42ab24dd67a365f55290e2bbaa7e6a2b1ae36426033aad9f0e48adff9837e04f7bba7af7142c4215aa5da86caeff5dce0924f32034cc3c411d45dbf4cbfa406cce33c44873071192aa962b94e28ff8e654c667b132f29bc733dd518321c5c65c551c7bb61841d078785da101e2bbf8c490a05f5c4dc1ba9155ab04c6319ca4cac24bccc72d5973725e777da6bb9a8d8dacc1b82deeb675ed7ebe330c54f854184707ba44856f0a923fefc3edcff10d66d2e638bbba5882417f7aba40e5745a45c199c6374299c417c4b00b17eea27d59bc984513becb96c5b556f56da55c9b51f321269a530541b71e6e12296f7b10c9ca0b3cfc56c5c9db29807f14e795ea9160e9008c05631173f0f7c761ad4f073aad175f928d31035388032e6f7db5e09d0ce048204de8d3886b200"})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000280)=ANY=[])
ioctl$KVM_GET_SREGS(r7, 0x8138ae83, &(0x7f0000000880))
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x6000, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)
r16 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0xffffffffffffffff)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r16, 0x4018aee1, &(0x7f0000000300)=@attr_pvtime_ipa={0x0, 0x1, 0x1, 0x1})
ioctl$KVM_X86_SET_MCE(r16, 0x4040ae9e, &(0x7f00000000c0)={0x8780000000000000, 0x1, 0x40000000, 0xa, 0x10})
r17 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r17, 0xc040aed4, &(0x7f0000000040)={0x0, 0x8000000000000001})

591.081468ms ago: executing program 2 (id=7996):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000100)={0x6, 0x0, [{0xda0, 0x0, 0x5}, {0x309, 0x0, 0x7}, {0x0, 0x0, 0x4}, {0x830, 0x0, 0x6}, {0x910, 0x0, 0x5}, {0xa40, 0x0, 0x10001}]})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000723000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000480)="470f01c8f3b8008000000f01c166420f388140ff66440f3882b30018000066b83c000f00d88ffb9ab9800000c00f3235000400000f30c4c48231f77e09", 0x3d}], 0x1, 0x48, &(0x7f0000000080), 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_MEMORY_ENCRYPT_REG_REGION(r2, 0x8010aebb, &(0x7f0000000080)={0xdddd1000, 0x3000})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_MSR_FEATURE_INDEX_LIST(r7, 0xc004ae0a, &(0x7f0000000180)={0x16, [0x0, 0x0, 0x0]})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r9, r10, &(0x7f000066a000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f00000001c0)="0f20e06635000010000f22e00fc7350f01dc6766c7442400008000006766c7442402153050376766c744240600000000670f0114240f017a2d66b9800000c00f326635000100000f30c4e295dccef30f0866b9800000c00f326635000800000f30670f2203", 0x65}], 0x1, 0x4, &(0x7f00000000c0)=[@cr0={0x0, 0x1}, @cstype0={0x4, 0x2}], 0x2)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_MSR_FEATURE_INDEX_LIST(r14, 0xc004ae0a, &(0x7f0000000180)={0x16, [0x0, 0x0, 0x0]})
ioctl$KVM_SET_MSRS(r13, 0x4008ae89, &(0x7f0000000180)=ANY=[])
r15 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r15, 0xc040aed4, &(0x7f0000000040)={0x200000})

590.578119ms ago: executing program 1 (id=7997):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_SUPPORTED_HV_CPUID_sys(r0, 0x40086602, &(0x7f0000000040)={0x7, 0x0, [{0x7, 0xc, 0x0, 0xff, 0x2, 0x3, 0xfb}, {0x4, 0x3, 0x0, 0xffffffff, 0x3, 0x309e, 0x6}, {0x80000001, 0x3, 0x2, 0x5, 0x88, 0xe, 0x400}, {0x80000019, 0x5, 0x0, 0x4, 0x0, 0x800, 0x3}, {0xa, 0x7, 0xc, 0x1, 0x8, 0x1000, 0x200}, {0x4, 0x0, 0x1, 0x2, 0xfffffff4, 0x7, 0xff}, {0x1, 0xa08e, 0xa, 0x400, 0x1, 0x7fff, 0x2}]}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2}) (rerun: 32)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r6, 0xc008ae88, &(0x7f0000000180)={0x4, 0x0, [{0x289}, {0x306}, {0xd90, 0x0, 0x8}, {0x8db, 0x0, 0x7}]}) (async)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r2, 0x8008ae9d, &(0x7f00000001c0)) (async, rerun: 64)
r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f0000000040)={0x200000}) (rerun: 64)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60) (async)
ioctl$KVM_CREATE_PIT2(r9, 0x4040ae77, &(0x7f0000000040)={0x8}) (async)
ioctl$KVM_SET_PIT2(r9, 0x4070aea0, &(0x7f0000000200)={[{0x4, 0xf6a6, 0x40, 0x8, 0x8, 0x5, 0xc, 0x10, 0x9a, 0x24, 0x7, 0x1, 0xfb3e}, {0xfff, 0x0, 0x7, 0xfc, 0x4, 0x82, 0x6b, 0xf, 0x95, 0x8, 0x1, 0xff, 0x7}, {0xc2, 0x7, 0x7, 0xda, 0x4, 0x2, 0x70, 0x8, 0x1, 0x2, 0x9, 0xc, 0x7}], 0x5})
ioctl$KVM_SET_PIT2(r9, 0x4070aea0, &(0x7f0000000180)={[{0x100200, 0xf, 0x71, 0x4, 0x6, 0xf2, 0x1, 0x0, 0x6, 0x0, 0x29, 0x6, 0xe}, {0x8, 0x6, 0x7, 0xff, 0x5, 0x2, 0x8, 0xa, 0x88, 0x80, 0xfd, 0x0, 0xfffffffffffffff8}, {0xffff0000, 0x1, 0xd1, 0x7f, 0x1, 0x0, 0xe, 0x99, 0xff, 0x4, 0x1, 0x0, 0x6}], 0x5}) (async, rerun: 64)
write$eventfd(r7, &(0x7f0000000080)=0x2, 0xffffff43) (rerun: 64)

387.843942ms ago: executing program 1 (id=7998):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000193000/0x400000)=nil)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f00000003c0)={0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x338})
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f0000000040)={0x5, 0x0, [{0x40000001, 0x1227, 0x39, 0x54, 0x8}, {0xc0000014, 0x6, 0x2, 0x10, 0xfffffffb}, {0x1, 0xf, 0x1, 0x9000, 0x7}, {0xb, 0x4, 0x0, 0x1, 0x3}, {0x5, 0x0, 0x7, 0x5, 0x8}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

321.480348ms ago: executing program 0 (id=7999):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000040)={0x200000}) (async)
r2 = eventfd2(0x27d083e, 0x1)
write$eventfd(r2, &(0x7f00000000c0)=0x8, 0x88ca08e8)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x7, 0xd000, 0x0, r2, 0xc})

230.041117ms ago: executing program 1 (id=8000):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1d)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$x86(r2, &(0x7f0000b5f000/0x400000)=nil)
syz_kvm_setup_syzos_vm$x86(r2, &(0x7f00009c8000/0x400000)=nil)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, r5, 0x1, 0x4d230, 0xffffffffffffffff, 0x0)
r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f0000000000)={r3, 0x1})
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f00000000c0)={0x4, 0x2})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2})
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_GUEST_MEMFD(r8, 0xc040aed4, &(0x7f0000000040)={0x200000})
write$eventfd(r9, &(0x7f0000000080)=0x2, 0xffffff43)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1d) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
syz_kvm_setup_syzos_vm$x86(r2, &(0x7f0000b5f000/0x400000)=nil) (async)
syz_kvm_setup_syzos_vm$x86(r2, &(0x7f00009c8000/0x400000)=nil) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) (async)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, r5, 0x1, 0x4d230, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) (async)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f0000000000)={r3, 0x1}) (async)
ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f00000000c0)={0x4, 0x2}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f0000001040)={0x8780000000000000, 0x2, 0x7, 0x6, 0x2}) (async)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_GUEST_MEMFD(r8, 0xc040aed4, &(0x7f0000000040)={0x200000}) (async)
write$eventfd(r9, &(0x7f0000000080)=0x2, 0xffffff43) (async)

179.964356ms ago: executing program 0 (id=8001):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000672000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, &(0x7f00000000c0)="66b829000f00d0c744240000000100c744240200000100b9310900000f320f011c240fb34cb09eb8010000000f01c13e64dce066ba42003636c03aa0c461fae61daa257171460f38cb9d00780000c4a2790ff7", 0x53}], 0x1, 0x54, &(0x7f0000000180), 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r2, r4, &(0x7f000066b000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, &(0x7f0000000180)="66ba430066edf30fc77092360f01dfc481f95d447e7cc4414df39380e50000c4c1fc50ff66baf80cb8feb93484ef66bafc0cb000ee66ba410066b8005066ef450fae1966baf80cb8d998a18eef66bafc0cb000ee", 0x54}], 0x1, 0x4c, &(0x7f0000000240), 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0xc7)
ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000000040)={0x200000})

485.804µs ago: executing program 2 (id=8002):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
close(0xffffffffffffffff)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$x86(r3, &(0x7f0000b5f000/0x400000)=nil)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40d00, 0x0)
munmap(&(0x7f0000a88000/0x1000)=nil, 0x1000)
eventfd2(0xa, 0x0)
close(0x3)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
r6 = eventfd2(0x3, 0x80800)
write$eventfd(r6, &(0x7f00000000c0)=0xfffffffffffffffc, 0x8)
mmap$KVM_VCPU(&(0x7f0000fc4000/0x1000)=nil, r5, 0x8, 0x30, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000fff000/0x1000)=nil, r5, 0x2, 0x30, 0xffffffffffffffff, 0x0)
syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000193000/0x400000)=nil)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_GET_TSC_KHZ_vm(r8, 0xaea3)
close(r1)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r9, 0x8008ae9d, &(0x7f0000000080))
