last executing test programs: 57.509858235s ago: executing program 0 (id=1340): openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x18b400, 0x0) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000eb4000/0x3000)=nil, 0x930, 0x200000c, 0x28031, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f00000002c0)=@arm64_ccsidr={0x6020000000110011, 0x0}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x88) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) 50.468967483s ago: executing program 1 (id=1341): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000000), 0x40c0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r4, 0x100000b, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="140000000000000020000000000000005dc613"], 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 49.890645879s ago: executing program 0 (id=1342): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r2 = syz_kvm_add_vcpu$arm64(r1, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@irq_setup={0x46, 0x18, {0x1, 0x17e}}], 0x18}, 0x0, 0x0) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x0, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = eventfd2(0x0, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, &(0x7f0000000300)=ANY=[], 0x28}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f0000000280)=@arm64_bitmap={0x6030000000160001, &(0x7f0000000240)=0x618}) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000040)={0x800000000003, 0xeeee0000, 0x2, r7, 0x8}) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000900)={0xfffffffffffffffc, 0x0, 0x1, r7, 0x1}) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x1, r7, 0x5}) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r6, 0xc008ae67, &(0x7f00000000c0)={0x7}) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_IRQFD(r13, 0x4020ae76, &(0x7f0000000140)={r7, 0xc8, 0x1}) ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x400454d8, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 41.289567211s ago: executing program 1 (id=1343): openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xc0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xc0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000200)={0x7}) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000240)={0x0, 0x10000, 0x0, 0x0, 0x8d}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x4080, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r7, 0x4068aea3, &(0x7f00000001c0)={0xdf, 0x0, 0x19000}) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) (async) r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100050, &(0x7f0000000240)=0xff}) (async) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100050, &(0x7f0000000240)=0xff}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) (async) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, r9, 0x3000006, 0x10, r8, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) r11 = openat$kvm(0x0, &(0x7f00000000c0), 0x200, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) (async) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000240)={0x5, 0x11}) ioctl$KVM_ARM_VCPU_FINALIZE(r13, 0x4004aec2, &(0x7f0000000040)=0x4) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000080)=@arm64_sve_vls={0x606000000015ffff, &(0x7f0000000000)=0x81}) ioctl$KVM_GET_REG_LIST(r13, 0xc008aeb0, &(0x7f0000000140)={0x4, [0x0, 0x6, 0xfffffffffffffffe, 0x8]}) (async) ioctl$KVM_GET_REG_LIST(r13, 0xc008aeb0, &(0x7f0000000140)={0x4, [0x0, 0x6, 0xfffffffffffffffe, 0x8]}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r10, 0x2000001, 0x5c1fd1b65647af1, r13, 0x0) close(0xffffffffffffffff) 28.656964273s ago: executing program 1 (id=1344): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_HALT_POLL(r3, 0x4068aea3, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfd000/0x400000)=nil) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000040)={0x16}) r4 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000080)={0x10000, 0x10f000}) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f00000000c0)={0x6000, 0x107000}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="76b92cfb97422a99b188adac74647aa1221e4d8e6da62d5f533e7f6120be5a845d77658c900fa608d72c085a1f4e5203df5e7728260b7ab522076295a9cbeeae01832398e92fc7bc", 0x0, 0x48) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000340)={0x5}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = eventfd2(0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000000000/0x400000)=nil) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x1, 0x0, 0x0, r7}) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001a40)={0xff, 0x0, 0x1, r7, 0x5}) 27.122660595s ago: executing program 0 (id=1345): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r4, 0x100000a, 0x12, r5, 0x100000) openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) r9 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000280)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x6, 0xfffffffffffffffe}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000002, 0x11, r14, 0x0) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, r15, 0x3000008, 0x11, r8, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x930, 0x0, 