last executing test programs: 1h27m43.912943663s ago: executing program 0 (id=322): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) eventfd2(0xffff10c0, 0x801) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, 0x0) syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r5 = syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000040)=0x2}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x4, 0x1, &(0x7f0000000040)=0x1}) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x80, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x2e) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r9, r10, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r9, 0x4010aeb5, &(0x7f0000000140)={0x4, 0x5}) r11 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000bfe000/0x400000)=nil) munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000000)={0x0, &(0x7f00000000c0)=[@msr={0x14, 0x20, {0x603000000013df40, 0x7fffffff}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) 1h27m25.004191138s ago: executing program 1 (id=324): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x25c}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x3, 0x40000000, 0xfffc, 0x2000000, 0x105, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h27m22.340036031s ago: executing program 0 (id=325): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x15) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1800, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2b) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000aec000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000040)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x7, 0x0, 0xfc, '\x00', 0x4}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000080)=@arm64={0xd, 0x8, 0x7, '\x00', 0x2d}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000080)={0x2, 0x0, [{0xc9, 0x2, 0x0, 0x0, @msi={0x0, 0x8}}, {0x2, 0x1, 0x0, 0x0, @msi={0x1f, 0x0, 0x0, 0x3}}]}) munmap(&(0x7f00005ed000/0x800000)=nil, 0x800000) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x5, 0x0, 0x0}) ioctl$KVM_PPC_ALLOCATE_HTAB(r2, 0xc004aea7, &(0x7f00000001c0)=0x9) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x780100, 0x0) r10 = eventfd2(0xfffffffa, 0x80001) write$eventfd(r10, 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0x5450, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r8, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x8b, 0x5, &(0x7f0000000200)=0x10}) r11 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0xef000000, [0x0, 0x1, 0x2, 0x9, 0x6]}}, @smc={0x1e, 0x40, {0x86000001, [0xffffffffffffff37, 0x6, 0x2, 0x5, 0x5]}}], 0x80}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1) ioctl$KVM_CAP_ARM_MTE(r12, 0x4068aea3, &(0x7f00000000c0)={0xf5}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2001, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) 1h27m14.941194553s ago: executing program 1 (id=326): munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x0, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eee000/0x4000)=nil, 0x0, 0x2000004, 0x20031, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x24) r2 = openat$kvm(0x0, 0x0, 0x40000, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x8002, 0x5000, 0x4, r1, 0x4fd0f096b459bd7b}) munmap(&(0x7f0000b46000/0x1000)=nil, 0x1000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(0xffffffffffffffff, 0x4068aea3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x5, 0x0, &(0x7f0000000000)=0x8}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xcc}) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@arm64={0x3, 0x7f, 0x80, '\x00', 0xffff}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x8100800000, 0x8) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x143882, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x2b) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000aec000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x7, 0x0, 0xfc, '\x00', 0x4}) ioctl$KVM_RUN(r8, 0xae80, 0x0) 1h27m5.506624286s ago: executing program 0 (id=327): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000080)={0x200001fe0000, 0x2}) r3 = openat$kvm(0x0, &(0x7f0000000100), 