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x22e40, 0x0)
r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04)
mmap$KVM_VCPU(&(0x7f00002ac000/0x4000)=nil, r12, 0x3000000, 0x2132, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_GUEST_MEMFD(r10, 0xc040aed4, &(0x7f0000000040)={0x200000})

0s ago: executing program 0 (id=8003):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000340)=ANY=[@ANYBLOB="03000000000000000006000000000000009b0c00000000000009000000000000000309000000000000050000000000000015f22180029fde5b4378d3c833e8ac1072f407504d00a41fd90034434a7f3e86a6ed6a05dbe867543003b91b2e43e2e4ad6e00"/111])
r6 = ioctl$KVM_CREATE_GUEST_MEMFD(r2, 0xc040aed4, &(0x7f0000000080)={0x200000})
ioctl$KVM_SET_USER_MEMORY_REGION2(r2, 0x40a0ae49, &(0x7f0000000280)={0x2710, 0x4, 0x80a0000, 0x2000, &(0x7f0000895000/0x2000)=nil, 0x0, r6})
ioctl$KVM_SET_USER_MEMORY_REGION2(r2, 0x40a0ae49, &(0x7f00000000c0)={0x2710, 0x0, 0x100000, 0x2000, &(0x7f0000895000/0x2000)=nil, 0x4, r6})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:48275' (ED25519) to the list of known hosts.
syzkaller login: [   47.877684][ T5767] cgroup: Unknown subsys name 'net'
[   47.963919][ T5767] cgroup: Unknown subsys name 'cpuset'
[   47.972710][ T5767] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   49.521865][ T5767] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   54.004839][ T5237] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   54.010807][ T5237] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   54.020363][ T5237] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   54.025418][ T5237] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   54.028524][ T5237] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   54.071838][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   54.074830][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   54.080565][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   54.084036][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   54.087148][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   54.126650][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   54.129850][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   54.132684][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   54.137100][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   54.139950][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   54.305086][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   54.427257][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.431629][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.434672][ T5835] bridge_slave_0: entered allmulticast mode
[   54.438007][ T5835] bridge_slave_0: entered promiscuous mode
[   54.445114][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.448233][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.451561][ T5835] bridge_slave_1: entered allmulticast mode
[   54.455562][ T5835] bridge_slave_1: entered promiscuous mode
[   54.459657][ T5839] chnl_net:caif_netlink_parms(): no params data found
[   54.523087][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.545541][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.608444][ T5835] team0: Port device team_slave_0 added
[   54.626885][ T5835] team0: Port device team_slave_1 added
[   54.665432][ T5843] chnl_net:caif_netlink_parms(): no params data found
[   54.683131][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.685708][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.697109][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.702400][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.704537][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.716036][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.727328][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.730481][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.732937][ T5839] bridge_slave_0: entered allmulticast mode
[   54.736429][ T5839] bridge_slave_0: entered promiscuous mode
[   54.745780][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.749028][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.752777][ T5839] bridge_slave_1: entered allmulticast mode
[   54.756819][ T5839] bridge_slave_1: entered promiscuous mode
[   54.801437][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.826151][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.882957][ T5835] hsr_slave_0: entered promiscuous mode
[   54.886035][ T5835] hsr_slave_1: entered promiscuous mode
[   54.889561][ T5839] team0: Port device team_slave_0 added
[   54.905488][ T5839] team0: Port device team_slave_1 added
[   54.908314][ T5843] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.911097][ T5843] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.913612][ T5843] bridge_slave_0: entered allmulticast mode
[   54.916405][ T5843] bridge_slave_0: entered promiscuous mode
[   54.919660][ T5843] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.923296][ T5843] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.925547][ T5843] bridge_slave_1: entered allmulticast mode
[   54.928572][ T5843] bridge_slave_1: entered promiscuous mode
[   54.955939][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.958698][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.970425][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.998544][ T5843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.003716][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.006795][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.018030][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.042600][ T5843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.080260][ T5843] team0: Port device team_slave_0 added
[   55.098165][ T5843] team0: Port device team_slave_1 added
[   55.133411][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.136211][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.146565][ T5843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.156331][ T5839] hsr_slave_0: entered promiscuous mode
[   55.159316][ T5839] hsr_slave_1: entered promiscuous mode
[   55.162809][ T5839] debugfs: 'hsr0' already exists in 'hsr'
[   55.165162][ T5839] Cannot create hsr debugfs directory
[   55.194375][ T5843] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.197014][ T5843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.206148][ T5843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.285214][ T5843] hsr_slave_0: entered promiscuous mode
[   55.288301][ T5843] hsr_slave_1: entered promiscuous mode
[   55.293099][ T5843] debugfs: 'hsr0' already exists in 'hsr'
[   55.295448][ T5843] Cannot create hsr debugfs directory
[   55.491788][ T5835] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.500946][ T5835] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.514687][ T5835] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.533366][ T5835] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.568041][ T5839] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.573459][ T5839] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.578053][ T5839] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.585283][ T5839] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.652509][ T5843] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.663778][ T5843] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.675062][ T5843] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.683328][ T5843] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.773762][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.799834][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   55.817991][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.827647][   T33] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.830886][   T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.850563][   T33] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.853259][   T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.870835][ T5843] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.883915][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   55.894505][   T33] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.896830][   T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.908128][ T5843] 8021q: adding VLAN 0 to HW filter on device team0
[   55.912028][   T33] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.914302][   T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.927528][   T33] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.930552][   T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.937354][   T33] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.940327][   T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.077900][ T5237] Bluetooth: hci0: command tx timeout
