program:
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x70, 0x4)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(r2, 0x4038ae7a, &(0x7f0000000040)={0x2, 0x40000105, 0x0, 0x0})
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r3, 0xc1105511, &(0x7f0000000040)={0x7, 0x3, 0x40, 0x10000, 'syz1\x00', 0x4000041})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000180)={0x400, 0x50, '\x00', 0x0, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4)
ioctl$KVM_SET_CPUID2(r5, 0x4048aecb, &(0x7f0000000080)=ANY=[@ANYBLOB='\a'])
ioctl$KVM_RUN(r5, 0xae80, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000640)=[{0x6, 0x0, 0x0, 0xea}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @empty}, 0x10)
sendmmsg$inet(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)="ea6d177f4bca9fdd116cfe98efd4953a9819c23df89e0915ca8703c0e8f94b157f55799d27afa84640e03a455bc243e90b1abb18f2907a0741170177e74f7c883ffacb823f2db3515b8e6aa8a863eae7ac1773e9dd0213", 0x57}, {&(0x7f0000000840)="3f67466b434f0f1dab64b413f241dddea2dbdf0911184a79c6d06cb884a50159037441904c0acf6a994e41d7790cac9d46215c54cd9cd1c8c424bda885bc6dd022b01fff74a0f6227fd01fa455f675b59ef6c2ec767b7883f3e68d209fe15dd3eecaa7bbc3cfadf815a0ef1471c05f179c", 0x71}, {&(0x7f00000004c0)="7e2ec8", 0x3}], 0x3}}], 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0x1801, 0x4)
sendto$inet(r0, &(0x7f0000000700)="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", 0xfe6a, 0x40040, 0x0, 0xfffffffffffffe93)

[   79.214433][ T4672] Bluetooth: hci0: command tx timeout
[   79.217905][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[   79.220680][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[   79.453450][ T5324] ------------[ cut here ]------------
[   79.456328][ T5324] WARNING: CPU: 0 PID: 5324 at arch/x86/kvm/../../../virt/kvm/pfncache.c:267 __kvm_gpc_refresh+0x1187/0x1310
[   79.462112][ T5324] Modules linked in:
[   79.464471][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   79.468428][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.472981][ T5324] RIP: 0010:__kvm_gpc_refresh+0x1187/0x1310
[   79.475981][ T5324] Code: c6 05 e4 49 27 0e 01 48 c7 c7 b9 e0 6f 8d be 35 04 00 00 48 c7 c2 40 ea 61 8b e8 c4 ce 5d 00 e9 fe f1 ff ff e8 8a 65 80 00 90 <0f> 0b 90 bb ea ff ff ff e9 7e fe ff ff e8 77 65 80 00 90 0f 0b 90
[   79.484588][ T5324] RSP: 0018:ffffc9000d3d7340 EFLAGS: 00010283
[   79.487219][ T5324] RAX: ffffffff813fadd6 RBX: ffff888000000000 RCX: 0000000000100000
[   79.490685][ T5324] RDX: ffffc9000ded2000 RSI: 000000000000088e RDI: 000000000000088f
[   79.494483][ T5324] RBP: ffffc9000d3d74c8 R08: ffffffff8f7d0e77 R09: 1ffffffff1efa1ce
[   79.497941][ T5324] R10: dffffc0000000000 R11: fffffbfff1efa1cf R12: ffff888035e8d3e0
[   79.500998][ T5324] R13: dffffc0000000000 R14: ffff888000000000 R15: ffffffffffffff01
[   79.504372][ T5324] FS:  00007f6a7eaad6c0(0000) GS:ffff88808d730000(0000) knlGS:0000000000000000
[   79.507948][ T5324] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.510541][ T5324] CR2: 00007ffd5974d440 CR3: 0000000000e55000 CR4: 0000000000352ef0
[   79.513717][ T5324] Call Trace:
[   79.515442][ T5324]  <TASK>
[   79.516763][ T5324]  ? _raw_read_unlock_irqrestore+0x85/0x110
[   79.519401][ T5324]  ? kvm_gpc_refresh+0x31/0x140
[   79.521414][ T5324]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[   79.523851][ T5324]  ? kvm_xen_set_evtchn+0x138/0x230
