program:
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x4})
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r2, &(0x7f0000000000)={0x0, &(0x7f0000000140)})
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000040)={0x1, 0x0, [{0x4, 0x5, 0x0, 0x0, @adapter={0x7, 0xffffffffffffffff, 0x8000000000000001, 0x27, 0x7fffffff}}]})
r3 = eventfd2(0x8, 0x1)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r3, 0x4})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
write$eventfd(r3, &(0x7f0000000080)=0x430f, 0x8)

[   97.148298][ T4653] Bluetooth: hci0: command tx timeout
[   97.241285][ T5319] ------------[ cut here ]------------
[   97.244303][ T5319] kvm_is_error_gpa(gpa) == kvm_is_error_hva(uhva)
[   97.244314][ T5319] WARNING: arch/x86/kvm/../../../virt/kvm/pfncache.c:267 at __kvm_gpc_refresh+0x154c/0x1750, CPU#0: kworker/0:6/5319
[   97.252546][ T5319] Modules linked in:
[   97.254946][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: kworker/0:6 Not tainted syzkaller #0 PREEMPT(full) 
[   97.258975][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   97.263855][ T5319] Workqueue: events irqfd_inject
[   97.266206][ T5319] RIP: 0010:__kvm_gpc_refresh+0x154c/0x1750
[   97.268895][ T5319] Code: c6 05 77 c1 d9 0e 01 48 c7 c7 96 14 f9 8d be 3c 04 00 00 48 c7 c2 e0 3d c2 8b e8 0f 17 61 00 e9 40 ee ff ff e8 65 e9 84 00 90 <0f> 0b 90 bb ea ff ff ff 49 bf 00 00 00 00 00 fc ff df e9 fa f5 ff
[   97.277593][ T5319] RSP: 0018:ffffc9000e437680 EFLAGS: 00010293
[   97.280399][ T5319] RAX: ffffffff8140e14b RBX: ffff888000000000 RCX: ffff88801f2fa500
[   97.284068][ T5319] RDX: 0000000000000000 RSI: ffff888000000000 RDI: ffff888000000000
[   97.287616][ T5319] RBP: ffffc9000e437810 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[   97.291218][ T5319] R10: dffffc0000000000 R11: fffffbfff206199f R12: 1ffff92001c86ee4
[   97.294768][ T5319] R13: ffff888034d19280 R14: ffff888000000000 R15: ffffffffffffff01
[   97.298334][ T5319] FS:  0000000000000000(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[   97.302345][ T5319] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   97.305119][ T5319] CR2: 00007f4661f01a40 CR3: 000000004249c000 CR4: 0000000000352ef0
[   97.308846][ T5319] Call Trace:
[   97.310748][ T5319]  <TASK>
[   97.312047][ T5319]  ? kvm_xen_set_evtchn_fast+0x1fb/0x9b0
[   97.314514][ T5319]  ? lock_acquire+0x106/0x350
[   97.316636][ T5319]  ? kvm_gpc_refresh+0x31/0x120
[   97.318777][ T5319]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[   97.321488][ T5319]  ? kvm_xen_set_evtchn+0x137/0x230
[   97.323945][ T5319]  kvm_gpc_refresh+0xe1/0x120
[   97.326072][ T5319]  ? kvm_xen_set_evtchn+0x137/0x230
[   97.328430][ T5319]  kvm_xen_set_evtchn+0x163/0x230
[   97.330799][ T5319]  ? __pfx_evtchn_set_fn+0x10/0x10
[   97.332788][ T5319]  kvm_set_irq+0x2b6/0x5a0
[   97.334869][ T5319]  ? __pfx_kvm_set_irq+0x10/0x10
[   97.337376][ T5319]  ? __pfx_evtchn_set_fn+0x10/0x10
[   97.340269][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.342772][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.345094][ T5319]  irqfd_inject+0xa6/0x100
[   97.346930][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.349669][ T5319]  process_scheduled_works+0xb5d/0x1860
[   97.352185][ T5319]  ? __pfx_process_scheduled_works+0x10/0x10
[   97.354837][ T5319]  ? assign_work+0x3d5/0x5e0
[   97.356853][ T5319]  worker_thread+0xa53/0xfc0
[   97.358901][ T5319]  kthread+0x388/0x470
[   97.360802][ T5319]  ? __pfx_worker_thread+0x10/0x10
[   97.362900][ T5319]  ? __pfx_kthread+0x10/0x10
[   97.364905][ T5319]  ret_from_fork+0x514/0xb70
[   97.366837][ T5319]  ? __pfx_ret_from_fork+0x10/0x10
[   97.368956][ T5319]  ? __switch_to+0xc79/0x1410
[   97.371023][ T5319]  ? __pfx_kthread+0x10/0x10
[   97.373186][ T5319]  ret_from_fork_asm+0x1a/0x30
[   97.375359][ T5319]  </TASK>
[   97.376866][ T5319] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   97.380116][ T5319] CPU: 0 UID: 0 PID: 5319 Comm: kworker/0:6 Not tainted syzkaller #0 PREEMPT(full) 