[   56.155809][ T5237] Bluetooth: hci1: command tx timeout
[   56.198747][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.214930][ T5843] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.231845][ T5237] Bluetooth: hci2: command tx timeout
[   56.236397][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.288577][ T5839] veth0_vlan: entered promiscuous mode
[   56.304020][ T5843] veth0_vlan: entered promiscuous mode
[   56.308973][ T5839] veth1_vlan: entered promiscuous mode
[   56.323473][ T5843] veth1_vlan: entered promiscuous mode
[   56.327457][ T5835] veth0_vlan: entered promiscuous mode
[   56.336289][ T5835] veth1_vlan: entered promiscuous mode
[   56.376133][ T5843] veth0_macvtap: entered promiscuous mode
[   56.379980][ T5839] veth0_macvtap: entered promiscuous mode
[   56.387468][ T5835] veth0_macvtap: entered promiscuous mode
[   56.398218][ T5839] veth1_macvtap: entered promiscuous mode
[   56.402794][ T5843] veth1_macvtap: entered promiscuous mode
[   56.406710][ T5835] veth1_macvtap: entered promiscuous mode
[   56.428784][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.440038][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.451908][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.456155][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.469903][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.478367][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.484110][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.488365][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.498877][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.506514][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.516931][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.527130][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.534145][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.539580][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.555269][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.570370][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.592497][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.602404][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.666454][   T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.669872][   T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.688085][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.696081][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.726377][   T84] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.736495][   T84] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.770291][   T84] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.772477][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.774790][   T84] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.776198][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.821094][   T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.824421][   T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.835832][ T5835] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.150601][ T5237] Bluetooth: hci0: command tx timeout
[   58.230470][ T5237] Bluetooth: hci1: command tx timeout
[   58.310450][ T5237] Bluetooth: hci2: command tx timeout
[   58.757630][ T5961] kvm: user requested TSC rate below hardware speed
[   58.839766][ T5960] kvm: MWAIT instruction emulated as NOP!
[   59.272852][ T5982] kvm: kvm [5981]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[   60.230745][ T5237] Bluetooth: hci0: command tx timeout
[   60.310845][ T5237] Bluetooth: hci1: command tx timeout
[   60.391141][ T5237] Bluetooth: hci2: command tx timeout
[   60.928629][ T6019] kvm_intel: kvm [6018]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xda1
[   61.697793][ T6042] kvm: user requested TSC rate below hardware speed
[   62.311274][ T5237] Bluetooth: hci0: command tx timeout
[   62.401445][ T5237] Bluetooth: hci1: command tx timeout
[   62.471178][ T5237] Bluetooth: hci2: command tx timeout
[   62.600654][ T6060] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[   63.592253][ T6088] kvm: user requested TSC rate below hardware speed
[   63.917332][ T6101] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[   68.651229][ T6280] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=239839900 (479679800 ns) > initial count (18 ns). Using initial count to start timer.
[   71.194517][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[   71.197690][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[   71.221712][ T6372] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[   71.227280][ T6373] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[   72.617817][ T6429] kvm: user requested TSC rate below hardware speed
[   78.510168][ T6623] kvm: user requested TSC rate below hardware speed
[   81.431943][   T10] cfg80211: failed to load regulatory.db
[   83.336128][ T6724] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[   84.571634][ T6753] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=239839900 (479679800 ns) > initial count (18 ns). Using initial count to start timer.
[   85.773625][ T6780] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   95.874761][ T7078] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   99.992558][ T7246] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  100.048125][ T7244] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  101.275195][ T7286] kvm: user requested TSC rate below hardware speed
[  103.417812][   T34] audit: type=1800 audit(1756823262.417:2): pid=7351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.462" name="[kvm-gmem]" dev="anon_inodefs" ino=90091 res=0 errno=0
[  105.169201][ T7413] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  105.473506][ T7422] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  108.891745][ T7536] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  109.589459][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.597348][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.607556][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.637786][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.645153][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.651865][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.658041][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  109.664922][ T7557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  112.564964][ T7650] KVM: debugfs: duplicate directory 7650-8
[  114.240025][ T7712] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  115.067618][ T7750] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  116.323989][ T7806] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  118.173452][ T7883] kvm: kvm [7882]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x5
[  122.152728][ T8019] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  122.713969][ T8038] kvm: user requested TSC rate below hardware speed
[  124.030357][ T8089] kvm: kvm [8088]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x5
[  124.383585][ T8100] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  126.708997][ T8159] GUP no longer grows the stack in syz.0.728 (8159): 200000fe9000-200000ffc000 (200000fe6000)
[  126.717239][ T8159] CPU: 0 UID: 0 PID: 8159 Comm: syz.0.728 Not tainted syzkaller #0 PREEMPT(full) 
[  126.717256][ T8159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  126.717262][ T8159] Call Trace:
[  126.717269][ T8159]  <TASK>
[  126.717274][ T8159]  dump_stack_lvl+0x189/0x250
[  126.717313][ T8159]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.717326][ T8159]  ? __pfx__printk+0x10/0x10
[  126.717340][ T8159]  ? find_vma+0xe7/0x160
[  126.717368][ T8159]  __get_user_pages+0x24d0/0x2ce0
[  126.717380][ T8159]  ? __lock_acquire+0xab9/0xd20
[  126.717411][ T8159]  ? get_user_pages_unlocked+0xb9/0x720
[  126.717429][ T8159]  get_user_pages_unlocked+0x1e3/0x720
[  126.717449][ T8159]  hva_to_pfn+0x313/0xc90
[  126.717468][ T8159]  ? __pfx_hva_to_pfn+0x10/0x10
[  126.717486][ T8159]  ? xas_start+0x3d4/0x770
[  126.717514][ T8159]  ? xa_load+0x60/0x210
[  126.717530][ T8159]  ? kvm_follow_pfn+0x21a/0x3c0
[  126.717544][ T8159]  __kvm_faultin_pfn+0xaa/0x100
[  126.717561][ T8159]  kvm_mmu_faultin_pfn+0x6f5/0x14f0
[  126.717584][ T8159]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  126.717602][ T8159]  kvm_tdp_page_fault+0x273/0x370
[  126.717617][ T8159]  kvm_mmu_do_page_fault+0x2c5/0x640
[  126.717634][ T8159]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  126.717655][ T8159]  ? vmx_handle_exit_irqoff+0x29e/0xad0
[  126.717667][ T8159]  ? __pfx_current_save_fsgs+0x10/0x10
[  126.717685][ T8159]  kvm_mmu_page_fault+0x22f/0xb70
[  126.717703][ T8159]  ? __pfx_handle_ept_violation+0x10/0x10
[  126.717719][ T8159]  vmx_handle_exit+0x1093/0x18a0
