Extracting prog: 36.128994195s
Minimizing prog: 18m15.941596669s
Simplifying prog options: 0s
Extracting C: 1m28.615717979s
Simplifying C: 11m37.88504578s


extracting reproducer from 70 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CAP_HALT_POLL-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0xd5be})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe3000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x6a, 0x0, 0x37)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
single: successfully extracted reproducer
found reproducer with 8 syscalls
minimizing guilty program
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CAP_HALT_POLL-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-ioctl$KVM_SET_LAPIC
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0xd5be})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe3000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x6a, 0x0, 0x37)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CAP_HALT_POLL-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0xd5be})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe3000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x6a, 0x0, 0x37)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CAP_HALT_POLL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0xd5be})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CAP_HALT_POLL-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0xd5be})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000240)={"def405bd13fffedca03799bcbd1b549ce942c5acf5c695d10d5dadcdaf9f67b1251d5130afd730ef6872cdd3af290b9ac502565a29289ab6cff823a23a934fb0f457379c6b358edb83895ab402cb42d4ec31c69e36a2b7d117612d25997170ffffffffffffff7f910efb4168da4c3db0f1d847709def725dfa7ae345c0a8245daf4e8e4cf35e98d4375b484cc20eac1fe4eb50aa83accb9e1e558df7c25ba73f148fc5139739313fff70ce3fd2d9fd6051c57c73dd8fc583f2abfab6f69d9507c61ba243e8125644454bd0492377f77203fe7a907861da7be807e1ab9a12ed01fa50c20e0fe8372e5904476e7cab8ad4ea8d43ca167dbe76dbc0d61ad582864b2cf07685fe01795580e1ffd73b9269a0acc3b44b8b5cf40ab684edee8b02828f3cc9a939f238bbe5b370b860c702e30021b25db05189489c6484e0e3131264c1a4d06d827d450f198b21b04a54553fc9346b18d36a040b4854c41bb0a5b4b4d8cfc2186356c31e381b50da7967730134fc70e6486568798772aaf9530080f5efbd6f02c86b0fd5b6422ab6c5c133076d314d32619a47994400aa65b696c54752a5b7e71813417392d95c234b101c9dba599255a77f015c8748b075bbf113d011df34c29bc33a52914268ea6dacb410f8b63260d4c0079c22002172126c2725a7ce9cb79f5980986243101ac6f65e0febc46fff1d49a4a83eae6078effd3892fc9aa173c00476102f4cc52d4e0a417dcaecf8f342f7515ae23d9c2b9849a8eff88309fb53f0193d2e977970c60035b9d6c37fa1df1d35a5a0f3aa1f69bec9e818670029b0d83efd8ef0907c4db22f0ef5bee27759c5c4159e63b393021dbe39282bd268e1ab7fee80d9ccf9509d1a956f0d2aeb942c96c91e89183e564a84c431e3d3a1d6b1d7364c369bb6931935d766b9196ba3d866dc0ee423a14db830756f992c4acc74c166f7992c7452e6b57a43c56194ee25acca5b41afcfa61f963d1e9851eb8d471dfa435deb14ca350b1b50e8e50ece91f75877d02a7a6856beaf0d90259fb75adb86242283fd9e3e1db972e810885dd941c2b506d92a67f6b2af70c726e95b351525e4c1b2fe4f38874321a306b4af9d9b48228071e4e3763bf7fbe9c8aa6671c151f8c7e6acb6cf39217d131d9f34f3534c0cb22ee4bf9f8c981517637317c879a2a693f4c05bccdaa7c4ecdaf51d16aee17284b488c77298306ddc0cdc4e898d67c4cf6145e5d1489c4e2ae58cfc3e77fde174836c1b3d7ab290205f49007737eaa25acd5ef62344ba137ecc4715439b25313e0ddd712562a83f52f2fc80c50965dff03c4d65a7d4804fe870d07033e7c39af40912bcb84f2e02122e6bf460c208b04f7a246875ab1e75657ca46051934bc5645700"})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r0, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r0, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r1, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
testing program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=45.509108203s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
simplifying C reproducer
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program did not crash
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing compiled C program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
program crashed: WARNING in kvm_arch_vcpu_ioctl_run
testing program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
validation run: crashed=true
testing program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
validation run: crashed=true
testing program (duration=45.509108203s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CAP_EXIT_HYPERCALL-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_LAPIC-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: WARNING in kvm_arch_vcpu_ioctl_run
validation run: crashed=true
reproducing took 39m53.39536082s
repro crashed as (corrupted=false):
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4444 at arch/x86/kvm/x86.c:11214 kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 arch/x86/kvm/x86.c:11214
Modules linked in:
CPU: 1 PID: 4444 Comm: syz.0.26 Not tainted 6.1.145-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 arch/x86/kvm/x86.c:11214
Code: e8 d7 89 c2 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 9c 89 c2 00 e9 ce e5 ff ff e8 12 0e 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
RSP: 0018:ffffc9000355fc48 EFLAGS: 00010293
RAX: ffffffff810fc97e RBX: ffff88802b918000 RCX: ffff888025209dc0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88802b918000
RBP: ffff88807425a000 R08: dffffc0000000000 R09: fffffbfff215c468
R10: fffffbfff215c468 R11: 1ffffffff215c467 R12: ffff88802b9182ec
R13: ffff88802b9180d8 R14: dffffc0000000000 R15: 0000000000000000
FS:  000055556bd8a500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c006635000 CR3: 000000007f6b6000 CR4: 00000000003526e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 kvm_vcpu_ioctl+0x887/0xb80 virt/kvm/kvm_main.c:4122
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl+0xfa/0x170 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f6e9cf8e929
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffdaf28d598 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f6e9d1b5fa0 RCX: 00007f6e9cf8e929
RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
RBP: 00007f6e9d010b39 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f6e9d1b5fa0 R14: 00007f6e9d1b5fa0 R15: 0000000000000003
 </TASK>

final repro crashed as (corrupted=false):
------------[ cut here ]------------
WARNING: CPU: 1 PID: 4444 at arch/x86/kvm/x86.c:11214 kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 arch/x86/kvm/x86.c:11214
Modules linked in:
CPU: 1 PID: 4444 Comm: syz.0.26 Not tainted 6.1.145-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390 arch/x86/kvm/x86.c:11214
Code: e8 d7 89 c2 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 9c 89 c2 00 e9 ce e5 ff ff e8 12 0e 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
RSP: 0018:ffffc9000355fc48 EFLAGS: 00010293
RAX: ffffffff810fc97e RBX: ffff88802b918000 RCX: ffff888025209dc0
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88802b918000
RBP: ffff88807425a000 R08: dffffc0000000000 R09: fffffbfff215c468
R10: fffffbfff215c468 R11: 1ffffffff215c467 R12: ffff88802b9182ec
R13: ffff88802b9180d8 R14: dffffc0000000000 R15: 0000000000000000
FS:  000055556bd8a500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c006635000 CR3: 000000007f6b6000 CR4: 00000000003526e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 kvm_vcpu_ioctl+0x887/0xb80 virt/kvm/kvm_main.c:4122
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:870 [inline]
 __se_sys_ioctl+0xfa/0x170 fs/ioctl.c:856
 do_syscall_x64 arch/x86/entry/common.c:51 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:81
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7f6e9cf8e929
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffdaf28d598 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f6e9d1b5fa0 RCX: 00007f6e9cf8e929
RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
RBP: 00007f6e9d010b39 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f6e9d1b5fa0 R14: 00007f6e9d1b5fa0 R15: 0000000000000003
 </TASK>