0x300, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf3, 0x8000}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r7, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x0, 0x1, 0x12, r7, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2) r11 = syz_kvm_vgic_v3_setup(r10, 0x5, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000140)=0x200a8a}) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f0000000240)=@attr_other={0x0, 0x7fc000, 0x0, &(0x7f0000000140)=0x4}) r12 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x42) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r15, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r15, r16, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000051, [0xf98, 0xffffffff, 0x7, 0x80000000, 0xfffffffffffffffb]}}], 0xffffffffffffff8a}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(r12, r16, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x37) ioctl$KVM_GET_ONE_REG(r13, 0x4010aeab, &(0x7f0000000000)=@arm64_bitmap={0x6030000000162001, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0xa7000, &(0x7f0000ffc000/0x2000)=nil, 0x1000000, r2}) 1h27m1.828512565s ago: executing program 1 (id=328): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) munmap(&(0x7f0000865000/0x4000)=nil, 0x4000) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2e) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x400000000000012) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f0000000280)=[@mrs={0xbe, 0x18, {0x603000000013c298}}, @irq_setup={0x46, 0x18, {0x3, 0x17}}, @uexit={0x0, 0x18, 0x594ab3cd}, @svc={0x122, 0x40, {0x40000044, [0x1, 0x4, 0x8000, 0x8021, 0xffff]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x3a8}}, @uexit={0x0, 0x18, 0x81}, @hvc={0x32, 0x40, {0x80, [0xff, 0x6, 0x9, 0x9, 0xd]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xe, 0x200, 0x5734}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @code={0xa, 0x6c, {"007008d5008c205e007008d5007008d5007008d580bd84d200e0b8f2010180d2420180d2030180d2440180d2020000d400c4200e007008d5000000fcc05b8fd20040b0f2010080d2020180d2030180d2e40080d2020000d4"}}, @smc={0x1e, 0x40, {0x8, [0x4, 0xb, 0x2, 0x9, 0x5bb3]}}], 0x1f4}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0xfffffe5d}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f00000000c0)=@arm64_fp={0x60400000001000d9, 0x0}) 1h26m52.112567596s ago: executing program 1 (id=329): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, 0x0}) 1h26m49.58492828s ago: executing program 0 (id=330): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r1 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(0xffffffffffffffff, 0x40a0ae49, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000000)={0x802}) openat$kvm(0x0, &(0x7f0000000140), 0x206a02, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xfffffffffffffffc) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0xa8200, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x27) (async) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x27) syz_kvm_vgic_v3_setup(r5, 0x4, 0x1a0) (async) syz_kvm_vgic_v3_setup(r5, 0x4, 0x1a0) eventfd2(0x2, 0x80000) (async) r6 = eventfd2(0x2, 0x80000) r7 = eventfd2(0xf, 0x80001) ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000000100)={r7, 0x0, 0x2, r6}) (async) ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000000100)={r7, 0x0, 0x2, r6}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000000)={r6, 0x8, 0x2, r6}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) close(0x4) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) 1h26m45.312007317s ago: executing program 1 (id=331): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) r4 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0x40, 0x25000, 0x2, r4, 0x4}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x12) r5 = eventfd2(0x0, 0x0) close(r5) ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) r6 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) r13 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r12, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r13, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r12, 