[  126.717734][ T8159]  ? vcpu_run+0x35f2/0x6fa0
[  126.717757][ T8159]  vcpu_run+0x434f/0x6fa0
[  126.717784][ T8159]  ? vcpu_run+0x35f2/0x6fa0
[  126.717838][ T8159]  ? __pfx_vcpu_run+0x10/0x10
[  126.717858][ T8159]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  126.717885][ T8159]  ? rcu_is_watching+0x15/0xb0
[  126.717902][ T8159]  kvm_arch_vcpu_ioctl_run+0xfc9/0x1940
[  126.717922][ T8159]  ? __mutex_trylock_common+0x153/0x260
[  126.717938][ T8159]  ? kvm_arch_vcpu_ioctl_run+0x1f3/0x1940
[  126.717951][ T8159]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[  126.717969][ T8159]  ? rcu_is_watching+0x15/0xb0
[  126.717982][ T8159]  ? trace_contention_end+0x39/0x120
[  126.717995][ T8159]  ? __mutex_lock+0x335/0x1350
[  126.718016][ T8159]  ? kasan_quarantine_put+0xdd/0x220
[  126.718034][ T8159]  ? kvm_vcpu_ioctl+0x22e/0xe90
[  126.718051][ T8159]  ? __pfx___mutex_lock+0x10/0x10
[  126.718066][ T8159]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  126.718085][ T8159]  ? do_vfs_ioctl+0xbe8/0x1430
[  126.718101][ T8159]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  126.718158][ T8159]  kvm_vcpu_ioctl+0x95c/0xe90
[  126.718178][ T8159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  126.718190][ T8159]  ? __lock_acquire+0xab9/0xd20
[  126.718222][ T8159]  ? __fget_files+0x2a/0x420
[  126.718235][ T8159]  ? __fget_files+0x2a/0x420
[  126.718246][ T8159]  ? __fget_files+0x3a0/0x420
[  126.718255][ T8159]  ? __fget_files+0x2a/0x420
[  126.718269][ T8159]  ? bpf_lsm_file_ioctl+0x9/0x20
[  126.718286][ T8159]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  126.718301][ T8159]  __se_sys_ioctl+0xf9/0x170
[  126.718318][ T8159]  do_syscall_64+0xfa/0x3b0
[  126.718328][ T8159]  ? lockdep_hardirqs_on+0x9c/0x150
[  126.718342][ T8159]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.718352][ T8159]  ? clear_bhb_loop+0x60/0xb0
[  126.718367][ T8159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.718377][ T8159] RIP: 0033:0x7fa9e1d8ebe9
[  126.718389][ T8159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.718399][ T8159] RSP: 002b:00007fa9e2b4b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.718413][ T8159] RAX: ffffffffffffffda RBX: 00007fa9e1fc5fa0 RCX: 00007fa9e1d8ebe9
[  126.718421][ T8159] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[  126.718428][ T8159] RBP: 00007fa9e1e11e19 R08: 0000000000000000 R09: 0000000000000000
[  126.718434][ T8159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.718440][ T8159] R13: 00007fa9e1fc6038 R14: 00007fa9e1fc5fa0 R15: 00007ffff8c93118
[  126.718468][ T8159]  </TASK>
[  128.368720][ T8206] KVM: debugfs: duplicate directory 8206-5
[  128.494553][ T8210] KVM: debugfs: duplicate directory 8210-11
[  131.856005][ T8322] kvm: user requested TSC rate below hardware speed
[  132.634929][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  132.638039][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  132.665608][ T8356] kvm: kvm [8350]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000028)
[  141.265032][ T8559] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3118982947 (199614908608 ns) > initial count (68792784960 ns). Using initial count to start timer.
[  142.417243][ T8614] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  143.734282][ T8656] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  144.347868][ T8677] kvm: user requested TSC rate below hardware speed
[  144.365550][ T8677] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  145.010246][ T8692] kvm: user requested TSC rate below hardware speed
[  145.473198][ T8712] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  145.619637][ T8716] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  146.810778][ T8748] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2085471858 (33367549728 ns) > initial count (18683909600 ns). Using initial count to start timer.
[  148.673517][ T8807] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  151.740328][ T8907] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  159.033122][ T9195] kvm: user requested TSC rate below hardware speed
[  160.718341][ T9248] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  163.248409][ T9337] kvm: user requested TSC rate below hardware speed
[  165.227486][ T9383] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  166.216786][ T9401] kvm: kvm [9400]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000028)
[  166.831930][ T9438] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  167.143963][ T9450] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  168.066548][ T9502] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  171.792523][ T9627] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  172.534362][ T9657] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  172.820397][ T9666] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  180.792029][ T9855] Bluetooth: hci0: command 0x0406 tx timeout
[  180.795999][   T55] Bluetooth: hci1: command 0x0406 tx timeout
[  180.797412][ T9855] Bluetooth: hci2: command 0x0406 tx timeout
[  181.001801][ T9915] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  182.549432][ T9956] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  184.832582][T10007] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  189.401813][T10096] kvm: user requested TSC rate below hardware speed
[  189.401925][T10095] kvm: user requested TSC rate below hardware speed
[  191.404007][T10179] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=3070468702 (196509996928 ns) > initial count (74425770880 ns). Using initial count to start timer.
[  193.255558][T10248] KVM: debugfs: duplicate directory 10248-6
[  193.792047][T10259] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  193.795427][T10259] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  194.075030][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  194.077112][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  196.186260][T10366] kvm: user requested TSC rate below hardware speed
[  196.258339][T10366] kvm: user requested TSC rate below hardware speed
[  200.189803][T10459] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  204.803532][T10616] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  205.198377][T10628] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  205.446336][T10643] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  206.104645][T10667] kvm: user requested TSC rate below hardware speed
[  209.350592][T10764] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  210.967540][T10799] kvm: vcpu 0: requested 126878 ns lapic timer period limited to 200000 ns
[  210.974209][T10799] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  211.442855][T10822] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  214.403965][T10888] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  220.861947][T11038] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  221.672536][T11071] KVM: debugfs: duplicate directory 11071-9
[  223.590567][T11132] kvm: emulating exchange as write
[  224.374026][T11169] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  224.394447][T11171] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  225.057840][T11192] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  225.502134][T11204] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  227.525002][T11288] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  228.722099][T11322] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3118982947 (199614908608 ns) > initial count (68792784960 ns). Using initial count to start timer.
[  229.544937][T11354] kvm: kvm [11353]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0xfc
[  229.845347][T11364] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  230.766381][T11398] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  232.962363][T11480] kvm: kvm [11479]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  233.526223][T11497] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  235.357679][T11569] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=239839900 (479679800 ns) > initial count (18 ns). Using initial count to start timer.
[  235.927019][T11591] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  237.933887][T11669] kvm: user requested TSC rate below hardware speed
[  243.143735][T11845] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  243.148525][T11844] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  243.629735][T11861] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  244.012919][T11876] kvm: user requested TSC rate below hardware speed
[  244.018502][T11876] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=1389722174 (2779444348 ns) > initial count (5115810 ns). Using initial count to start timer.