0x11, r8, 0x0) 17.441288348s ago: executing program 1 (id=1346): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) eventfd2(0x9, 0x89a07dea9ab7f07e) r1 = eventfd2(0x7, 0x2) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r3, 0x1, 0x40) r4 = eventfd2(0x0, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f00000002c0)={r4, 0x40fff, 0x0, r4}) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000140)={r4, 0xc8}) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000000)={r4, 0x10, 0x0, r1}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd9}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r7, 0x4018aee1, &(0x7f0000000200)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000080)={0xfffffffe, 0x1, 0x2}}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x40305839, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x100000000000000, &(0x7f0000000180)=0x10001}) 16.74119452s ago: executing program 0 (id=1347): syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x3ff}) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) r5 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000040)={0x3, 0xeeee0000, 0x2, r5, 0x8}) (async, rerun: 64) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000900)={0x0, 0x0, 0x1, r5, 0x1}) (async, rerun: 64) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x1, r5, 0x1}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 32) munmap(&(0x7f0000e68000/0x4000)=nil, 0x4000) (async) r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000280)={0x0, &(0x7f00000001c0)=ANY=[@ANYRES64], 0x60}, &(0x7f0000000300)=[@featur2={0x1, 0x11}], 0x1) (async) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x3bb080, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000240)={0x5, 0x1c}) (async) ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000100)=@arm64_extra={0x6030000000140000, &(0x7f00000001c0)=0x10003}) (async, rerun: 32) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (rerun: 32) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) (async) r12 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000000040)={0x3, 0xeeee0000, 0x2, r12, 0x8}) (async) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000000900)={0xfffffffffffffffc, 0x0, 0x1, r12, 0x1}) 8.91006091s ago: executing program 0 (id=1348): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x0, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r1, 0x3000000, 0x4f831, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000000)={0x8000000, 0x104000}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000080)={0x0, 0x6000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000100)={0x80a0000}) r5 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bfd000/0x400000)=nil) (async) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0xe6) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000c90000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) (async) munmap(&(0x7f0000f40000/0x5000)=nil, 0x5000) munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000) (async) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) (async) r7 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000000000000004000000000000000040001c4", @ANYRESHEX=r5], 0x40}, &(0x7f0000000240)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) 7.809240374s ago: executing program 1 (id=1349): r0 = openat$kvm(0x0, &(0x7f0000000000), 0xc2000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000180)=[@code={0xa, 0x84, {"007008d5000400f8007008d50090205e0074002f20a28fd20000b0f2a10180d2420080d2c30080d2240080d2020000d4007008d5000492d20060b0f2c10180d2a20080d2030080d2840180d2020000d4000008d540c596d20080b8f2210080d2020180d2e30180d2640080d2020000d4"}}, @svc={0x122, 0x40, {0x1000000, [0x3, 0x1, 0x3, 0x7, 0x4]}}, @uexit={0x0, 0x18, 0x76a}, @smc={0x1e, 0x40, {0x200, [0xffffffffffffffff, 0x100000001, 0x4, 0x800, 0x4]}}, @hvc={0x32, 0x40, {0x80, [0xebc8, 0x4b3, 0x8, 0x4, 0x8]}}, @code={0xa, 0xcc, {"80929bd20060b0f2e10180d2620080d2430080d2a40080d2020000d4e09680d20080b0f2e10080d2e20080d2c30080d2e40080d2020000d40074002fe02181d20040b0f2210080d2620080d2e30180d2640180d2020000d4600c9dd20060b0f2210180d2220180d2430180d2840180d2020000d40000299e008008d5600f8dd200a0b0f2610080d2820080d2c30180d2e40080d2020000d4000008d540c180d20040b0f2210180d2220180d2830180d2440080d2020000d4"}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x37a}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x80, 0x400, 0xc}}, @smc={0x1e, 0x40, {0x80000002, [0xffffffffffffffff, 0x4, 0x4, 0x4, 0x3]}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x148}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x0, 0xd, 0x0, 0x1}}, @mrs={0xbe, 0x18, {0x603000000013e100}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xd00, 0x1, 0x8}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x400, 0x8}}, @smc={0x1e, 0x40, {0xc4000003, [0x9, 0x8, 0xafe2, 0xffffffffffffffff, 0x6]}}, @msr={0x14, 0x20, {0x603000000013df4f, 0xfb8}}, @msr={0x14, 0x20, {0x603000000013e21b, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x1, 0x0, 0x1, 0x62f, 0x3}}, @uexit={0x0, 0x18, 0xffa}, @smc={0x1e, 0x40, {0x4400908c, [0x4, 0x3, 0x3, 0x8000, 0x4]}}, @svc={0x122, 0x40, {0x84000002, [0xa, 