0x0) r14 = eventfd2(0x0, 0x0) close(r14) 1h26m41.037730554s ago: executing program 0 (id=332): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000540)={0x0, &(0x7f0000000000)=[@mrs={0xbe, 0x18, {0x603000000013e290}}, @smc={0x1e, 0x40, {0x80003fff, [0x10001, 0xaf, 0x101, 0xd7fc, 0xffffffffffff49c3]}}, @svc={0x122, 0x40, {0x6000000, [0x8, 0x7fff, 0x1, 0x7, 0x4]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x10040, 0x8000, 0x7}}, @smc={0x1e, 0x40, {0x800, [0x6, 0x7fffffff, 0x2, 0x8, 0x7]}}, @svc={0x122, 0x40, {0x80000001, [0x9, 0x0, 0x2, 0xb8, 0x7cc4]}}, @irq_setup={0x46, 0x18, {0x2, 0xa8}}, @uexit={0x0, 0x18, 0x1}, @code={0xa, 0x9c, {"60e685d20040b0f2410180d2420080d2430080d2840080d2020000d400008079008008d5000020d4000028d5e0c798d20060b8f2410080d2c20180d2830180d2040080d2020000d4407f97d20080b0f2c10080d2c20080d2430180d2440180d2020000d41f0020ab000008d540be83d200e0b0f2810180d2c20180d2830080d2a40180d2020000d4"}}, @svc={0x122, 0x40, {0x84000012, [0xb3d, 0x6, 0x9f, 0x8]}}, @msr={0x14, 0x20, {0x603000000013f088, 0x5}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x8, 0x0, 0xffff}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xffd0, 0x8, 0x5}}, @svc={0x122, 0x40, {0x31000000, [0xe, 0x2, 0x7, 0x0, 0x80]}}, @msr={0x14, 0x20, {0x603000000013e6c2, 0xdcc5}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x2, 0x1, 0x8, 0x0, 0x4}}, @eret={0xe6, 0x18, 0x1e14}, @msr={0x14, 0x20, {0x603000000013df63, 0x6}}, @msr={0x14, 0x20, {0x6030000000138006, 0x1}}, @hvc={0x32, 0x40, {0x8400000a, [0x1, 0x7, 0x6, 0xa1, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013e65f}}, @irq_setup={0x46, 0x18, {0x3, 0xda}}, @memwrite={0x6e, 0x30, @generic={0x26000, 0x4ac, 0x8, 0x7}}, @code={0xa, 0xb4, {"e0fc85d200e0b8f2210180d2e20180d2e30180d2840080d2020000d4000840f820fb91d20080b8f2010180d2e20180d2030080d2840180d2020000d480398bd20040b8f2010080d2e20180d2a30180d2840180d2020000d4e0879dd20080b8f2a10080d2220080d2c30080d2040180d2020000d4000028d5402585d200c0b8f2810180d2020080d2430180d2c40180d2020000d4007008d50004801a1f2003d5"}}, @eret={0xe6, 0x18, 0x2}], 0x518}, &(0x7f0000000580)=[@featur2={0x1, 0x10}], 0x1) ioctl$KVM_SET_SREGS(r0, 0x4000ae84, &(0x7f00000005c0)={{0x100001, 0xeee92000, 0x10, 0x0, 0xc, 0x4, 0x5, 0x7, 0x8, 0x48, 0x8, 0x7f}, {0xffff1000, 0x10000, 0x8, 0xe, 0x81, 0x2, 0x2, 0x6, 0x49, 0x0, 0x0, 0x10}, {0x0, 0x2000, 0xdcd0f943e6a87ee9, 0x9, 0x2, 0x0, 0x4, 0xb3, 0xfa, 0x9, 0x40, 0x5}, {0x100000, 0x30000, 0xb, 0x9, 0x0, 0x4, 0x0, 0x7, 0x8, 0x7f, 0x6c, 0xf9}, {0xeeef0000, 0x7000, 0xb, 0xce, 0x3, 0x5, 0x0, 0x9, 0x28, 0x6, 0x3, 0x4}, {0xeeee8000, 0xf000, 0xa, 0x4, 0xff, 0x7, 0xe, 0x40, 0x65, 0xa, 0x8, 0x8}, {0x1000, 0xd000, 0xe, 0x5, 0x81, 0xd, 0xa, 0x6, 0x5, 0x2, 0xf, 0xc2}, {0xfec00000, 0xeeee0000, 0xe, 0x5, 0xe, 0x7, 0x8, 0x5, 0x80, 0x7, 0x7, 0x47}, {0xdddda001}, {0x6000, 0x3}, 0x20000001, 0x0, 0x8080000, 0x20000, 0x5, 0x400, 0xeeee8000, [0xbeb, 0x102000000, 0xda2, 0x8]}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000b00)=[{0x0, &(0x7f0000000700)=[@uexit={0x0, 0x18, 0x8}, @eret={0xe6, 0x18, 0xc800000000000000}, @its_setup={0x82, 0x28, {0x1, 0x0, 0xb5}}, @svc={0x122, 0x40, {0x8, [0x1, 0x9, 0x8, 0x10, 0x5]}}, @hvc={0x32, 0x40, {0x31000000, [0x5, 0x10, 0x8001, 0x3, 0x5]}}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013e180, 0x100000001}}, @svc={0x122, 0x40, {0x80003fff, [0x1, 0x7, 0x1, 0x9, 0x200]}}, @mrs={0xbe, 0x18, {0x603000000013c4f6}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x363}}, @msr={0x14, 0x20, {0x603000000013e6c6, 0x100000000}}, @svc={0x122, 0x40, {0x6000000, [0x0, 0x6, 0x200, 0x140, 0xc3c]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xffd0, 0x5, 0x4}}, @smc={0x1e, 0x40, {0x4000000, [0x8, 0xffffffff, 0x0, 0x86, 0x5a2]}}, @irq_setup={0x46, 0x18, {0x4, 0x35a}}, @hvc={0x32, 0x40, {0x100, [0x8, 0x5, 0x0, 0x22, 0x1]}}, @memwrite={0x6e, 0x30, @generic={0xf000, 0x140, 0x9, 0xc}}, @mrs={0xbe, 0x18, {0x603000000013df18}}, @svc={0x122, 0x40, {0x0, [0x800, 0x24ed, 0x63a5b3f1, 0x7, 0xa4]}}, @mrs={0xbe, 0x18, {0x603000000013ff12}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x7, 0x10000, 0xff}}, @irq_setup={0x46, 0x18, {0x1, 