[  244.468631][T11890] kvm: kvm [11889]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000028)
[  244.977992][T11904] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  245.716602][T11932] kvm: apic: phys broadcast and lowest prio
[  247.414496][T11996] kvm: user requested TSC rate below hardware speed
[  248.326958][T12036] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  249.688446][T12081] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  250.055447][T12095] kvm: kvm [12093]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  250.058584][T12094] kvm: kvm [12093]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  251.969834][T12169] kvm: kvm [12168]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x40000030) = 0xfe00000000000002
[  252.262940][T12182] kvm: user requested TSC rate below hardware speed
[  255.523815][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  255.527946][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  258.070074][   T34] audit: type=1800 audit(1756823417.067:3): pid=12327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2059" name="[kvm-gmem]" dev="anon_inodefs" ino=390991 res=0 errno=0
[  258.080953][T12327] kvm: user requested TSC rate below hardware speed
[  259.884031][T12367] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  260.617240][T12394] kvm: user requested TSC rate below hardware speed
[  260.624931][T12394] kvm: user requested TSC rate below hardware speed
[  263.135459][   T34] audit: type=1800 audit(1756823422.137:4): pid=12504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2110" name="[kvm-gmem]" dev="anon_inodefs" ino=397966 res=0 errno=0
[  264.600508][T12548] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  265.066202][T12560] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  268.466193][T12640] kvm: apic: phys broadcast and lowest prio
[  268.958621][T12650] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  271.085295][T12704] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  274.548043][T12814] KVM: debugfs: duplicate directory 12814-12
[  274.557027][T12817] kvm: kvm [12816]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  279.541128][T12931] KVM: debugfs: duplicate directory 12931-6
[  281.279407][T12987] kvm: kvm [12986]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x5
[  283.751387][T13086] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  284.234765][T13104] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  289.017326][T13275] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  289.047928][T13275] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  289.897987][T13292] kvm: user requested TSC rate below hardware speed
[  294.353376][T13450] kvm: user requested TSC rate below hardware speed
[  295.996629][T13500] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  298.563811][T13583] kvm: user requested TSC rate below hardware speed
[  300.101967][T13635] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=239839900 (479679800 ns) > initial count (18 ns). Using initial count to start timer.
[  306.830018][T13864] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  306.843764][T13865] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  310.582247][T13983] kvm: apic: phys broadcast and lowest prio
[  310.713614][T13988] kvm: user requested TSC rate below hardware speed
[  310.718101][T13988] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  313.483899][T14099] KVM: debugfs: duplicate directory 14099-10
[  314.585512][T14139] kvm: user requested TSC rate below hardware speed
[  316.954017][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  316.956698][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  318.931015][T14239] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  319.489469][T14252] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1389722174 (2779444348 ns) > initial count (5115810 ns). Using initial count to start timer.
[  321.933626][T14337] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  323.034207][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.045055][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.053337][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.059916][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.067285][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.074642][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.081381][T14374] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  323.851963][T14403] kvm: kvm [14402]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  326.143537][T14469] set_target_expiration: 26 callbacks suppressed
[  326.143547][T14469] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  326.557362][T14481] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  327.436229][T14512] kvm: user requested TSC rate below hardware speed
[  327.445626][T14512] kvm: user requested TSC rate below hardware speed
[  327.691776][T14527] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  328.432251][T14554] kvm: user requested TSC rate below hardware speed
[  328.949457][   T34] audit: type=1800 audit(1756823487.947:5): pid=14578 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2807" name="[kvm-gmem]" dev="anon_inodefs" ino=527527 res=0 errno=0
[  329.024819][T14580] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  337.073441][T14814] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  339.345757][T14842] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  341.902894][T14908] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  348.198149][T15095] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  349.369404][T15122] kvm: user requested TSC rate below hardware speed
[  350.188321][T15150] kvm: kvm [15149]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  351.645239][T15198] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  352.367434][T15226] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  352.387350][T15230] kvm: user requested TSC rate below hardware speed
[  360.140282][   T34] audit: type=1800 audit(1756823519.137:6): pid=15483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3094" name="[kvm-gmem]" dev="anon_inodefs" ino=588539 res=0 errno=0
[  360.868107][T15503] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  360.956752][T15510] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  365.788147][T15672] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  367.935846][T15734] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  370.469684][T15836] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  370.477821][T15837] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  373.539916][T15929] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  375.167311][T15994] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  375.345252][T16005] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  375.688340][T16015] kvm: user requested TSC rate below hardware speed
[  377.662942][T16086] kvm: kvm [16085]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  378.391924][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  378.394164][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  381.115888][T16239] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  382.683732][T16289] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  386.219748][T16385] kvm: kvm [16384]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x5
[  387.248588][T16421] kvm: kvm [16420]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4
[  392.803913][T16622] kvm: user requested TSC rate below hardware speed
[  396.807261][T16714] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  397.305741][T16729] kvm: kvm [16728]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x5
[  402.913796][T16886] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  403.201963][T16897] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  404.557519][T16937] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  404.954383][T16964] kvm: user requested TSC rate below hardware speed
[  404.958681][T16963] kvm: user requested TSC rate below hardware speed
[  405.306510][T16980] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  407.643417][T17056] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  412.004800][T17177] kvm: user requested TSC rate below hardware speed
[  412.574381][T17184] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2159533702 (8638134808 ns) > initial count (7618448468 ns). Using initial count to start timer.
[  413.549993][T17207] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  414.648423][T17236] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  423.323740][T17535] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  423.463622][T17540] kvm: kvm [17539]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x5
[  423.791974][T17546] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  424.209844][T17566] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  425.162306][T17601] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  427.080812][T17661] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  431.384531][T17779] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  435.125328][T17904] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  439.837870][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  439.840704][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  445.614633][T18272] kvm: user requested TSC rate below hardware speed
[  445.636203][T18272] kvm: user requested TSC rate below hardware speed
[  445.733317][T18270] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  446.119107][T18286] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  446.129482][T18286] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  450.555086][T18460] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  453.081072][T18549] kvm: user requested TSC rate below hardware speed
[  453.100070][T18549] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  457.008053][T18664] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  461.544072][T18816] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  463.206616][T18855] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  463.327512][T18859] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  463.548251][T18861] kvm: user requested TSC rate below hardware speed
[  465.766339][T18933] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  468.232206][T19007] kvm_intel: kvm [19006]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xda1
[  472.139794][T19107] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  472.925768][T19135] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  473.968609][T19175] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  479.169855][T19368] kvm: user requested TSC rate below hardware speed
[  480.725884][T19425] kvm: user requested TSC rate below hardware speed
[  482.975917][T19520] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  484.007373][T19544] kvm: kvm [19543]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  490.532728][T19689] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  493.316755][T19776] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  493.347910][T19776] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  493.568112][T19779] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  493.657139][T19783] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  497.222870][T19863] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  498.282657][T19897] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  501.273315][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  501.275942][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  501.378818][T19976] kvm: user requested TSC rate below hardware speed
[  501.386607][T19976] kvm: user requested TSC rate below hardware speed
[  503.648586][T20017] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  510.100851][T20173] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  512.940619][T20274] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  513.163298][T20281] kvm: user requested TSC rate below hardware speed
[  515.258741][T20343] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  515.280316][T20345] kvm_intel: kvm [20344]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x1d9) = 0xa000000000da1
[  516.634329][T20388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  520.456699][T20500] kvm: user requested TSC rate below hardware speed
[  521.593900][T20543] kvm: kvm [20542]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000000e) = 0x5
[  524.296430][T20633] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  531.691217][T20840] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  534.437476][T20907] kvm: user requested TSC rate below hardware speed
[  536.380568][T20987] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  537.331525][T21016] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  541.417120][T21127] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  542.880810][T21177] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  543.127795][T21182] kvm: apic: phys broadcast and lowest prio
[  544.130739][T21212] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  544.658009][T21222] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  545.705566][T21257] KVM: debugfs: duplicate directory 21257-5
[  550.147705][T21420] kvm: user requested TSC rate below hardware speed
[  550.237982][T21425] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  553.528389][T21527] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  555.853004][T21611] kvm: kvm [21610]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  561.986763][T21816] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  562.543363][T21832] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2159533702 (8638134808 ns) > initial count (7618448468 ns). Using initial count to start timer.
[  562.713591][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  562.715645][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  572.060622][T22174] KVM: debugfs: duplicate directory 22174-14
[  573.967541][T22229] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  575.619079][T22271] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  577.712195][T22318] kvm: user requested TSC rate below hardware speed
[  580.098155][   T34] audit: type=1800 audit(1756823739.097:7): pid=22408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5338" name="[kvm-gmem]" dev="anon_inodefs" ino=1009800 res=0 errno=0
[  588.307977][T22644] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2884205115 (5768410230 ns) > initial count (4284202566 ns). Using initial count to start timer.