0xf, 0x2, 0xfd6, 0x9]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x3, 0x9, 0x1000, 0x2, 0x1}}, @code={0xa, 0x84, {"000008d50024002f0040800c0060206e007008d50000799ec0be84d20080b8f2610180d2e20180d2630080d2240180d2020000d4000028d520a08dd200e0b8f2210080d2820080d2e30080d2e40080d2020000d4a01990d20000b0f2210180d2a20180d2030080d2e40080d2020000d4"}}, @code={0xa, 0x84, {"808980d200a0b8f2c10080d2e20080d2c30080d2040180d2020000d400b8315e00a4ff0d000008d5000008d5008008d50000789e00e798d20020b0f2010080d2820080d2e30080d2840080d2020000d4e05d8dd200c0b8f2410080d2a20180d2430080d2040180d2020000d4000008d5"}}, @msr={0x14, 0x20, {0x6030000000138057, 0x100000001}}, @code={0xa, 0x9c, {"a0528bd20000b0f2210080d2a20180d2430080d2040080d2020000d4c0fb97d200a0b8f2e10180d2220080d2030180d2240180d2020000d4202892d20040b0f2810080d2820180d2a30180d2e40080d2020000d40000803d0000251e00e0c00de0dc9ad20020b0f2610180d2020180d2a30180d2240080d2020000d4007008d5007008d5008008d5"}}, @uexit={0x0, 0x18, 0x1}], 0x6cc}, &(0x7f0000000100)=[@featur1={0x1, 0x1}], 0x1) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000880)={0x1, 0x40}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x800454d2, 0x0) r6 = eventfd2(0x8001, 0x0) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000000c0)={r6, 0x1, 0x2}) 2.269318742s ago: executing program 0 (id=1350): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async, rerun: 64) write$eventfd(0xffffffffffffffff, 0x0, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async, rerun: 32) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) (rerun: 32) mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r5, 0x100000a, 0x12, r6, 0x100000) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR_vm(r3, 0x8020aeaf, &(0x7f0000000180)=@attr_other={0x0, 0xfffffff0, 0x777c, 0x0}) (async, rerun: 64) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) (async) syz_kvm_setup_cpu$arm64(r7, r8, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000000c0)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000100)=[@featur2={0x1, 0x4}], 0x1) (async) syz_kvm_setup_cpu$arm64(r7, r8, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1e000000000000004000000000000000030000c4"], 0x40}], 0x1, 0x0, 0x0, 0x0) (async) r9 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x568}, &(0x7f0000000040)=[@featur1={0x1, 0x40}], 0x1) ioctl$KVM_RUN(r9, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) (async) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x43033, 0xffffffffffffffff, 0x0) 0s ago: executing program 1 (id=1351): r0 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r0, 0x2000000, 0x80010, 0xffffffffffffffff, 0x0) r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000340)={0x0, &(0x7f0000000000)=[@uexit={0x0, 0x18, 0x7}, @smc={0x1e, 0x40, {0xc5000020, [0x7ff, 0xfffffffffffffff7, 0x7, 0xffffffff, 0x81]}}, @hvc={0x32, 0x40, {0x84000010, [0xa3, 0x582, 0x0, 0x7, 0xffffffff]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x0, 0x4, 0x2, 0x2}}, @msr={0x14, 0x20, {0x603000000013c368, 0x75d}}, @uexit={0x0, 0x18, 0x9}, @mrs={0xbe, 0x18, {0x603000000013dce2}}, @eret={0xe6, 0x18}, @mrs={0xbe, 0x18, {0x603000000013c019}}, @svc={0x122, 0x40, {0x3f000000, [0x9, 0x10, 0xffffffffffffffab, 0xd7, 0x5]}}, @memwrite={0x6e, 0x30, @generic={0xdddd1000, 0x9d5, 0x8}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x3, 0xe, 0xe9, 0x0, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x14, 0xa0a, 0x8}}, @uexit={0x0, 0x18, 0x6000}, @irq_setup={0x46, 0x18, {0x2, 0x220}}, @svc={0x122, 0x40, {0x6000000, [0x6, 0x3, 0xad, 0x8, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013dea9}}, @svc={0x122, 0x40, {0x86000000, [0x9, 0x80, 0x5, 0x80, 0x7]}}, @eret={0xe6, 0x18, 0x4}, @svc={0x122, 0x40, {0x4, [0x9, 0x4, 0x6, 0x7, 0x9]}}], 0x328}, &(0x7f0000000380)=[@featur1={0x1, 0xe0}], 0x1) ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000003c0)={0x7, 0xfffffff6}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000400)={0x1000, 0x2, 0x81, 0x1, 0x4}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x101000, 0x0) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000780)={0x0, &(0x7f0000000480)=[@memwrite={0x6e, 0x30, @generic={0x4000, 0x1d4, 0x8, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x10040, 0x2, 0x2}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x108}}, @msr={0x14, 0x20, {0x603000000013c520, 0x7}}, @uexit={0x0, 0x18, 0x5}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x347}}, @eret={0xe6, 0x18, 0x9}, @svc={0x122, 0x40, {0x84000010, [0x2, 0x7ff, 0x7, 0x0, 0xfff]}}, @svc={0x122, 0x40, {0x2000, [0x4, 0xffffffffffff7fff, 0x0, 0xc1d7, 0x9]}}, @code={0xa, 0x84, {"008008d500d8a00e00000037e01a8ed200c0b0f2810180d2220180d2630180d2e40180d2020000d4007008d5603191d20000b8f2a10180d2020180d2030180d2440180d2020000d4007008d5a0668cd20000b0f2a10080d2620180d2a30180d2640180d2020000d40000c05a00a09f0d"}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0xc0}}, @code={0xa, 0xb4, {"00f4a00e00c0600d007008d500a8205ec0959bd20040b8f2a10080d2a20080d2630180d2a40180d2020000d440188fd200c0b8f2c10080d2220080d2c30180d2440180d2020000d4006b8cd20080b0f2e10180d2220080d2830180d2e40180d2020000d420cb95d20080b8f2a10080d2420180d2e30180d2440180d2020000d4004cc09a20ca8bd200c0b8f2e10080d2420080d2e30180d2840180d2020000d4"}}], 