# https://syzkaller.appspot.com/bug?id=a4634abe4993bb4b56a0a67cc7db39179990d57e
# See https://goo.gl/kgGztJ for information about syzkaller reproducers.
#{"threaded":true,"repeat":true,"procs":1,"slowdown":1,"sandbox":"","sandbox_arg":0,"close_fds":false,"callcomments":true}
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
timer_create(0x0, &(0x7f0000000500)={0x0, 0x21}, &(0x7f0000000300))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)={{0x80a0000, 0x80a0000, 0x8, 0x8, 0x7, 0xd2, 0x40, 0x7, 0x0, 0x2e, 0x19, 0x9}, {0x5000, 0x2, 0x3, 0x0, 0x3c, 0x7, 0x7f, 0x2, 0x5, 0x0, 0x3}, {0xdddd0000, 0x80a0000, 0x8, 0x5, 0x1, 0x7, 0x0, 0x5, 0x0, 0xa7, 0x8, 0x81}, {0x6000, 0x100000, 0xf, 0x4, 0x3, 0x0, 0x1, 0xf8, 0x8, 0x9, 0xe, 0xf1}, {0x4000, 0x2000, 0xb, 0x3, 0x15, 0x2, 0xab, 0x7f, 0x1, 0x83, 0x3, 0x3}, {0x1000, 0x4000, 0x4, 0xa0, 0x7, 0x40, 0x1, 0xa0, 0x80, 0xf, 0xb5, 0x7}, {0xffff1000, 0x1, 0xe, 0x5, 0x0, 0x5, 0x4, 0x3, 0x5, 0x85, 0x3, 0x74}, {0x1, 0x4, 0xc, 0x5, 0x2, 0x7, 0x1, 0x34, 0x2, 0x8, 0xf0, 0x9}, {0xeeef0000, 0x1}, {0xdddd0000, 0x7}, 0x80000031, 0x0, 0xeeef0000, 0x2024, 0x6, 0x8000, 0x3000, [0x6800000000000000, 0x6, 0x5e, 0x3]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)