[  588.332053][T22644] kvm: user requested TSC rate below hardware speed
[  588.344223][T22644] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  592.127484][T22768] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1389722174 (2779444348 ns) > initial count (5115810 ns). Using initial count to start timer.
[  593.168299][T22810] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  598.755116][T22978] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  605.741296][T23228] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  609.151382][T23361] kvm: user requested TSC rate below hardware speed
[  609.865660][T23383] kvm: user requested TSC rate below hardware speed
[  609.900615][T23383] kvm: user requested TSC rate below hardware speed
[  609.921422][T23383] kvm: user requested TSC rate below hardware speed
[  610.880002][T23419] kvm: user requested TSC rate below hardware speed
[  611.570368][T23451] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  615.012011][T23588] KVM: debugfs: duplicate directory 23588-7
[  619.225018][T23702] kvm: kvm [23701]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  619.665257][T23721] kvm: user requested TSC rate below hardware speed
[  620.791874][T23770] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  623.068518][T23836] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  624.157248][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  624.159833][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  625.685635][T23949] KVM: debugfs: duplicate directory 23949-14
[  628.128377][T24045] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3360827617 (107546483744 ns) > initial count (96817504064 ns). Using initial count to start timer.
[  628.544317][T24055] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  628.894205][T24067] kvm: kvm [24066]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  630.209639][T24123] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  631.279208][T24171] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  632.355520][T24207] kvm: user requested TSC rate below hardware speed
[  635.528259][T24303] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368019 (5724736038 ns) > initial count (973874080 ns). Using initial count to start timer.
[  637.027999][T24342] kvm: kvm [24341]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  640.004794][T24432] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  640.581343][T24448] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  640.986659][T24470] KVM: debugfs: duplicate directory 24470-7
[  642.116091][T24518] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  643.717065][T24567] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  644.076977][T24575] kvm: user requested TSC rate below hardware speed
[  646.230046][T24663] KVM: debugfs: duplicate directory 24663-14
[  648.693447][T24720] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  654.563412][T24913] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  654.571938][T24912] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4089194284 (8178388568 ns) > initial count (6685169882 ns). Using initial count to start timer.
[  654.586141][T24913] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4089194284 (8178388568 ns) > initial count (6685169882 ns). Using initial count to start timer.
[  657.566010][T25031] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3118982947 (199614908608 ns) > initial count (68792784960 ns). Using initial count to start timer.
[  659.013233][T25072] kvm: user requested TSC rate below hardware speed
[  660.476047][T25116] kvm: user requested TSC rate below hardware speed
[  660.863513][T25122] kvm: user requested TSC rate below hardware speed
[  668.539224][T25342] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  668.613361][T25342] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  672.965707][T25469] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  673.062392][   T34] audit: type=1800 audit(1756823832.067:8): pid=25471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6323" name="[kvm-gmem]" dev="anon_inodefs" ino=1191189 res=0 errno=0
[  673.481037][T25485] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  673.738561][T25495] kvm: user requested TSC rate below hardware speed
[  673.744747][T25495] kvm: user requested TSC rate below hardware speed
[  674.103764][T25510] kvm: kvm [25509]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  676.259980][T25610] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  679.574068][T25689] KVM: debugfs: duplicate directory 25689-8
[  684.923582][T25861] kvm: user requested TSC rate below hardware speed
[  684.930846][T25861] kvm: user requested TSC rate below hardware speed
[  684.936697][T25861] kvm: user requested TSC rate below hardware speed
[  684.943117][T25861] kvm: user requested TSC rate below hardware speed
[  685.592522][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  685.595165][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  687.113735][T25928] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  688.198762][T25959] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3118982947 (199614908608 ns) > initial count (68792784960 ns). Using initial count to start timer.
[  688.462111][T25964] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=2159533702 (8638134808 ns) > initial count (7618448468 ns). Using initial count to start timer.
[  694.616080][T26083] kvm: user requested TSC rate below hardware speed
[  696.146322][   T34] audit: type=1800 audit(1756823855.147:9): pid=26124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6536" name="[kvm-gmem]" dev="anon_inodefs" ino=1235252 res=0 errno=0
[  697.973152][T26196] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  700.598450][T26293] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  701.637499][T26323] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  701.835253][T26328] kvm: kvm [26327]: vcpu0, guest rIP: 0xfff0 Unhandled RDMSR(0x40000028)
[  702.728020][T26358] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  705.699437][T26438] KVM: debugfs: duplicate directory 26438-7
[  706.313900][T26451] kvm: kvm [26449]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  706.317813][T26450] kvm: kvm [26449]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  707.775755][T26502] kvm: user requested TSC rate below hardware speed
[  710.309424][T26581] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  712.817320][T26672] kvm: kvm [26671]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  718.533028][T26861] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  719.848008][T26900] kvm: user requested TSC rate below hardware speed
[  720.714655][T26927] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  721.684097][T26961] kvm: kvm [26960]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  721.755332][T26968] KVM: debugfs: duplicate directory 26968-13
[  722.134140][T26974] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  722.142152][T26974] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4089194284 (8178388568 ns) > initial count (6685169882 ns). Using initial count to start timer.
[  722.237432][T26976] kvm: kvm [26975]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  723.342332][T27020] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  723.358123][T27020] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4089194284 (8178388568 ns) > initial count (6685169882 ns). Using initial count to start timer.
[  723.366931][T27018] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  723.885895][T27035] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  725.141283][T27085] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  726.405953][T27143] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368123 (5724736246 ns) > initial count (1179648 ns). Using initial count to start timer.
[  727.997809][T27210] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  730.342333][T27278] kvm: apic: phys broadcast and lowest prio
[  733.048657][T27380] kvm: vcpu 1: requested lapic timer restore with starting count register 0x390=239839900 (479679800 ns) > initial count (18 ns). Using initial count to start timer.
[  733.361496][T27390] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  734.078150][T27414] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  734.103637][T27414] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  737.537714][T27514] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3118982947 (199614908608 ns) > initial count (68792784960 ns). Using initial count to start timer.
[  738.342123][T27526] kvm: kvm [27525]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0x186) = 0x10000000007
[  741.595200][T27595] kvm: user requested TSC rate below hardware speed
[  741.958647][T27606] kvm: user requested TSC rate below hardware speed
[  741.965391][T27606] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  745.888254][T27766] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1389722174 (2779444348 ns) > initial count (5115810 ns). Using initial count to start timer.
[  747.043158][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  747.045894][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  750.726482][T27956] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  751.494491][T27977] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  752.774641][T28022] kvm: user requested TSC rate below hardware speed
[  753.253712][T28043] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  755.712924][T28117] kvm: user requested TSC rate below hardware speed
[  755.727158][T28119] kvm: user requested TSC rate below hardware speed
[  755.727211][T28117] kvm: user requested TSC rate below hardware speed
[  755.807070][T28117] kvm: user requested TSC rate below hardware speed
[  756.570615][T28141] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2862368019 (5724736038 ns) > initial count (1179648 ns). Using initial count to start timer.
[  760.776102][T28274] kvm: user requested TSC rate below hardware speed
[  761.579535][T28302] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  769.010388][T28541] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  769.942245][T28576] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2619962467 (167677597888 ns) > initial count (146724020928 ns). Using initial count to start timer.