[   79.525999][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   79.528142][ T5324]  kvm_gpc_refresh+0xe1/0x140
[   79.530254][ T5324]  ? kvm_xen_set_evtchn+0x138/0x230
[   79.532543][ T5324]  kvm_xen_set_evtchn+0x164/0x230
[   79.534814][ T5324]  kvm_xen_inject_timer_irqs+0xfd/0x200
[   79.537129][ T5324]  vcpu_run+0xc2c/0x7040
[   79.538951][ T5324]  ? unwind_get_return_address+0x4d/0x90
[   79.541395][ T5324]  ? __pfx_vcpu_run+0x10/0x10
[   79.543427][ T5324]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[   79.545933][ T5324]  ? rcu_is_watching+0x15/0xb0
[   79.547982][ T5324]  kvm_arch_vcpu_ioctl_run+0x116c/0x1cb0
[   79.550109][ T5324]  ? check_path+0x21/0x40
[   79.551898][ T5324]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[   79.554828][ T5324]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   79.557450][ T5324]  ? __lock_acquire+0xab9/0xd20
[   79.559639][ T5324]  kvm_vcpu_ioctl+0x95c/0xe90
[   79.561415][ T5324]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.563489][ T5324]  ? __fget_files+0x2a/0x420
[   79.565501][ T5324]  ? __fget_files+0x3a0/0x420
[   79.567499][ T5324]  ? __fget_files+0x2a/0x420
[   79.569388][ T5324]  ? bpf_lsm_file_ioctl+0x9/0x20
[   79.571425][ T5324]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.574291][ T5324]  __se_sys_ioctl+0xfc/0x170
[   79.576344][ T5324]  do_syscall_64+0xfa/0xfa0
[   79.578298][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   79.580572][ T5324]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.583179][ T5324]  ? clear_bhb_loop+0x60/0xb0
[   79.585364][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.587981][ T5324] RIP: 0033:0x7f6a7db8f749
[   79.589944][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.598274][ T5324] RSP: 002b:00007f6a7eaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   79.601988][ T5324] RAX: ffffffffffffffda RBX: 00007f6a7dde5fa0 RCX: 00007f6a7db8f749
[   79.605316][ T5324] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[   79.608893][ T5324] RBP: 00007f6a7dc13f91 R08: 0000000000000000 R09: 0000000000000000
[   79.612517][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.616146][ T5324] R13: 00007f6a7dde6038 R14: 00007f6a7dde5fa0 R15: 00007ffc7872afe8
[   79.619359][ T5324]  </TASK>
[   79.620664][ T5324] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   79.623632][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   79.627551][ T5324] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.631975][ T5324] Call Trace:
[   79.633439][ T5324]  <TASK>
[   79.634749][ T5324]  dump_stack_lvl+0x99/0x250
[   79.636701][ T5324]  ? __asan_memcpy+0x40/0x70
[   79.638724][ T5324]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.640964][ T5324]  ? __pfx__printk+0x10/0x10
[   79.643105][ T5324]  vpanic+0x237/0x6d0
[   79.645268][ T5324]  ? __pfx_vpanic+0x10/0x10
[   79.647675][ T5324]  panic+0xb9/0xc0
[   79.649293][ T5324]  ? __pfx_panic+0x10/0x10
[   79.651264][ T5324]  __warn+0x31b/0x4b0
[   79.652970][ T5324]  ? __kvm_gpc_refresh+0x1187/0x1310
[   79.655126][ T5324]  ? __kvm_gpc_refresh+0x1187/0x1310
[   79.657389][ T5324]  report_bug+0x2be/0x4f0
[   79.659558][ T5324]  ? __kvm_gpc_refresh+0x1187/0x1310
[   79.662166][ T5324]  ? __kvm_gpc_refresh+0x1187/0x1310
[   79.664721][ T5324]  ? __kvm_gpc_refresh+0x1189/0x1310
[   79.667205][ T5324]  handle_bug+0x84/0x160
[   79.669210][ T5324]  exc_invalid_op+0x1a/0x50
[   79.671374][ T5324]  asm_exc_invalid_op+0x1a/0x20
