last executing test programs: 1m8.329647305s ago: executing program 1 (id=1929): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfd000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000000000000004000000000000000040001c4", @ANYRESHEX=r4], 0x40}, &(0x7f0000000240)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r1, 0x80111500, 0x20000000) r7 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000140)={0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1400000000070000000000000000000064df1300000030600600000000000000456c006f81f9ff7f1f5a47347c29d13535e8577de61c9328dd8a2d64d32f42e79e8ef4eb00e2438a78702a1c159e711d863ffdcdcee4d7877cfd8f32f412dee4a9c0602e20cc2b2143c51c5c009e2993066ad2e86c1bfa2e7e23f7f8f83a3dd933bef58ba7c38476262d3c65fcbf616065f2d85742fa92a8c700aea9"], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) ioctl$KVM_RUN(r10, 0xae80, 0x0) write$eventfd(r6, &(0x7f0000000000), 0xfffffdef) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r12, 0x4010ae67, &(0x7f0000000080)={0x4, 0x2000}) ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) r13 = syz_kvm_vgic_v3_setup(r12, 0x4, 0x40) close(0x5) close(r13) close(0x4) r14 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000000)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x541b, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 51.007544742s ago: executing program 0 (id=1931): munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x53033, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000fde000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000e0c000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x43033, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000e0b000/0x1000)=nil, 0x1000) 48.151432531s ago: executing program 1 (id=1932): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000000480)=ANY=[@ANYBLOB="02000000000000000200000002000000000000000000000008000000050000000000000000000000000000000000000000000000000000000200"]) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='n\x00\x00\x00\x00\x00\x00\x000\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\x00\x00\x00\x00i'], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0xfffffbffffffffff, 0x240) ioctl$KVM_RUN(r5, 0xae80, 0x0) 44.309468853s ago: executing program 0 (id=1933): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) eventfd2(0xfffffffb, 0x80800) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000100)="fb0149dd033be3ac2cc4a29ea667521ce16f8f1f449a7a835600000000000000000000000000ffffffffffffffde00", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r7, 0x0) ioctl$KVM_SET_REGS(r7, 0x4360ae82, &(0x7f0000000200)={[0x6, 0x1e2c0000, 0xbb71, 0x8001, 0x4, 0x8, 0x40ae, 0x0, 0xfffffffffffffffe, 0x401, 0xfffffffffffffff8, 0x100000001, 0x3, 0x3ff, 0x101, 0x401], 0xdddd0000, 0x420}) r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000040)=@x86={0x2e, 0x9, 0x2, 0x0, 0x2, 0x9e, 0x5, 0x0, 0x4, 0xc, 0x8, 0xf8, 0x0, 0x0, 0x9e, 0x1, 0x0, 0x1, 0x1, '\x00', 0xf, 0x200}) r10 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="14000000000000002000000000000000"], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000005, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x2000009, 0x4102932, 0xffffffffffffffff, 0x0) ioctl$KVM_IOEVENTFD(r12, 0xc0189436, &(0x7f0000000080)={0x0, 0x0, 0x1, 0xffffffffffffffff, 0x5}) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x3800003, 0x11, r15, 0x0) 35.912456996s ago: executing program 1 (id=1934): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="14000000000000002000000000000000848013050000000000"], 0x20}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) (async) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) (async) ioctl$KVM_IRQ_LINE_STATUS(r6, 0xc008ae67, &(0x7f0000000040)={0x0, 0x9}) (async) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 31.293604224s ago: executing program 0 (id=1935): r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000000)=@arm64={0x8, 0x8, 0x3, '\x00', 0x5}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000080)=@attr_arm64={0x0, 0x3, 0x0, &(0x7f0000000040)=0xdc44}) mmap$KVM_VCPU(&(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0, 0x12, r0, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffd000/0x1000)=nil, r1, 0x0, 0x110, r0, 0x0) r2 = syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x3, 0x20) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000100)=@attr_other={0x0, 0xb, 0xfffffffffffffffa, &(0x7f00000000c0)=0x8000000000000001}) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000140)={0x10000, 0x2, 0x5000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) r4 = eventfd2(0xe9, 0x80000) close(r4) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_ARM_VCPU_FINALIZE(r5, 0x4004aec2, &(0x7f0000000180)=0x3) r6 = eventfd2(0x9a7, 0x80000) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f00000001c0)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x401}) ioctl$KVM_GET_SREGS(r5, 0x8000ae83, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000340)={0xd000, 0x4000}) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000380)={0x401, 0xdddd0000, 0x2, r6, 0x4}) ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000400)=@arm64_sys={0x603000000013df40, &(0x7f00000003c0)=0x4}) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000440)=@arm64={0x1, 0x0, 0xa, '\x00', 0x24}) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000004c0)=@arm64_ccsidr={0x6020000000110003, &(0x7f0000000480)=0x4}) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000540)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000500)=0x3}) syz_kvm_vgic_v3_setup(r3, 