[  771.084260][T28626] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  771.559350][T28643] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  773.446454][T28707] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  779.516430][T28882] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  781.038739][T28940] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  784.932292][T29063] kvm: user requested TSC rate below hardware speed
[  789.519444][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.529752][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.548016][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.553378][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.556432][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.559773][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.574609][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.577887][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.585925][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  789.589665][T29216] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  790.956992][T29256] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2534112103 (162183174592 ns) > initial count (33203627456 ns). Using initial count to start timer.
[  791.183638][T29265] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2174286968 (2174286968 ns) > initial count (1380206859 ns). Using initial count to start timer.
[  794.789610][T29362] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (510333788160 ns) > initial count (121436842112 ns). Using initial count to start timer.
[  799.707988][T29518] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1389722174 (2779444348 ns) > initial count (5115810 ns). Using initial count to start timer.
[  800.203393][T29539] kvm: kvm [29538]: vcpu1, guest rIP: 0xfff0 Unhandled WRMSR(0x187) = 0x4000005
[  800.544942][T29549] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  801.245192][T29578] dump_vmcs: 22 callbacks suppressed
[  801.245202][T29578] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  805.869150][T29701] kvm: apic: phys broadcast and lowest prio
[  806.758143][T29721] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1158926152 (2317852304 ns) > initial count (200000 ns). Using initial count to start timer.
[  808.483981][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  808.486558][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  814.229898][T29938] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  815.333200][T29967] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  818.789997][T30083] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  818.799201][T30083] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  823.059304][T30217] kvm: user requested TSC rate below hardware speed
[  824.515999][T30240] kvm_intel: kvm [30239]: vcpu1, guest rIP: 0x0 Unhandled WRMSR(0x1d9) = 0x9123
[  828.254823][T30337] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3986982720 (31895861760 ns) > initial count (7589802632 ns). Using initial count to start timer.
[  828.936331][T30371] kvm: user requested TSC rate below hardware speed
[  833.627413][T30543] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  834.245902][T30565] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1182638885 (9461111080 ns) > initial count (3390375944 ns). Using initial count to start timer.
[  836.668243][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.682131][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.688593][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.698053][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.703244][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.710091][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.717009][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.721443][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.725527][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  836.729677][T30647] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  838.111139][T30702] ==================================================================
[  838.114394][T30702] BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x155/0x380
[  838.117527][T30702] Write of size 8 at addr ffff88802370d908 by task syz.0.8003/30702
[  838.121857][T30702] 
[  838.122888][T30702] CPU: 1 UID: 0 PID: 30702 Comm: syz.0.8003 Not tainted syzkaller #0 PREEMPT(full) 
[  838.122902][T30702] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  838.122910][T30702] Call Trace:
[  838.122915][T30702]  <TASK>
[  838.122921][T30702]  dump_stack_lvl+0x189/0x250
[  838.122938][T30702]  ? __kasan_check_byte+0x12/0x40
[  838.122968][T30702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  838.122980][T30702]  ? lock_release+0x4b/0x3e0
[  838.122998][T30702]  ? __virt_addr_valid+0x4a5/0x5c0
[  838.123019][T30702]  print_report+0xca/0x240
[  838.123030][T30702]  ? kvm_gmem_release+0x155/0x380
[  838.123041][T30702]  kasan_report+0x118/0x150
[  838.123057][T30702]  ? kvm_gmem_release+0x155/0x380
[  838.123070][T30702]  kvm_gmem_release+0x155/0x380
[  838.123083][T30702]  ? __pfx_kvm_gmem_release+0x10/0x10
[  838.123095][T30702]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  838.123110][T30702]  ? evm_file_release+0x101/0x1e0
[  838.123124][T30702]  ? __pfx_kvm_gmem_release+0x10/0x10
[  838.123136][T30702]  __fput+0x44c/0xa70
[  838.123151][T30702]  task_work_run+0x1d4/0x260
[  838.123167][T30702]  ? __pfx_task_work_run+0x10/0x10
[  838.123183][T30702]  ? exit_to_user_mode_loop+0x40/0x110
[  838.123199][T30702]  exit_to_user_mode_loop+0xec/0x110
[  838.123215][T30702]  do_syscall_64+0x2bd/0x3b0
[  838.123235][T30702]  ? lockdep_hardirqs_on+0x9c/0x150
[  838.123249][T30702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.123261][T30702]  ? clear_bhb_loop+0x60/0xb0
[  838.123273][T30702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.123283][T30702] RIP: 0033:0x7fa9e1d8ebe9
[  838.123317][T30702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  838.123326][T30702] RSP: 002b:00007ffff8c93278 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  838.123339][T30702] RAX: 0000000000000000 RBX: 00000000000cc90f RCX: 00007fa9e1d8ebe9
[  838.123347][T30702] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  838.123353][T30702] RBP: 00007fa9e1fc7da0 R08: 0000000000000001 R09: 0000000bf8c9356f
[  838.123360][T30702] R10: 0000001b30820000 R11: 0000000000000246 R12: 00007fa9e1fc5fac
[  838.123368][T30702] R13: 00007fa9e1fc5fa0 R14: ffffffffffffffff R15: 00007ffff8c93390
[  838.123380][T30702]  </TASK>
[  838.123384][T30702] 
[  838.213272][T30702] Allocated by task 30703:
[  838.215088][T30702]  kasan_save_track+0x3e/0x80
[  838.216973][T30702]  __kasan_kmalloc+0x93/0xb0
[  838.218839][T30702]  __kmalloc_cache_noprof+0x230/0x3d0
[  838.220901][T30702]  kvm_set_memory_region+0x747/0xb90
[  838.222651][T30702]  kvm_vm_ioctl_set_memory_region+0x6f/0xd0
[  838.224562][T30702]  kvm_vm_ioctl+0x957/0xc60
[  838.226017][T30702]  __se_sys_ioctl+0xf9/0x170
[  838.227511][T30702]  do_syscall_64+0xfa/0x3b0
[  838.228963][T30702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.230883][T30702] 
[  838.231670][T30702] Freed by task 30703:
[  838.233155][T30702]  kasan_save_track+0x3e/0x80
[  838.234741][T30702]  kasan_save_free_info+0x46/0x50
[  838.236329][T30702]  __kasan_slab_free+0x5b/0x80
[  838.237877][T30702]  kfree+0x18e/0x440
[  838.239148][T30702]  kvm_set_memslot+0xf77/0x1310
[  838.240859][T30702]  kvm_set_memory_region+0x966/0xb90
[  838.242703][T30702]  kvm_vm_ioctl_set_memory_region+0x6f/0xd0
[  838.244619][T30702]  kvm_vm_ioctl+0x957/0xc60
[  838.246082][T30702]  __se_sys_ioctl+0xf9/0x170
[  838.247841][T30702]  do_syscall_64+0xfa/0x3b0
[  838.249740][T30702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.252067][T30702] 
[  838.253020][T30702] The buggy address belongs to the object at ffff88802370d800
[  838.253020][T30702]  which belongs to the cache kmalloc-cg-512 of size 512
[  838.257977][T30702] The buggy address is located 264 bytes inside of