0x2e0}, &(0x7f00000007c0)=[@featur2={0x1, 0x8}], 0x1) mmap$KVM_VCPU(&(0x7f0000fef000/0xe000)=nil, r0, 0x8, 0x4010, r3, 0x0) close(r1) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SIGNAL_MSI(r4, 0x4020aea5, &(0x7f0000000800)={0x2000, 0x4000, 0x2, 0x0, 0x5}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000840)={0xa, 0xffffffffffffffff, 0x1}) mmap$KVM_VCPU(&(0x7f0000ff7000/0x4000)=nil, r0, 0x100000d, 0x100010, r3, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000880)=@arm64={0xf, 0x4, 0x8, '\x00', 0xd6}) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4208ae9b, &(0x7f00000008c0)={0x1, 0x0, [0x8000000000, 0x2, 0x0, 0x6, 0x200, 0x40, 0x2, 0x6]}) eventfd2(0x0, 0x80000) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000980)=@arm64_extra={0x603000000013c103, &(0x7f0000000940)=0xe4}) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f00000009c0)=@arm64={0xfd, 0x9, 0x33, '\x00', 0x2}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r4, 0x4068aea3, &(0x7f0000000a00)) close(r5) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000ac0)=@arm64_sys={0x603000000013f8f7, &(0x7f0000000a80)}) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_GET_REGS(r6, 0x8360ae81, &(0x7f0000000b00)) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r7, 0x4068aea3, &(0x7f0000000bc0)={0xdf, 0x0, 0x3000}) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f0000000c40)={0xeeef0000, 0xb000}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000c80), 0x101020, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(r4, 0xc018aec0, &(0x7f00000010c0)={0x10004, 0x280, 0x100, &(0x7f0000000cc0)=[0x7, 0x2, 0xffffffffffffffff, 0x8000000000000000, 0x7, 0x0, 0x7, 0xda, 0x401, 0x800, 0x2000000, 0x8000000000000000, 0x1a, 0xfffffffffffffffa, 0x2, 0x7, 0x7ff, 0x7, 0xa93, 0x8, 0x6, 0xad35, 0xfffffffffffffffd, 0x7, 0x3, 0xf71, 0x4, 0xb23, 0x100000000, 0x1, 0x5, 0x6, 0x3a, 0x3, 0x23, 0x2, 0xfff, 0x4, 0x2, 0x5, 0xff, 0x1, 0x80000000, 0x6, 0x7, 0x2, 0x8000000000000001, 0x10001, 0x5, 0x0, 0x7f, 0x4, 0x3270, 0x1, 0x7fffffffffffffff, 0x4, 0x5, 0x4596, 0xe, 0x8, 0x8, 0x200, 0x3, 0x5, 0x961, 0x0, 0xfe, 0x4, 0xce, 0x3, 0x3, 0x8000, 0x2, 0x32f, 0x3, 0xffffffffffffe7e1, 0x4, 0x39244534, 0x105, 0x1, 0x7fff, 0xfff, 0xfffffffffffffff9, 0x1, 0x4, 0x5, 0x4, 0x8, 0x100000000, 0x2, 0x3, 0x9, 0x6, 0x3, 0xfffffffffffffffb, 0x482, 0x0, 0x5, 0x5, 0x2, 0x535, 0x2, 0x0, 0xffffffffffffff01, 0x80000001, 0x0, 0x8, 0x7, 0x9, 0x6, 0x101, 0x8, 0x8, 0x6, 0xffffffff7fffffff, 0xbc, 0x401, 0x0, 0x8, 0x7ff, 0x8000000000000000, 0x5, 0xaf30, 0xfffffffffffffff9, 0x2, 0xfffffffffffffffd, 0x5, 0x3]}) kernel console output (not intermixed with test programs): [ 383.995664][ T3131] 8021q: adding VLAN 0 to HW filter on device bond0 [ 421.616991][ T3131] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:10913' (ED25519) to the list of known hosts. [ 602.344584][ T25] audit: type=1400 audit(601.480:60): avc: denied { name_bind } for pid=3289 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 604.229286][ T25] audit: type=1400 audit(603.360:61): avc: denied { execute } for pid=3290 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 604.294439][ T25] audit: type=1400 audit(603.420:62): avc: denied { execute_no_trans } for pid=3290 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 623.449538][ T25] audit: type=1400 audit(622.590:63): avc: denied { mounton } for pid=3290 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 623.487403][ T25] audit: type=1400 audit(622.620:64): avc: denied { mount } for pid=3290 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 623.568250][ T3290] cgroup: Unknown subsys name 'net' [ 623.616852][ T25] audit: type=1400 audit(622.760:65): avc: denied { unmount } for pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 624.015911][ T3290] cgroup: Unknown subsys name 'cpuset' [ 624.116488][ T3290] cgroup: Unknown subsys name 'rlimit' [ 625.019012][ T25] audit: type=1400 audit(624.160:66): avc: denied { setattr } for pid=3290 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 625.046193][ T25] audit: type=1400 audit(624.180:67): avc: denied { mounton } for pid=3290 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 625.064914][ T25] audit: type=1400 audit(624.200:68): avc: denied { mount } for pid=3290 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 626.488303][ T3293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 626.519661][ T25] audit: type=1400 audit(625.640:69): avc: denied { relabelto } for pid=3293 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 626.563800][ T25] audit: type=1400 audit(625.680:70): avc: denied { write } for pid=3293 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 626.831402][ T25] audit: type=1400 audit(625.970:71): avc: denied { read } for pid=3290 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 626.859162][ T25] audit: type=1400 audit(625.990:72): avc: denied { open } for pid=3290 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 626.901229][ T3290] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 674.578051][ T25] audit: type=1400 audit(673.720:73): avc: denied { execmem } for pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 678.227807][ T25] audit: type=1400 audit(677.370:74): avc: denied { read } for pid=3296 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 678.244250][ T25] audit: type=1400 audit(677.380:75): avc: denied { open } for pid=3296 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 678.337916][ T25] audit: type=1400 audit(677.450:76): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 678.590515][ T25] audit: type=1400 audit(677.730:77): avc: denied { module_request } for pid=3296 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 678.608518][ T25] audit: type=1400 audit(677.750:78): avc: denied { module_request } for pid=3297 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 679.797763][ T25] audit: type=1400 audit(678.930:79): avc: denied { sys_module } for pid=3297 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 708.447674][ T3296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 708.710848][ T3296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 708.845487][ T3297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 709.708000][ T3297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 721.835164][ T3296] hsr_slave_0: entered promiscuous mode [ 721.863732][ T3296] hsr_slave_1: entered promiscuous mode [ 722.688268][ T3297] hsr_slave_0: entered promiscuous mode [ 722.731609][ T3297] hsr_slave_1: entered promiscuous mode [ 722.794904][ T3297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 722.808376][ T3297] Cannot create hsr debugfs directory [ 728.174876][ T25] audit: type=1400 audit(727.310:80): avc: denied { create } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 728.194451][ T25] audit: type=1400 audit(727.330:81): avc: denied { write } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 728.274066][ T25] audit: type=1400 audit(727.400:82): avc: denied { read } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 728.451608][ T3296] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 728.839828][ T3296] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 729.071807][ T3296] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 729.419336][ T3296] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 730.730024][ T3297] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 730.871609][ T3297] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 731.059824][ T3297] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 731.284794][ T3297] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 744.276882][ T3296] 8021q: adding VLAN 0 to HW filter on device bond0 [ 746.369081][ T3297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 802.781908][ T3296] veth0_vlan: entered promiscuous mode [ 803.217001][ T3296] veth1_vlan: entered promiscuous mode [ 804.979224][ T3297] veth0_vlan: entered promiscuous mode [ 805.475747][ T3296] veth0_macvtap: entered promiscuous mode [ 805.951745][ T3297] veth1_vlan: entered promiscuous mode [ 806.129096][ T3296] veth1_macvtap: entered promiscuous mode [ 808.140438][ T3296] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.147412][ T3296] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.167531][ T3296] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.176942][ T3296] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.507088][ T3297] veth0_macvtap: entered promiscuous mode [ 809.138960][ T3297] veth1_macvtap: entered promiscuous mode [ 810.893862][ T25] audit: type=1400 audit(810.020:83): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 811.187390][ T25] audit: type=1400 audit(810.320:84): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.Fi1C7v/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 811.351884][ T25] audit: type=1400 audit(810.490:85): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 811.688775][ T3297] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.697020][ T25] audit: type=1400 audit(810.820:86): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.Fi1C7v/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 811.716094][ T3297] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.771619][ T3297] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.781972][ T3297] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.844468][ T25] audit: type=1400 audit(810.970:87): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.Fi1C7v/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3274 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 812.599817][ T25] audit: type=1400 audit(811.740:88): avc: denied { unmount } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 812.858953][ T25] audit: type=1400 audit(811.970:89): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 812.948978][ T25] audit: type=1400 audit(812.090:90): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="gadgetfs" ino=3285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 813.281963][ T25] audit: type=1400 audit(812.400:91): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 813.348575][ T25] audit: type=1400 audit(812.490:92): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 814.645177][ T3296] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 