0x3, 0x240) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x80) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r1, 0x0, 0x20010, r7, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000b40)={0x0, &(0x7f0000000580)=[@uexit={0x0, 0x18}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x80, 0x8, 0x11}}, @uexit={0x0, 0x18, 0x1}, @irq_setup={0x46, 0x18, {0x1, 0x13b}}, @msr={0x14, 0x20, {0x603000000013c108, 0x7}}, @eret={0xe6, 0x18, 0x5}, @hvc={0x32, 0x40, {0x80, [0x2, 0x100000000, 0xf6a8, 0x100000001, 0x800]}}, @msr={0x14, 0x20, {0x6030000000131a04, 0x5}}, @uexit={0x0, 0x18, 0x4f}, @eret={0xe6, 0x18, 0x4}, @svc={0x122, 0x40, {0x84000007, [0x8, 0x4, 0x3, 0xe, 0x8]}}, @eret={0xe6, 0x18, 0xffffffffffffffff}, @svc={0x122, 0x40, {0x80000000, [0xffffffff00000000, 0x3, 0x7, 0x6, 0x10]}}, @hvc={0x32, 0x40, {0x8000, [0x3, 0xffffffffffffff80, 0x7fff, 0xf, 0x10]}}, @svc={0x122, 0x40, {0x86000001, [0x3, 0x4, 0x63d6, 0x3, 0x5]}}, @hvc={0x32, 0x40, {0x84000010, [0xad, 0x3c8, 0x9aa, 0x7, 0x5]}}, @svc={0x122, 0x40, {0x3f000000, [0x8, 0x401, 0x3, 0xc70, 0xfffffffffffffffc]}}, @svc={0x122, 0x40, {0x2, [0xa0, 0x48a, 0x7, 0x6000, 0x101]}}, @uexit={0x0, 0x18, 0x3}, @code={0xa, 0xb4, {"007008d5a03a8ed200c0b8f2e10180d2620180d2a30180d2040180d2020000d4007008d5201a9dd200a0b8f2a10080d2820180d2430080d2040180d2020000d4e01a97d20000b8f2210180d2420180d2e30080d2240080d2020000d420bd82d20000b0f2c10180d2220180d2230080d2840080d2020000d40000403c00a4006fc0e897d20080b8f2610080d2420180d2630080d2440180d2020000d4007008d5"}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x1e8}}, @msr={0x14, 0x20, {0x603000000013e660}}, @eret={0xe6, 0x18, 0x4}, @hvc={0x32, 0x40, {0x1, [0x7b44, 0x9, 0x9, 0x6, 0x6]}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x233}}, @smc={0x1e, 0x40, {0x80, [0x75, 0x9e32, 0xfb9b, 0xc7b, 0xfffffffffffffffc]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x4, 0x0, 0x81, 0x6}}, @uexit={0x0, 0x18, 0x3}, @eret={0xe6, 0x18, 0x10000}, @svc={0x122, 0x40, {0x84000006, [0x4, 0x10000, 0x8, 0x8, 0xe002]}}, @mrs={0xbe, 0x18, {0x603000000013deb0}}, @eret={0xe6, 0x18, 0x1000}], 0x5b4}, &(0x7f0000000b80), 0x1) 25.631304754s ago: executing program 1 (id=1936): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8000, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2400, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r7, 0xc0189436, 0x100000000000000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)) r9 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x3ff}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="14000000000000002000000000000000f2c4130000003060008000000000000014000000000000002000000000000000e0dc1300000030d11b"], 0x60}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r4, 0x40a0ae49, &(0x7f0000000240)={0x2, 0x1, 0xd000, 0x2000, &(0x7f0000ccb000/0x2000)=nil, 0x1}) r12 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000180)={0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="14000000000000002000000000000000f1c4130000003060008000000000000014000000000000002000000000000000f2c4130000003060008000000000000014000000000000002000000000000000e0dc130000003060c7"], 0x140}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r12, 0xae80, 0x0) 24.059900408s ago: executing program 0 (id=1937): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000380)="4df74d20cd04ee4ce2aa8a0797d68e953766cd7a4855880c9bf8c2b7cf738dc33732698d631778d116a24fd82e39c234c499eff943378c8ca92835aac201b216e92cae0faa84392b", 0x0, 0x48) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000240)={0x6, 0xffffffffffffffff, 0x1}) write$eventfd(r8, &(0x7f00000001c0), 0xf001) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r9, &(0x7f00000000c0)=0xffffffffffff8000, 0x8) openat$kvm(0x0, 0x0, 0x457140, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r10 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000200)={0x4, 0x2}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x0, 0x3800002, 0x4000010, r10, 0x0) ioctl$KVM_S390_VCPU_FAULT(r10, 0x4008ae52, &(0x7f00000001c0)=0x6bd) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x2) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000ff0000/0x10000)=nil, 0x930, 0x1, 0x12, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000000c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r12, 0x4018aee3, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x1, &(0x7f0000000100)=0x6}) openat$kvm(0x18, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x90) 12.992368353s ago: executing program 1 (id=1938): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xaece, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0xf000, 0x2000}) r2 = mmap$KVM_VCPU(&(0x7f0000005000/0x2000)=nil, 0x930, 0x3000007, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f0000000240)="fb4149dd033be3ac3bc4a22332fdaa8de0518df242008031d1dfd92f0000000001fff9ffdc9610fbff77521ce30d8f00", 0x0, 0xfcf7) 11.03012094s ago: executing program 0 (id=1939): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000340)={0x5}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x109000, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04) r14 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r13, 0x100000a, 0x12, r14, 0x100000) r15 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, r9, 0x0, 0x2012, r15, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000080)=@arm64_core={0x6030000000100010, &(0x7f0000000040)=0x4}) r16 = mmap$KVM_VCPU(&(0x7f0000dd3000/0x4000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r16, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r17 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@x86={0x4, 0xa2, 0x0, 0x0, 0x7, 0x4, 0x3, 0x5, 0x2, 0x4, 0x3, 0x9, 0x0, 0x2, 0x8, 0xe, 0x7, 0xc, 0xb, '\x00', 0x0, 0xfffffffffffff801}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x18000, 0x0) ioctl$KVM_CREATE_VM(r17, 0x401c5820, 0x20000000) 4.537953623s ago: executing program 1 (id=1940): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x140, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000100)=[@hvc={0x32, 0x40, {0x84000006, [0x5, 0x8000000000000000, 0x0, 0x0, 0x1]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f00000000c0), 0x909483, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x4) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5, 0xb}) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000200)=@arm64_core={0x603000000010002c, &(0x7f0000000140)=0x2}) r5 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000780)={0x0, &(0x7f0000000680)=[@code={0xa, 0x84, {"00fc209b000008d5e0888dd20060b8f2c10080d2620080d2a30180d2440080d2020000d4000000130000002b000008d50084202ea0a483d20000b8f2010080d2020080d2630180d2040180d2020000d4004d8fd200c0b0f2e10080d2e20080d2030180d2040180d2020000d4007008d5"}}], 0x84}, &(0x7f00000007c0)=[@featur2={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) 0s ago: executing program 0 (id=1941): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40c02, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r8, 0xae03, 0xc3) r9 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r9, 0x8040ae9f, 0xffffffffffffffff) (async, rerun: 64) ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000000)=@arm64={0x7, 0x5, 0x0, '\x00', 0x1}) (async, rerun: 64) munmap(&(0x7f00000be000/0x1000)=nil, 0xffffffffdff41fff) (async) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000080)={0x5}) (async) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000140)=@arm64_sys={0x603000000013c2b0, &(0x7f0000000000)=0x8000000000000000}) r13 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r4, @ANYRESHEX=r13, @ANYBLOB="f82cf9188e6de57527c965f7ff8f4a460f3bd22df7d852642d7078b99478b4566febae30c8dfb66690644ef3e477c6470cb2502547b9d7a45a269ebc72a7f928663a064fb9eaac6817f26c986a400bb3df605e329271b8297bbe0b1d3f7723bafd99accd92d24859c002731614b84ced72f6089b887530c8a3704928173ec2898708598f406287fedd0222c370b5a3eaaa1b6db2206dfad65ce09a64aa0908a73fadd81d124f0512171a88a687fa71354453118a31e8d89c09efbeb5"], 0x28}, 0x0, 0x0) (async, rerun: 64) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r14, 0xae80, 0x0) (async, rerun: 64) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_other={0x0, 0xd08, 0x81, &(0x7f00000002c0)=0xf}) (async, rerun: 32) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) (rerun: 32) kernel console output (not intermixed with test programs): [ 381.721994][ T3132] 8021q: adding VLAN 0 to HW filter on device bond0 [ 417.373982][ T3132] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:6140' (ED25519) to the list of known hosts. [ 591.200933][ T25] audit: type=1400 audit(590.340:60): avc: denied { name_bind } for pid=3281 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 592.915061][ T25] audit: type=1400 audit(592.070:61): avc: denied { execute } for pid=3282 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 592.945500][ T25] audit: type=1400 audit(592.090:62): avc: denied { execute_no_trans } for pid=3282 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 614.409992][ T25] audit: type=1400 audit(613.550:63): avc: denied { mounton } for pid=3282 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 614.437338][ T25] audit: type=1400 audit(613.590:64): avc: denied { mount } for pid=3282 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 614.521700][ T3282] cgroup: Unknown subsys name 'net' [ 614.570658][ T25] audit: type=1400 audit(613.720:65): avc: denied { unmount } for pid=3282 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 614.961378][ T3282] cgroup: Unknown subsys name 'cpuset' [ 615.066253][ T3282] cgroup: Unknown subsys name 'rlimit' [ 615.949927][ T25] audit: type=1400 audit(615.100:66): avc: denied { setattr } for pid=3282 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 615.977472][ T25] audit: type=1400 audit(615.120:67): avc: denied { mounton } for pid=3282 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 616.001914][ T25] audit: type=1400 audit(615.150:68): avc: denied { mount } for pid=3282 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 617.254124][ T3285] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 617.274175][ T25] audit: type=1400 audit(616.420:69): avc: denied { relabelto } for pid=3285 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 617.294388][ T25] audit: type=1400 audit(616.450:70): avc: denied { write } for pid=3285 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 617.465478][ T25] audit: type=1400 audit(616.620:71): avc: denied { read } for pid=3282 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 617.494184][ T25] audit: type=1400 audit(616.640:72): avc: denied { open } for pid=3282 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 617.533034][ T3282] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 665.085706][ T25] audit: type=1400 audit(664.240:73): avc: denied { execmem } for pid=3286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 668.719935][ T25] audit: type=1400 audit(667.870:74): avc: denied { open } for pid=3288 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 668.735898][ T25] audit: type=1400 audit(667.890:75): avc: denied { read } for pid=3289 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 668.813825][ T25] audit: type=1400 audit(667.970:76): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 669.047018][ T25] audit: type=1400 audit(668.200:77): avc: denied { module_request } for pid=3289 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 669.065720][ T25] audit: type=1400 audit(668.220:78): avc: denied { module_request } for pid=3288 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 670.194537][ T25] audit: type=1400 audit(669.340:79): avc: denied { sys_module } for pid=3289 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 698.506098][ T3289] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 698.982880][ T3289] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 700.604491][ T3288] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 700.879327][ T3288] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 715.727028][ T3289] hsr_slave_0: entered promiscuous mode [ 715.775752][ T3289] hsr_slave_1: entered promiscuous mode [ 716.702006][ T3288] hsr_slave_0: entered promiscuous mode [ 716.736056][ T3288] hsr_slave_1: entered promiscuous mode [ 716.765961][ T3288] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 716.771599][ T3288] Cannot create hsr debugfs directory [ 722.080647][ T25] audit: type=1400 audit(721.230:80): avc: denied { create } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 722.151876][ T25] audit: type=1400 audit(721.260:81): avc: denied { write } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 722.194488][ T25] audit: type=1400 audit(721.350:82): avc: denied { read } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 722.296886][ T3289] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 722.706456][ T3289] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 723.032599][ T3289] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 723.314041][ T3289] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 724.774862][ T3288] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 724.925315][ T3288] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 725.085753][ T3288] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 725.311510][ T3288] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 737.882174][ T3289] 8021q: adding VLAN 0 to HW filter on device bond0 [ 740.461930][ T3288] 8021q: adding VLAN 0 to HW filter on device bond0 [ 796.617143][ T3289] veth0_vlan: entered promiscuous mode [ 797.025570][ T3289] veth1_vlan: entered promiscuous mode [ 799.023457][ T3289] veth0_macvtap: entered promiscuous mode [ 799.574602][ T3288] veth0_vlan: entered promiscuous mode [ 799.632799][ T3289] veth1_macvtap: entered promiscuous mode [ 800.425837][ T3288] veth1_vlan: entered promiscuous mode [ 801.923394][ T3289] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.934927][ T3289] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.951947][ T3289] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 801.996651][ T3289] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 803.311898][ T3288] veth0_macvtap: entered promiscuous mode [ 803.865147][ T3288] veth1_macvtap: entered promiscuous mode [ 804.569549][ T25] audit: type=1400 audit(803.710:83): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 804.755186][ T25] audit: type=1400 audit(803.900:84): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/syzkaller.V1mSVe/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 804.994069][ T25] audit: type=1400 audit(804.130:85): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 805.267756][ T25] audit: type=1400 audit(804.390:86): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/syzkaller.V1mSVe/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 805.355986][ T25] audit: type=1400 audit(804.510:87): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/syzkaller.V1mSVe/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3237 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 805.893904][ T25] audit: type=1400 audit(805.050:88): avc: denied { unmount } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 806.093427][ T25] audit: type=1400 audit(805.240:89): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 806.175319][ T3288] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.189760][ T3288] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.200511][ T3288] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.214115][ T3288] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.235536][ T25] audit: type=1400 audit(805.310:90): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="gadgetfs" ino=3244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 806.590684][ T25] audit: type=1400 audit(805.740:91): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 806.677992][ T25] audit: type=1400 audit(805.830:92): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 808.441612][ T3289] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 812.484872][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 812.505716][ T25] audit: type=1400 audit(811.610:97): avc: denied { read } for pid=3445 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 812.515010][ T25] audit: type=1400 audit(811.660:98): avc: denied { open } for pid=3445 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 813.019567][ T25] audit: type=1400 audit(812.130:99): avc: denied { ioctl } for pid=3445 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 815.199840][ T25] audit: type=1400 audit(814.350:100): avc: denied { append } for pid=3447 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 833.230813][ T25] audit: type=1400 audit(832.360:101): avc: denied { write } for pid=3457 comm="syz.0.5" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 842.901499][ T25] audit: type=1400 audit(842.000:102): avc: denied { execute } for pid=3464 comm="syz.1.7" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3531 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 853.182163][ T3472] kvm [3472]: Failed to find VMA for hva 0x20c01000 [ 875.376472][ T3489] kvm [3489]: Failed to find VMA for hva 0x20d8d000 [ 916.691521][ T25] audit: type=1400 audit(915.840:103): avc: denied { setattr } for pid=3520 comm="syz.1.21" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 970.710051][ T25] audit: type=1400 audit(969.860:104): avc: denied { ioctl } for pid=3564 comm="syz.0.33" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0xb707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1358.074514][ T3834] kvm [3834]: Failed to find VMA for hva 0x21016000 [ 1405.361244][ T3860] kvm [3860]: Failed to find VMA for hva 0x20d8d000 [ 1405.363364][ T3863] kvm [3863]: Failed to find VMA for hva 0x20d8d000 [ 1534.946808][ T3961] kvm [3961]: Failed to find VMA for hva 0x20c01000 [ 1556.317058][ T3976] kvm [3976]: Failed to find VMA for hva 0x21016000 [ 1891.005291][ T25] audit: type=1400 audit(1890.130:105): avc: denied { execute } for pid=4195 comm="syz.0.213" path=2F3130372F10FBFF67525673312B0104 dev="tmpfs" ino=555 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 1995.307962][ T4262] debugfs: File 'vgic-its-state@8080000' in directory '4260-37' already present! [ 2004.952698][ T4267] kvm [4267]: Failed to find VMA for hva 0x20d8d000 [ 2058.080425][ T4305] kvm [4305]: Failed to find VMA for hva 0x21016000 [ 2237.134270][ T4425] kvm [4425]: Failed to find VMA for hva 0x2101a000 [ 2237.272414][ T4425] kvm [4425]: Failed to find VMA for hva 0x2101a000 [ 2606.085707][ T25] audit: type=1400 audit(2605.240:106): avc: denied { map } for pid=4677 comm="syz.1.357" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2606.187747][ T25] audit: type=1400 audit(2605.340:107): avc: denied { execute } for pid=4677 comm="syz.1.357" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2781.255783][ T4785] kvm [4785]: Failed to find VMA for hva 0x20c01000 [ 3061.572269][ T4976] debugfs: File 'vgic-its-state@8080000' in directory '4976-4' already present! [ 3154.410581][ T5033] kvm [5033]: Failed to find VMA for hva 0x20d8d000 [ 3216.130161][ T5079] debugfs: File 'vgic-its-state@0' in directory '5079-4' already present! [ 3291.342295][ T5125] kvm [5125]: Failed to find VMA for hva 0x2036f000 [ 3371.382286][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 3371.382286][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.441970][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.441970][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.508141][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.508141][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.564135][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.564135][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.613676][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.613676][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.681890][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.681890][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.712523][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.712523][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.781630][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.781630][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.823950][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.823950][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3371.872458][ T5183] kvm [5182]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3371.872458][ T5183] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3386.976564][ T5193] kvm [5193]: Failed to find VMA for hva 0x21016000 [ 3471.366837][ T5246] kvm [5246]: Failed to find VMA for hva 0x208a1000 [ 3504.337006][ T5264] kvm [5264]: Failed to find VMA for hva 0x20b20000 [ 3543.663526][ T5290] kvm [5290]: Failed to find VMA for hva 0x20c01000 [ 3595.893880][ T5324] kvm [5324]: Failed to find VMA for hva 0x21016000 [ 3698.854665][ T5389] print_sys_reg_msg: 234 callbacks suppressed [ 3698.892026][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 3698.892026][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3698.907164][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3698.907164][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3698.951825][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3698.951825][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3698.991037][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3698.991037][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.012720][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.012720][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.042197][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.042197][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.061272][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.061272][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.103519][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.103519][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.144646][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.144646][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 