[  838.257977][T30702]  freed 512-byte region [ffff88802370d800, ffff88802370da00)
[  838.262524][T30702] 
[  838.263526][T30702] The buggy address belongs to the physical page:
[  838.266166][T30702] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2370c
[  838.269755][T30702] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  838.273138][T30702] memcg:ffff888011553001
[  838.274796][T30702] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  838.277360][T30702] page_type: f5(slab)
[  838.278740][T30702] raw: 00fff00000000040 ffff88801a44b140 0000000000000000 dead000000000001
[  838.281494][T30702] raw: 0000000000000000 0000000000100010 00000000f5000000 ffff888011553001
[  838.284870][T30702] head: 00fff00000000040 ffff88801a44b140 0000000000000000 dead000000000001
[  838.288407][T30702] head: 0000000000000000 0000000000100010 00000000f5000000 ffff888011553001
[  838.291169][T30702] head: 00fff00000000002 ffffea00008dc301 00000000ffffffff 00000000ffffffff
[  838.294461][T30702] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  838.297448][T30702] page dumped because: kasan: bad access detected
[  838.299618][T30702] page_owner tracks the page as allocated
[  838.301443][T30702] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5843, tgid 5843 (syz-executor), ts 56176921949, free_ts 56132709932
[  838.309785][T30702]  post_alloc_hook+0x240/0x2a0
[  838.311765][T30702]  get_page_from_freelist+0x21e4/0x22c0
[  838.314047][T30702]  __alloc_frozen_pages_noprof+0x181/0x370
[  838.316318][T30702]  alloc_pages_mpol+0x232/0x4a0
[  838.318272][T30702]  allocate_slab+0x8a/0x370
[  838.320094][T30702]  ___slab_alloc+0xbeb/0x1410
[  838.321569][T30702]  __kmalloc_cache_noprof+0x296/0x3d0
[  838.323694][T30702]  ipv6_add_addr+0x530/0x1090
[  838.325698][T30702]  inet6_addr_add+0x387/0xc00
[  838.327454][T30702]  inet6_rtm_newaddr+0x93d/0xd20
[  838.329169][T30702]  rtnetlink_rcv_msg+0x7cf/0xb70
[  838.330804][T30702]  netlink_rcv_skb+0x208/0x470
[  838.332417][T30702]  netlink_unicast+0x82f/0x9e0
[  838.334079][T30702]  netlink_sendmsg+0x805/0xb30
[  838.335804][T30702]  __sock_sendmsg+0x21c/0x270
[  838.337495][T30702]  __sys_sendto+0x3bd/0x520
[  838.339072][T30702] page last free pid 5895 tgid 5895 stack trace:
[  838.341195][T30702]  __free_frozen_pages+0xbc4/0xd30
[  838.343032][T30702]  __slab_free+0x303/0x3c0
[  838.344689][T30702]  qlist_free_all+0x97/0x140
[  838.346199][T30702]  kasan_quarantine_reduce+0x148/0x160
[  838.347977][T30702]  __kasan_slab_alloc+0x22/0x80
[  838.349700][T30702]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  838.351503][T30702]  getname_flags+0xb8/0x540
[  838.353152][T30702]  do_sys_openat2+0xbc/0x1c0
[  838.355130][T30702]  __x64_sys_openat+0x138/0x170
[  838.357174][T30702]  do_syscall_64+0xfa/0x3b0
[  838.359122][T30702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.361620][T30702] 
[  838.362703][T30702] Memory state around the buggy address:
[  838.365065][T30702]  ffff88802370d800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  838.368355][T30702]  ffff88802370d880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  838.371693][T30702] >ffff88802370d900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  838.374722][T30702]                       ^
[  838.376180][T30702]  ffff88802370d980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  838.378661][T30702]  ffff88802370da00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  838.381251][T30702] ==================================================================
[  838.386925][T30702] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  838.389591][T30702] CPU: 1 UID: 0 PID: 30702 Comm: syz.0.8003 Not tainted syzkaller #0 PREEMPT(full) 
[  838.392639][T30702] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  838.395923][T30702] Call Trace:
[  838.396991][T30702]  <TASK>
[  838.397975][T30702]  dump_stack_lvl+0x99/0x250
[  838.399472][T30702]  ? __asan_memcpy+0x40/0x70
[  838.401015][T30702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  838.402795][T30702]  ? __pfx__printk+0x10/0x10
[  838.404521][T30702]  vpanic+0x281/0x750
[  838.405820][T30702]  ? preempt_schedule+0xae/0xc0
[  838.407391][T30702]  ? __pfx_vpanic+0x10/0x10
[  838.408947][T30702]  ? preempt_schedule_common+0x83/0xd0
[  838.410711][T30702]  ? preempt_schedule+0xae/0xc0
[  838.412303][T30702]  ? __pfx_preempt_schedule+0x10/0x10
[  838.414531][T30702]  panic+0xb9/0xc0
[  838.416050][T30702]  ? __pfx_panic+0x10/0x10
[  838.417793][T30702]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  838.419766][T30702]  ? kvm_gmem_release+0x155/0x380
[  838.421495][T30702]  check_panic_on_warn+0x89/0xb0
[  838.423356][T30702]  ? kvm_gmem_release+0x155/0x380
[  838.425125][T30702]  end_report+0x78/0x160
[  838.426523][T30702]  kasan_report+0x129/0x150
[  838.428019][T30702]  ? kvm_gmem_release+0x155/0x380
[  838.429727][T30702]  kvm_gmem_release+0x155/0x380
[  838.431368][T30702]  ? __pfx_kvm_gmem_release+0x10/0x10
[  838.433160][T30702]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  838.434915][T30702]  ? evm_file_release+0x101/0x1e0
[  838.436626][T30702]  ? __pfx_kvm_gmem_release+0x10/0x10
[  838.438423][T30702]  __fput+0x44c/0xa70
[  838.439755][T30702]  task_work_run+0x1d4/0x260
[  838.441353][T30702]  ? __pfx_task_work_run+0x10/0x10
[  838.443216][T30702]  ? exit_to_user_mode_loop+0x40/0x110
[  838.445164][T30702]  exit_to_user_mode_loop+0xec/0x110
[  838.446890][T30702]  do_syscall_64+0x2bd/0x3b0
[  838.448452][T30702]  ? lockdep_hardirqs_on+0x9c/0x150
[  838.450184][T30702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.452236][T30702]  ? clear_bhb_loop+0x60/0xb0
[  838.453897][T30702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  838.455838][T30702] RIP: 0033:0x7fa9e1d8ebe9
[  838.457371][T30702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  838.464085][T30702] RSP: 002b:00007ffff8c93278 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  838.467516][T30702] RAX: 0000000000000000 RBX: 00000000000cc90f RCX: 00007fa9e1d8ebe9
[  838.470734][T30702] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  838.473709][T30702] RBP: 00007fa9e1fc7da0 R08: 0000000000000001 R09: 0000000bf8c9356f
[  838.476432][T30702] R10: 0000001b30820000 R11: 0000000000000246 R12: 00007fa9e1fc5fac
[  838.478970][T30702] R13: 00007fa9e1fc5fa0 R14: ffffffffffffffff R15: 00007ffff8c93390
[  838.481481][T30702]  </TASK>
[  838.483255][T30702] Kernel Offset: disabled
[  838.484834][T30702] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:39:57  Registers:
info registers vcpu 0

CPU#0
RAX=710cf7e9d7be8a00 RBX=ffffffff819693c8 RCX=710cf7e9d7be8a00 RDX=0000000000000001
RSI=ffffffff8d9b7cdc RDI=ffffffff8be33800 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa38930 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b79b3f3 RFL=000002c2 [--SZ---] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000193000 CR3=000000003022d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000020080810 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff403a4dd0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff403a4f56
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff403a4f56 00007fff403a4f5c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f10b7e12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000037 RBX=0000000000000037 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc9000659f570
R8 =ffff888021760237 R9 =1ffff110042ec046 R10=dffffc0000000000 R11=ffffffff854f4380
R12=dffffc0000000000 R13=ffffffff99afa8fa R14=ffffffff99def420 R15=0000000000000000
RIP=ffffffff854f43fc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000555592b24500 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2c5de3 CR3=000000010e9f1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000483 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffff8c93626
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffff8c93626 00007ffff8c9362c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa9e1e12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