[   97.384030][ T5319] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   97.388149][ T5319] Workqueue: events irqfd_inject
[   97.390298][ T5319] Call Trace:
[   97.391794][ T5319]  <TASK>
[   97.393110][ T5319]  vpanic+0x56c/0xa60
[   97.394848][ T5319]  ? __pfx__printk+0x10/0x10
[   97.396798][ T5319]  ? __pfx_vpanic+0x10/0x10
[   97.398779][ T5319]  ? is_bpf_text_address+0x292/0x2b0
[   97.401086][ T5319]  ? is_bpf_text_address+0x26/0x2b0
[   97.403287][ T5319]  panic+0xc5/0xd0
[   97.404809][ T5319]  ? __pfx_panic+0x10/0x10
[   97.406665][ T5319]  ? ret_from_fork_asm+0x1a/0x30
[   97.408866][ T5319]  __warn+0x315/0x4c0
[   97.410626][ T5319]  ? __kvm_gpc_refresh+0x154c/0x1750
[   97.412953][ T5319]  ? __kvm_gpc_refresh+0x154c/0x1750
[   97.415341][ T5319]  __report_bug+0x29a/0x540
[   97.421659][ T5319]  ? check_noncircular+0xda/0x150
[   97.423899][ T5319]  ? __kvm_gpc_refresh+0x154c/0x1750
[   97.426221][ T5319]  ? __pfx___report_bug+0x10/0x10
[   97.428436][ T5319]  ? __kvm_gpc_refresh+0x154c/0x1750
[   97.430764][ T5319]  report_bug+0x16a/0x220
[   97.432635][ T5319]  ? __kvm_gpc_refresh+0x154c/0x1750
[   97.434812][ T5319]  ? __kvm_gpc_refresh+0x154e/0x1750
[   97.436963][ T5319]  handle_bug+0x9c/0x200
[   97.438880][ T5319]  exc_invalid_op+0x1a/0x50
[   97.440880][ T5319]  asm_exc_invalid_op+0x1a/0x20
[   97.443035][ T5319] RIP: 0010:__kvm_gpc_refresh+0x154c/0x1750
[   97.445694][ T5319] Code: c6 05 77 c1 d9 0e 01 48 c7 c7 96 14 f9 8d be 3c 04 00 00 48 c7 c2 e0 3d c2 8b e8 0f 17 61 00 e9 40 ee ff ff e8 65 e9 84 00 90 <0f> 0b 90 bb ea ff ff ff 49 bf 00 00 00 00 00 fc ff df e9 fa f5 ff
[   97.453785][ T5319] RSP: 0018:ffffc9000e437680 EFLAGS: 00010293
[   97.456432][ T5319] RAX: ffffffff8140e14b RBX: ffff888000000000 RCX: ffff88801f2fa500
[   97.459924][ T5319] RDX: 0000000000000000 RSI: ffff888000000000 RDI: ffff888000000000
[   97.463475][ T5319] RBP: ffffc9000e437810 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[   97.466800][ T5319] R10: dffffc0000000000 R11: fffffbfff206199f R12: 1ffff92001c86ee4
[   97.470312][ T5319] R13: ffff888034d19280 R14: ffff888000000000 R15: ffffffffffffff01
[   97.473710][ T5319]  ? __kvm_gpc_refresh+0x154b/0x1750
[   97.475966][ T5319]  ? kvm_xen_set_evtchn_fast+0x1fb/0x9b0
[   97.478494][ T5319]  ? lock_acquire+0x106/0x350
[   97.480534][ T5319]  ? kvm_gpc_refresh+0x31/0x120
[   97.482673][ T5319]  ? __pfx___kvm_gpc_refresh+0x10/0x10
[   97.484869][ T5319]  ? kvm_xen_set_evtchn+0x137/0x230
[   97.487172][ T5319]  kvm_gpc_refresh+0xe1/0x120
[   97.489140][ T5319]  ? kvm_xen_set_evtchn+0x137/0x230
[   97.491358][ T5319]  kvm_xen_set_evtchn+0x163/0x230
[   97.493635][ T5319]  ? __pfx_evtchn_set_fn+0x10/0x10
[   97.495862][ T5319]  kvm_set_irq+0x2b6/0x5a0
[   97.497856][ T5319]  ? __pfx_kvm_set_irq+0x10/0x10
[   97.500047][ T5319]  ? __pfx_evtchn_set_fn+0x10/0x10
[   97.502361][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.504806][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.507324][ T5319]  irqfd_inject+0xa6/0x100
[   97.509340][ T5319]  ? process_scheduled_works+0xa70/0x1860
[   97.511858][ T5319]  process_scheduled_works+0xb5d/0x1860
[   97.514315][ T5319]  ? __pfx_process_scheduled_works+0x10/0x10
[   97.516846][ T5319]  ? assign_work+0x3d5/0x5e0
[   97.518854][ T5319]  worker_thread+0xa53/0xfc0
[   97.521073][ T5319]  kthread+0x388/0x470
[   97.522842][ T5319]  ? __pfx_worker_thread+0x10/0x10
[   97.525144][ T5319]  ? __pfx_kthread+0x10/0x10
[   97.527257][ T5319]  ret_from_fork+0x514/0xb70
[   97.529651][ T5319]  ? __pfx_ret_from_fork+0x10/0x10
[   97.532477][ T5319]  ? __switch_to+0xc79/0x1410
[   97.535122][ T5319]  ? __pfx_kthread+0x10/0x10
[   97.537614][ T5319]  ret_from_fork_asm+0x1a/0x30
[   97.539971][ T5319]  </TASK>
[   97.541714][ T5319] Kernel Offset: disabled
[   97.543657][ T5319] Rebooting in 86400 seconds..