[   79.673703][ T5324] RIP: 0010:__kvm_gpc_refresh+0x1187/0x1310
[   79.676296][ T5324] Code: c6 05 e4 49 27 0e 01 48 c7 c7 b9 e0 6f 8d be 35 04 00 00 48 c7 c2 40 ea 61 8b e8 c4 ce 5d 00 e9 fe f1 ff ff e8 8a 65 80 00 90 <0f> 0b 90 bb ea ff ff ff e9 7e fe ff ff e8 77 65 80 00 90 0f 0b 90
[   79.684670][ T5324] RSP: 0018:ffffc9000d3d7340 EFLAGS: 00010283
[   79.687404][ T5324] RAX: ffffffff813fadd6 RBX: ffff888000000000 RCX: 0000000000100000
[   79.690858][ T5324] RDX: ffffc9000ded2000 RSI: 000000000000088e RDI: 000000000000088f
[   79.694279][ T5324] RBP: ffffc9000d3d74c8 R08: ffffffff8f7d0e77 R09: 1ffffffff1efa1ce
[   79.697502][ T5324] R10: dffffc0000000000 R11: fffffbfff1efa1cf R12: ffff888035e8d3e0
[   79.700664][ T5324] R13: dffffc0000000000 R14: ffff888000000000 R15: ffffffffffffff01
[   79.703929][ T5324]  ? __kvm_gpc_refresh+0x1186/0x1310
[   79.706321][ T5324]  ? _raw_read_unlock_irqrestore+0x85/0x110
[   79.708968][ T5324]  ? kvm_gpc_refresh+0x31/0x140
[   79.711123][ T5324]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[   79.713483][ T5324]  ? kvm_xen_set_evtchn+0x138/0x230
[   79.715848][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   79.718184][ T5324]  kvm_gpc_refresh+0xe1/0x140
[   79.720190][ T5324]  ? kvm_xen_set_evtchn+0x138/0x230
[   79.722354][ T5324]  kvm_xen_set_evtchn+0x164/0x230
[   79.724358][ T5324]  kvm_xen_inject_timer_irqs+0xfd/0x200
[   79.726699][ T5324]  vcpu_run+0xc2c/0x7040
[   79.728549][ T5324]  ? unwind_get_return_address+0x4d/0x90
[   79.731024][ T5324]  ? __pfx_vcpu_run+0x10/0x10
[   79.733173][ T5324]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[   79.735730][ T5324]  ? rcu_is_watching+0x15/0xb0
[   79.738114][ T5324]  kvm_arch_vcpu_ioctl_run+0x116c/0x1cb0
[   79.740705][ T5324]  ? check_path+0x21/0x40
[   79.742684][ T5324]  ? kvm_arch_vcpu_ioctl_run+0x293/0x1cb0
[   79.745301][ T5324]  ? __pfx_kvm_arch_vcpu_ioctl_run+0x10/0x10
[   79.748067][ T5324]  ? __lock_acquire+0xab9/0xd20
[   79.750315][ T5324]  kvm_vcpu_ioctl+0x95c/0xe90
[   79.752476][ T5324]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.754846][ T5324]  ? __fget_files+0x2a/0x420
[   79.756938][ T5324]  ? __fget_files+0x3a0/0x420
[   79.759081][ T5324]  ? __fget_files+0x2a/0x420
[   79.761154][ T5324]  ? bpf_lsm_file_ioctl+0x9/0x20
[   79.763393][ T5324]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[   79.765733][ T5324]  __se_sys_ioctl+0xfc/0x170
[   79.767827][ T5324]  do_syscall_64+0xfa/0xfa0
[   79.769853][ T5324]  ? lockdep_hardirqs_on+0x9c/0x150
[   79.772229][ T5324]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.774744][ T5324]  ? clear_bhb_loop+0x60/0xb0
[   79.776690][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.779176][ T5324] RIP: 0033:0x7f6a7db8f749
[   79.781009][ T5324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.789287][ T5324] RSP: 002b:00007f6a7eaad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   79.792910][ T5324] RAX: ffffffffffffffda RBX: 00007f6a7dde5fa0 RCX: 00007f6a7db8f749
[   79.796190][ T5324] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000009
[   79.799275][ T5324] RBP: 00007f6a7dc13f91 R08: 0000000000000000 R09: 0000000000000000
[   79.802223][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.805308][ T5324] R13: 00007f6a7dde6038 R14: 00007f6a7dde5fa0 R15: 00007ffc7872afe8
[   79.808453][ T5324]  </TASK>
[   79.810231][ T5324] Kernel Offset: disabled
[   79.812101][ T5324] Rebooting in 86400 seconds..