815.909198][ T25] kauditd_printk_skb: 3 callbacks suppressed [ 815.916280][ T25] audit: type=1400 audit(815.050:96): avc: denied { ioctl } for pid=3296 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 819.547418][ T25] audit: type=1400 audit(818.670:97): avc: denied { read } for pid=3450 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 819.634256][ T25] audit: type=1400 audit(818.690:98): avc: denied { open } for pid=3450 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 820.043283][ T25] audit: type=1400 audit(819.170:99): avc: denied { ioctl } for pid=3450 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 820.301035][ T25] audit: type=1400 audit(819.350:100): avc: denied { write } for pid=3451 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 842.324271][ T25] audit: type=1400 audit(841.410:101): avc: denied { append } for pid=3469 comm="syz.0.5" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 872.270268][ T25] audit: type=1400 audit(871.410:102): avc: denied { execute } for pid=3493 comm="syz.0.12" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4095 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 914.594341][ T25] audit: type=1400 audit(913.720:103): avc: denied { map } for pid=3519 comm="syz.0.19" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 914.695824][ T25] audit: type=1400 audit(913.810:104): avc: denied { execute } for pid=3519 comm="syz.0.19" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1051.316285][ T3604] kvm [3604]: Failed to find VMA for hva 0x20c01000 [ 1530.774655][ T3926] kvm [3926]: Failed to find VMA for hva 0x20c01000 [ 1531.710658][ T25] audit: type=1400 audit(1530.840:105): avc: denied { ioctl } for pid=3925 comm="syz.1.133" path="net:[4026532626]" dev="nsfs" ino=4026532626 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1675.211585][ T4027] KVM: debugfs: duplicate directory 4027-5 [ 1699.520842][ T4047] kvm [4047]: Failed to find VMA for hva 0x20c01000 [ 1792.961803][ T25] audit: type=1400 audit(1792.100:106): avc: denied { setattr } for pid=4114 comm="syz.1.189" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2010.490000][ T4264] kvm [4264]: Failed to find VMA for hva 0x20d8d000 [ 2261.116549][ T4426] KVM: debugfs: duplicate directory 4426-4 [ 2374.378477][ T4497] kvm [4497]: Failed to find VMA for hva 0x20d8d000 [ 2405.618190][ T4518] KVM: debugfs: duplicate directory 4518-7 [ 2535.008652][ T4611] kvm [4611]: Failed to find VMA for hva 0x21016000 [ 2593.950380][ T4652] KVM: debugfs: duplicate directory 4652-4 [ 2635.055157][ T4684] kvm [4684]: Failed to find VMA for hva 0x2036f000 [ 2879.368925][ T25] audit: type=1400 audit(2878.510:107): avc: denied { execute } for pid=4842 comm="syz.1.400" path=2F3139342F10FBFF67525673312B0104 dev="tmpfs" ino=999 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 3137.509229][ T25] audit: type=1400 audit(3136.550:108): avc: denied { map } for pid=5009 comm="syz.1.447" path="pipe:[2431]" dev="pipefs" ino=2431 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 3187.870347][ T25] audit: type=1400 audit(3186.990:109): avc: denied { execute } for pid=5044 comm="syz.0.458" path="pipe:[2428]" dev="pipefs" ino=2428 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 3221.074692][ T5070] kvm [5070]: Failed to find VMA for hva 0x20e8a000 [ 3351.305361][ T5151] KVM: debugfs: duplicate directory 5151-4 [ 3723.858002][ T5388] KVM: debugfs: duplicate directory 5388-4 [ 3864.128835][ T5478] debugfs: File 'vgic-its-state@8080000' in directory '5478-12' already present! [ 3941.189165][ T5537] kvm [5537]: Failed to find VMA for hva 0x20000000 [ 3975.609208][ T5560] kvm [5560]: Failed to find VMA for hva 0x2101a000 [ 4424.327400][ T5858] kvm [5858]: Failed to find VMA for hva 0x20c01000 [ 4532.955887][ T5928] kvm [5928]: Failed to find VMA for hva 0x20d8d000 [ 4594.945180][ T5977] kvm [5977]: Failed to find VMA for hva 0x20c01000 [ 4696.100634][ T6037] kvm [6037]: Failed to find VMA for hva 0x20d8d000 [ 4728.599722][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 4728.599722][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.650387][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.650387][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.708791][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.708791][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.747785][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.747785][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.795225][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.795225][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.845262][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.845262][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.906453][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.906453][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.924925][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.924925][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4728.975511][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4728.975511][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4729.095605][ T6064] kvm [6063]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4729.095605][ T6064] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 4782.367169][ T6097] kvm [6097]: Failed to find VMA for hva 0x21016000 [ 4939.304417][ T6206] kvm [6206]: Failed to find VMA for hva 0x20d8d000 [ 4959.565464][ T6220] kvm [6220]: Failed to find VMA for hva 0x20c01000 [ 4959.659243][ T6219] kvm [6219]: Failed to find VMA for hva 0x20c01000 [ 4959.886016][ T6219] debugfs: File 'vgic-its-state@0' in directory '6219-6' already present! [ 5206.811980][ T6376] kvm [6376]: Failed to find VMA for hva 0x20d8d000 [ 5480.137667][ T6573] kvm [6573]: Failed to find VMA for hva 0x20c01000 [ 5528.796661][ T6598] kvm [6598]: Failed to find VMA for hva 0x20d8d000 [ 5673.420408][ T6693] KVM: debugfs: duplicate directory 6693-4 [ 5884.098572][ T6837] irq bypass consumer (token 000000007bf576ba) registration fails: -16 [ 5973.991552][ T6908] kvm [6908]: Failed to find VMA for hva 0x21016000 [ 6141.148397][ T7038] kvm [7038]: Failed to find VMA for hva 0x20c01000 [ 6170.139711][ T7053] kvm [7053]: Failed to find VMA for hva 0x20c01000 [ 6200.239344][ T7075] kvm [7075]: Failed to find VMA for hva 0x20c01000 [ 6284.149347][ T7142] KVM: debugfs: duplicate directory 7142-5 [ 6522.360015][ T7299] kvm [7299]: Failed to find VMA for hva 0x20d8d000 [ 6821.101732][ T7508] kvm [7508]: Failed to find VMA for hva 0x21016000 [ 6924.199958][ T7404] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6925.697477][ T7404] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6926.764177][ T7404] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6928.008733][ T7404] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6946.627935][ T7404] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6946.968424][ T7404] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6947.130070][ T7404] bond0 (unregistering): Released all slaves [ 6949.036532][ T7404] hsr_slave_0: left promiscuous mode [ 6949.105272][ T7404] hsr_slave_1: left promiscuous mode [ 6949.557940][ T7404] veth1_macvtap: left promiscuous mode [ 6949.568996][ T7404] veth0_macvtap: left promiscuous mode [ 6949.615845][ T7404] veth1_vlan: left promiscuous mode [ 6949.621375][ T7404] veth0_vlan: left promiscuous mode [ 7022.099655][ T7575] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7022.483848][ T7575] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7053.280474][ T7575] hsr_slave_0: entered promiscuous mode [ 7053.357152][ T7575] hsr_slave_1: entered promiscuous mode [ 7076.091002][ T7575] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 7076.448256][ T7575] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 7076.843606][ T7575] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 7077.191524][ T7575] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 7106.368293][ T7575] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7199.750546][ T7575] veth0_vlan: entered promiscuous mode [ 7200.715163][ T7575] veth1_vlan: entered promiscuous mode [ 7203.376320][ T7575] veth0_macvtap: entered promiscuous mode [ 7203.772797][ T7575] veth1_macvtap: entered promiscuous mode [ 7206.329958][ T7575] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7206.344629][ T7575] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7206.367276][ T7575] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7206.394906][ T7575] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7235.788615][ T6399] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7236.908891][ T6399] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7238.117645][ T6399] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7239.468735][ T6399] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7255.396590][ T6399] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7255.774427][ T6399] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7256.066769][ T6399] bond0 (unregistering): Released all slaves [ 7258.405849][ T6399] hsr_slave_0: left promiscuous mode [ 7258.516808][ T6399] hsr_slave_1: left promiscuous mode [ 7259.050175][ T6399] veth1_macvtap: left promiscuous mode [ 7259.060122][ T6399] veth0_macvtap: left promiscuous mode [ 7259.069547][ T6399] veth1_vlan: left promiscuous mode [ 7259.095426][ T6399] veth0_vlan: left promiscuous mode [ 7339.187590][ T7811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7339.557741][ T7811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7370.315117][ T7811] hsr_slave_0: entered promiscuous mode [ 7370.377122][ T7811] hsr_slave_1: entered promiscuous mode [ 7370.454900][ T7811] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 7370.458779][ T7811] Cannot create hsr debugfs directory [ 7396.108490][ T7811] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 7396.536939][ T7811] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 7396.999925][ T7811] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 7397.436796][ T7811] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 7422.928699][ T7811] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7524.691203][ T7811] veth0_vlan: entered promiscuous mode [ 7525.654912][ T7811] veth1_vlan: entered promiscuous mode [ 7528.139589][ T7811] veth0_macvtap: entered promiscuous mode [ 7528.496715][ T7811] veth1_macvtap: entered promiscuous mode [ 7531.308485][ T7811] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7531.354501][ T7811] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7531.360125][ T7811] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7531.361134][ T7811] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7703.399975][ T8148] kvm [8148]: Failed to find VMA for hva 0x21016000 [ 7791.109759][ T8210] kvm [8210]: Failed to find VMA for hva 0x20d8d000 [ 7857.824523][ T8258] kvm [8258]: Failed to find VMA for hva 0x20d8d000 [ 7982.403852][ T8333] kvm [8333]: Failed to find VMA for hva 0x21016000 [ 8030.717368][ T8368] ------------[ cut here ]------------ [ 8030.718284][ T8368] WARNING: CPU: 0 PID: 8368 at arch/arm64/kvm/inject_fault.c:63 pend_sync_exception+0x198/0x5ac [ 8030.722279][ T8368] Modules linked in: [ 8030.725064][ T8368] CPU: 0 UID: 0 PID: 8368 Comm: syz.1.1351 Not tainted 6.16.0-rc3-syzkaller-g15724a984643 #0 PREEMPT [ 8030.726974][ T8368] Hardware name: linux,dummy-virt (DT) [ 8030.728421][ T8368] pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 8030.729909][ T8368] pc : pend_sync_exception+0x198/0x5ac [ 8030.731072][ T8368] lr : pend_sync_exception+0x198/0x5ac [ 8030.732179][ T8368] sp : ffff80008ebf78c0 [ 8030.733056][ T8368] x29: ffff80008ebf78c0 x28: 0000000000000096 x27: 96f0000017682028 [ 8030.735180][ T8368] x26: 0000000000000096 x25: 0000000000000000 x24: 0000000000000000 [ 8030.737014][ T8368] x23: 0000000000000000 x22: 0000000000000096 x21: 96f0000017682c01 [ 8030.738819][ T8368] x20: 0000000000000007 x19: efff800000000000 x18: 0000000000000000 [ 8030.740639][ T8368] x17: 00000000000000ba x16: ffff800080011d9c x15: 00000000200009c0 [ 8030.742460][ T8368] x14: ffffffffffffffff x13: 0000000000000028 x12: 000000000000007b [ 8030.744082][ T8368] x11: 0000000000080000 x10: 00000000000009d6 x9 : bbff80008f4da000 [ 8030.746034][ T8368] x8 : 00000000000009d7 x7 : ffff800080b08704 x6 : ffff80008ebf7a88 [ 8030.747778][ T8368] x5 : ffff80008ebf7a88 x4 : 0000000000000001 x3 : ffff8000801a2e80 [ 8030.749576][ T8368] x2 : 0000000000000000 x1 : 0000000000000002 x0 : 0000000000000000 [ 8030.751530][ T8368] Call trace: [ 8030.752664][ T8368] pend_sync_exception+0x198/0x5ac (P) [ 8030.754060][ T8368] __kvm_inject_sea+0x268/0x96c [ 8030.755350][ T8368] kvm_inject_sea+0x98/0x72c [ 8030.756611][ T8368] __kvm_arm_vcpu_set_events+0x134/0x238 [ 8030.757753][ T8368] kvm_arch_vcpu_ioctl+0xed8/0x16b0 [ 8030.758849][ T8368] kvm_vcpu_ioctl+0x5c4/0xc2c [ 8030.759950][ T8368] __arm64_sys_ioctl+0x18c/0x244 [ 8030.761076][ T8368] invoke_syscall+0x90/0x2b4 [ 8030.762245][ T8368] el0_svc_common+0x180/0x2f4 [ 8030.763313][ T8368] do_el0_svc+0x58/0x74 [ 8030.764428][ T8368] el0_svc+0x58/0x160 [ 8030.765356][ T8368] el0t_64_sync_handler+0x78/0x108 [ 8030.766525][ T8368] el0t_64_sync+0x198/0x19c [ 8030.767806][ T8368] irq event stamp: 1532 [ 8030.768695][ T8368] hardirqs last enabled at (1531): [] _raw_read_unlock_irqrestore+0x44/0xbc [ 8030.770330][ T8368] hardirqs last disabled at (1532): [] el1_dbg+0x24/0x80 [ 8030.771728][ T8368] softirqs last enabled at (1514): [] local_bh_enable+0x10/0x34 [ 8030.773161][ T8368] softirqs last disabled at (1512): [] local_bh_disable+0x10/0x34 [ 8030.774831][ T8368] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 8040.016189][ T7597] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8041.625117][ T7597] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8043.296324][ T7597] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8044.790879][ T7597] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8059.027464][ T7597] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 8059.129408][ T7597] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 8059.210417][ T7597] bond0 (unregistering): Released all slaves [ 8060.546198][ T7597] hsr_slave_0: left promiscuous mode [ 8060.607023][ T7597] hsr_slave_1: left promiscuous mode VM DIAGNOSIS: 12:01:02 Registers: info registers vcpu 0 CPU#0 PC=ffff8000804516b8 X00=0000000000000000 X01=ffff8000872b1fa2 X02=ffff8000804580e0 X03=0000000000000000 X04=ffff80008ebf6f20 X05=0000000000000020 X06=0000000000000000 X07=ffff80008047db18 X08=00000000000003c0 X09=0000000000000000 X10=000000000000007b X11=0000000000080000 X12=0000000000000044 X13=0000000000000002 X14=00000000000000c8 X15=ffff800087f39a30 X16=ffff800080011d9c X17=00000000000000ba X18=0000000000000000 X19=0000000000000000 X20=0000000000000000 X21=ffff80008047db18 X22=ffff8000877e6618 X23=0000000000000000 X24=0000000000000001 X25=0000000000000000 X26=ffff800087666580 X27=00000000000003c0 X28=0000000000000000 X29=ffff80008ebf70e0 X30=ffff800080451698 SP=ffff80008ebf7090 PSTATE=604023c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=0000ffffed5a64c0:461fe2fa979a1600 Z02=0000ffffed5a64a0:ffffff80ffffffd8 Z03=0000ffffed5a6550:0000ffffed5a6550 Z04=0000ffffed5a6550:0000ffffa8b36d08 Z05=0000ffffed5a6520:0000ffffed5a6550 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffed5a6770:0000ffffed5a6770 Z17=ffffff80ffffffd0:0000ffffed5a6740 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000