3699.166318][ T5389] kvm [5388]: Unsupported guest CP15 access at: 00000100 [000001db] [ 3699.166318][ T5389] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4031.894591][ T5616] kvm [5616]: Failed to find VMA for hva 0x21016000 [ 4101.931604][ T5674] kvm [5674]: Failed to find VMA for hva 0x21016000 [ 4103.583898][ T5674] kvm [5674]: Failed to find VMA for hva 0x21016000 [ 4125.761907][ T5690] kvm [5690]: Failed to find VMA for hva 0x20d8d000 [ 4175.381030][ T5727] kvm [5727]: Failed to find VMA for hva 0x20c01000 [ 4180.777539][ T5730] kvm [5730]: Failed to find VMA for hva 0x21016000 [ 4318.747556][ T5820] kvm [5820]: Failed to find VMA for hva 0x20c01000 [ 4829.643037][ T6162] kvm [6162]: Failed to find VMA for hva 0x20d8d000 [ 4894.257560][ T6215] kvm [6212]: Unsupported guest access at: eeef0000 [ 4894.257560][ T6215] { Op0( 2), Op1( 7), CRn(15), CRm(13), Op2( 1), func_write }, [ 5031.150214][ T6311] kvm [6311]: Failed to find VMA for hva 0x20d8c000 [ 5280.245845][ T6486] kvm [6486]: Failed to find VMA for hva 0x20c01000 [ 5351.104903][ T6534] kvm [6534]: Failed to find VMA for hva 0x20c01000 [ 5351.284979][ T6535] kvm [6535]: Failed to find VMA for hva 0x20c01000 [ 5444.577964][ T6598] kvm [6598]: Failed to find VMA for hva 0x208a1000 [ 5444.677791][ T6597] kvm [6597]: Failed to find VMA for hva 0x208a1000 [ 5580.161690][ T6691] kvm [6691]: Failed to find VMA for hva 0x20d8d000 [ 5725.620614][ T6789] kvm [6789]: Failed to find VMA for hva 0x20d8d000 [ 5749.667105][ T6806] kvm [6806]: Failed to find VMA for hva 0x208a1000 [ 5833.637667][ T6861] kvm [6861]: Failed to find VMA for hva 0x21016000 [ 5989.843510][ T6956] kvm [6956]: Failed to find VMA for hva 0x20c01000 [ 5993.436793][ T6959] kvm [6959]: Failed to find VMA for hva 0x20d8d000 [ 6015.901669][ T6977] kvm [6977]: Failed to find VMA for hva 0x20c01000 [ 6765.146810][ T6483] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6766.235983][ T6483] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6767.035783][ T6483] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6767.943709][ T6483] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6784.672840][ T6483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6784.914220][ T6483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6785.056284][ T6483] bond0 (unregistering): Released all slaves [ 6787.513791][ T6483] hsr_slave_0: left promiscuous mode [ 6787.722323][ T6483] hsr_slave_1: left promiscuous mode [ 6788.581493][ T6483] veth1_macvtap: left promiscuous mode [ 6788.600300][ T6483] veth0_macvtap: left promiscuous mode [ 6788.621195][ T6483] veth1_vlan: left promiscuous mode [ 6788.664157][ T6483] veth0_vlan: left promiscuous mode [ 6850.476150][ T7383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6850.905817][ T7383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6876.037719][ T7383] hsr_slave_0: entered promiscuous mode [ 6876.153428][ T7383] hsr_slave_1: entered promiscuous mode [ 6876.242774][ T7383] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 6876.251645][ T7383] Cannot create hsr debugfs directory [ 6894.613590][ T7383] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 6895.047085][ T7383] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 6895.461856][ T7383] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 6895.853235][ T7383] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 6922.134768][ T7383] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7000.927316][ T7383] veth0_vlan: entered promiscuous mode [ 7001.517280][ T7383] veth1_vlan: entered promiscuous mode [ 7003.099043][ T7383] veth0_macvtap: entered promiscuous mode [ 7003.414648][ T7383] veth1_macvtap: entered promiscuous mode [ 7005.002321][ T7383] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7005.006881][ T7383] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7005.021821][ T7383] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7005.024234][ T7383] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7040.157050][ T7399] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7041.622555][ T7399] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7042.879922][ T7399] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7044.287862][ T7399] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7054.493642][ T7574] kvm [7574]: Failed to find VMA for hva 0x20c01000 [ 7061.085339][ T7399] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7061.338087][ T7399] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7061.487119][ T7399] bond0 (unregistering): Released all slaves [ 7063.520665][ T7399] hsr_slave_0: left promiscuous mode [ 7063.600921][ T7399] hsr_slave_1: left promiscuous mode [ 7064.281094][ T7399] veth1_macvtap: left promiscuous mode [ 7064.282930][ T7399] veth0_macvtap: left promiscuous mode [ 7064.311354][ T7399] veth1_vlan: left promiscuous mode [ 7064.324913][ T7399] veth0_vlan: left promiscuous mode [ 7141.452342][ T7565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7141.859480][ T7565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7172.729392][ T7565] hsr_slave_0: entered promiscuous mode [ 7172.797243][ T7565] hsr_slave_1: entered promiscuous mode [ 7194.416176][ T7565] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 7194.805226][ T7565] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 7195.292788][ T7565] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 7195.664495][ T7565] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 7226.343369][ T7565] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7311.703365][ T7565] veth0_vlan: entered promiscuous mode [ 7312.163877][ T7565] veth1_vlan: entered promiscuous mode [ 7313.991590][ T7565] veth0_macvtap: entered promiscuous mode [ 7314.651211][ T7565] veth1_macvtap: entered promiscuous mode [ 7317.437308][ T7565] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7317.457130][ T7565] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7317.480828][ T7565] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7317.502614][ T7565] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7425.116580][ T7855] kvm [7855]: Failed to find VMA for hva 0x20c01000 [ 7511.061660][ T7899] kvm [7899]: Failed to find VMA for hva 0x20d8d000 [ 7552.370639][ T7927] kvm [7927]: Failed to find VMA for hva 0x20c01000 [ 7713.001843][ T8032] kvm [8032]: Failed to find VMA for hva 0x20c01000 [ 7771.065666][ T8073] kvm [8073]: Failed to find VMA for hva 0x21016000 [ 8135.793635][ T8310] debugfs: File 'vgic-its-state@8080000' in directory '8310-12' already present! [ 8264.910943][ T8397] kvm [8397]: Failed to find VMA for hva 0x20c01000 [ 8292.623762][ T8415] kvm [8415]: Failed to find VMA for hva 0x21016000 [ 8552.631900][ T8607] kvm [8607]: Failed to find VMA for hva 0x2036f000 [ 9033.231777][ T8922] kvm [8922]: Failed to find VMA for hva 0x20d8d000 [ 9071.065753][ T8949] print_sys_reg_msg: 384 callbacks suppressed [ 9071.163405][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 9071.163405][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.187403][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.187403][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.256467][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.256467][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.353380][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.353380][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.393111][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.393111][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.493273][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.493273][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.632565][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.632565][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.753353][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.753353][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9071.883266][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9071.883266][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9072.042895][ T8949] kvm [8946]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9072.042895][ T8949] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9192.115853][ T9025] kvm [9025]: Failed to find VMA for hva 0x208a1000 [ 9339.007151][ T9128] kvm [9128]: Failed to find VMA for hva 0x20d8d000 [ 9683.327890][ T9360] kvm [9360]: Failed to find VMA for hva 0x208a1000 [10043.117705][ T9591] FAULT_INJECTION: forcing a failure. [10043.117705][ T9591] name failslab, interval 1, probability 0, space 0, times 1 [10043.120339][ T9591] CPU: 0 UID: 0 PID: 9591 Comm: syz.0.1770 Not tainted 6.16.0-rc3-syzkaller-g15724a984643 #0 PREEMPT [10043.120905][ T9591] Hardware name: linux,dummy-virt (DT) [10043.121376][ T9591] Call trace: [10043.121768][ T9591] show_stack+0x2c/0x3c (C) [10043.123671][ T9591] __dump_stack+0x30/0x40 [10043.123954][ T9591] dump_stack_lvl+0xd8/0x12c [10043.124165][ T9591] dump_stack+0x1c/0x28 [10043.124393][ T9591] should_fail_ex+0x570/0x6e0 [10043.124644][ T9591] should_failslab+0xb8/0xec [10043.124862][ T9591] kmem_cache_alloc_noprof+0x80/0x3f0 [10043.125163][ T9591] __send_signal_locked+0x1f0/0xe14 [10043.125441][ T9591] send_signal_locked+0xac/0x870 [10043.125683][ T9591] force_sig_info_to_task+0x384/0x584 [10043.125932][ T9591] force_sig_fault+0x70/0xa0 [10043.126181][ T9591] arm64_force_sig_fault+0x6c/0x80 [10043.126429][ T9591] do_page_fault+0xd64/0x15c8 [10043.126710][ T9591] do_translation_fault+0xbc/0xfc [10043.126984][ T9591] do_mem_abort+0x50/0x110 [10043.127296][ T9591] el0_da+0x64/0x144 [10043.127556][ T9591] el0t_64_sync_handler+0x84/0x108 [10043.127803][ T9591] el0t_64_sync+0x198/0x19c [10092.830354][ T9615] kvm [9615]: Failed to find VMA for hva 0x20c01000 [10118.816735][ T9631] print_sys_reg_msg: 177 callbacks suppressed [10118.855552][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001d3] [10118.855552][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10118.881186][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10118.881186][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10118.923394][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10118.923394][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10118.953709][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10118.953709][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10118.987676][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10118.987676][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10119.071271][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10119.071271][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10119.121808][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10119.121808][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10119.174897][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10119.174897][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10119.251418][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10119.251418][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10119.295858][ T9631] kvm [9630]: Unsupported guest CP15 access at: 00000100 [000001db] [10119.295858][ T9631] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [10255.542069][ T9735] debugfs: File 'vgic-its-state@8080000' in directory '9735-6' already present! [10416.425435][ T9832] kvm [9832]: Failed to find VMA for hva 0x20c01000 [10471.447091][ T9872] kvm [9872]: Failed to find VMA for hva 0x21016000 [10658.765144][T10014] kvm [10014]: Failed to find VMA for hva 0x208a1000 [10740.197239][T10056] kvm [10056]: Failed to find VMA for hva 0x20d8d000 [10782.032164][T10088] irq bypass consumer (token 00000000b20d3ed1) registration fails: -16 [10916.456593][T10180] ------------[ cut here ]------------ [10916.457579][T10180] WARNING: CPU: 0 PID: 10180 at arch/arm64/kvm/inject_fault.c:71 pend_serror_exception+0x19c/0x5ac [10916.460226][T10180] Modules linked in: [10916.462386][T10180] CPU: 0 UID: 0 PID: 10180 Comm: syz.0.1941 Not tainted 6.16.0-rc3-syzkaller-g15724a984643 #0 PREEMPT [10916.463908][T10180] Hardware name: linux,dummy-virt (DT) [10916.465074][T10180] pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [10916.466480][T10180] pc : pend_serror_exception+0x19c/0x5ac [10916.467553][T10180] lr : pend_serror_exception+0x19c/0x5ac [10916.468597][T10180] sp : ffff80008f3f7930 [10916.469469][T10180] x29: ffff80008f3f7930 x28: 1ff000001d7f3b28 x27: 0000000000000001 [10916.471512][T10180] x26: 0000000000000000 x25: 0000000000000001 x24: 000000000000001f [10916.473249][T10180] x23: 1ff000001d7f3da8 x22: 000000000000001f x21: 1ff000001d7f4981 [10916.474971][T10180] x20: 0000000000000007 x19: efff800000000000 x18: 0000000000000000 [10916.476619][T10180] x17: 000000000000007e x16: ffff800080011d9c x15: 0000000020000000 [10916.478224][T10180] x14: ffffffffffffffff x13: 0000000000000028 x12: 0000000000000034 [10916.479946][T10180] x11: 34f000001766d064 x10: 0000000000ff0100 x9 : 0000000000000000 [10916.481832][T10180] x8 : 34f000001766bb00 x7 : ffff800080b08704 x6 : ffff80008f3f7a88 [10916.483603][T10180] x5 : ffff80008f3f7a88 x4 : 0000000000000001 x3 : ffff8000801a2e80 [10916.485260][T10180] x2 : 0000000000000000 x1 : 0000000000000002 x0 : 0000000000000000 [10916.486985][T10180] Call trace: [10916.487893][T10180] pend_serror_exception+0x19c/0x5ac (P) [10916.488980][T10180] kvm_inject_serror_esr+0x274/0xe40 [10916.490006][T10180] __kvm_arm_vcpu_set_events+0x1d4/0x238 [10916.491127][T10180] kvm_arch_vcpu_ioctl+0xed8/0x16b0 [10916.492197][T10180] kvm_vcpu_ioctl+0x5c4/0xc2c [10916.493236][T10180] __arm64_sys_ioctl+0x18c/0x244 [10916.494265][T10180] invoke_syscall+0x90/0x2b4 [10916.495298][T10180] el0_svc_common+0x180/0x2f4 [10916.496372][T10180] do_el0_svc+0x58/0x74 [10916.497394][T10180] el0_svc+0x58/0x160 [10916.498377][T10180] el0t_64_sync_handler+0x78/0x108 [10916.499425][T10180] el0t_64_sync+0x198/0x19c [10916.500599][T10180] irq event stamp: 72 [10916.501480][T10180] hardirqs last enabled at (71): [] _raw_read_unlock_irqrestore+0x44/0xbc [10916.502935][T10180] hardirqs last disabled at (72): [] el1_dbg+0x24/0x80 [10916.504198][T10180] softirqs last enabled at (38): [] local_bh_enable+0x10/0x34 [10916.505586][T10180] softirqs last disabled at (36): [] local_bh_disable+0x10/0x34 [10916.507045][T10180] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [10924.196433][ T9623] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10925.691350][ T9623] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10927.565760][ T9623] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10928.575892][ T9623] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10943.211895][ T9623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [10943.386668][ T9623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [10943.544997][ T9623] bond0 (unregistering): Released all slaves [10945.530975][ T9623] hsr_slave_0: left promiscuous mode [10945.567410][ T9623] hsr_slave_1: left promiscuous mode [10945.942065][ T9623] veth1_macvtap: left promiscuous mode [10945.961912][ T9623] veth0_macvtap: left promiscuous mode [10945.971186][ T9623] veth1_vlan: left promiscuous mode [10945.977057][ T9623] veth0_vlan: left promiscuous mode VM DIAGNOSIS: 16:05:01 Registers: info registers vcpu 0 CPU#0 PC=ffff800080689428 X00=ffff80008f3f704d X01=0000000000000000 X02=0000000000000000 X03=ffff80008f3f704e X04=00000000000027c4 X05=0000000000000001 X06=0000000000000000 X07=ffff800080488668 X08=0000000000000001 X09=0000000000000000 X10=0000000000ff0100 X11=ffff80008c1b26ff X12=000000000000003a X13=0000000000000007 X14=0000000000000000 X15=ffff800087f39a30 X16=ffff800080011d9c X17=000000000000007e X18=0000000000000000 X19=00000000000000ff X20=ffff800087983e60 X21=34f000001766bb08 X22=efff800000000000 X23=0000000000000000 X24=ffff800087983e08 X25=ffff800087983e68 X26=0000000000000034 X27=ffff80008f3f72e4 X28=0000000000000080 X29=ffff80008f3f70d0 X30=ffff80008651c358 SP=ffff80008f3f70d0 PSTATE=204023c9 --C- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=0000ffffefa317a0:3a43e795bea94700 Z02=0000ffffefa31780:ffffff80ffffffd8 Z03=0000ffffefa31830:0000ffffefa31830 Z04=0000ffffefa31830:0000ffffa5336d08 Z05=0000ffffefa31800:0000ffffefa31830 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffefa31a50:0000ffffefa31a50 Z17=ffffff80ffffffd0:0000ffffefa31a20 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000