0x16a}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x486, 0x1}}, @mrs={0xbe, 0x18, {0x603000000013807c}}], 0x3e0}], 0x1, 0x0, &(0x7f0000000b40)=[@featur2={0x1, 0x26}], 0x1) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000b80)={0x8, 0x0, [{0xfffffffe, 0x3, 0x0, 0x0, @adapter={0x7ff, 0xe2b7, 0x4, 0x8e, 0x1}}, {0x200, 0x4, 0x0, 0x0, @sint={0x0, 0x3}}, {0xff, 0x2, 0x0, 0x0, @msi={0x0, 0x9, 0x8000, 0xffffff88}}, {0x5, 0x3, 0x0, 0x0, @msi={0x36, 0x9, 0x6, 0xe0d}}, {0x5, 0x0, 0x1, 0x0, @sint={0x9, 0x7ff}}, {0x9, 0x5, 0x1, 0x0, @sint={0x6, 0xffffffff}}, {0x8, 0x3, 0x1, 0x0, @irqchip={0x1, 0x6}}, {0x9, 0x5, 0x0, 0x0, @sint={0xd9, 0x25c}}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000d40), 0x4080, 0x0) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000d80)) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0xd) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000dc0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000e40)=@attr_arm64={0x0, 0x6, 0x2, &(0x7f0000000e00)=0x10}) ioctl$KVM_HAS_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f0000000ec0)=@attr_riscv64=@attr_addr={0x0, 0x1, @aplic, &(0x7f0000000e80)=0x6e7}) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x3d) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000f00)={0x0, 0x4, 0x80a0000, 0x2000, &(0x7f0000fd4000/0x2000)=nil}) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0xf) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000f40)={0xdf, 0x0, 0x5000}) syz_kvm_setup_cpu$arm64(r6, r2, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000001580)=[{0x0, &(0x7f0000000fc0)=[@uexit={0x0, 0x18, 0x3}, @mrs={0xbe, 0x18, {0x603000000013c649}}, @hvc={0x32, 0x40, {0x8400000d, [0x401, 0x1ff, 0x9, 0x401, 0x8]}}, @mrs={0xbe, 0x18, {0x603000000013e18d}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x64}}, @mrs={0xbe, 0x18, {0x603000000013c039}}, @smc={0x1e, 0x40, {0x1bf002000, [0xca7d, 0x10, 0x8, 0x8000000000000001, 0xffffffffffffffff]}}, @mrs={0xbe, 0x18, {0x603000000013df4f}}, @hvc={0x32, 0x40, {0xc4000014, [0x40, 0x401, 0x3, 0xc5, 0x892]}}, @irq_setup={0x46, 0x18, {0x4, 0x2f8}}, @uexit={0x0, 0x18}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x38e}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x40, 0x5cec5a09, 0x3}}, @smc={0x1e, 0x40, {0x84000007, [0x43, 0x62bf, 0x8000, 0x9, 0x2]}}, @code={0xa, 0x54, {"0000007c008008d500802088007008d500a0006f000008d5000028d5804682d20000b0f2e10080d2c20180d2830180d2e40080d2020000d4007008d50028217e"}}, @msr={0x14, 0x20, {0x6030000000138055, 0x8}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0xbd}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x33b}}, @svc={0x122, 0x40, {0x84000014, [0x8, 0x354c00000000000, 0x3ff, 0x6, 0x5]}}, @svc={0x122, 0x40, {0xc4000007, [0x0, 0x0, 0x3, 0x5, 0x401]}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x3dd}}, @code={0xa, 0x6c, {"00fc005f00800048c0e18cd20000b8f2c10080d2820080d2830080d2840080d2020000d41020201e007008d5c0ef82d200c0b8f2010180d2220180d2c30180d2e40180d2020000d4007008d5008008d5000028d5000028d5"}}, @hvc={0x32, 0x40, {0xc4000003, [0x0, 0x100000001, 0x4, 0x3, 0x7]}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0xf, 0x48, 0x26, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x9, 0x486000, 0x9fb, 0x4}}, @svc={0x122, 0x40, {0x4000003, [0x5, 0x10000, 0x7f, 0x4, 0x3]}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x24c}}, @irq_setup={0x46, 0x18, {0x0, 0xb7}}, @smc={0x1e, 0x40, {0xc5000020, [0x2, 0x4, 0x5, 0x8b4, 0x5]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x4, 0x7, 0x2, 0x8, 0x1}}, @eret={0xe6, 0x18}], 0x5a8}], 0x1, 0x0, &(0x7f00000015c0)=[@featur1={0x1, 0x49}], 0x1) r7 = ioctl$KVM_GET_STATS_FD_vm(r6, 0xaece) ioctl$KVM_GET_DEVICE_ATTR(r7, 0x4018aee2, &(0x7f0000001640)=@attr_other={0x0, 0x1, 0xd, &(0x7f0000001600)=0x8}) ioctl$KVM_GET_REGS(r2, 0x8360ae81, &(0x7f0000001680)) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r7, 0x4018aee2, &(0x7f0000001780)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000001740)=0x10001}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r4, 0x4068aea3, &(0x7f00000017c0)={0xe4, 0x0, 0x4}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r1, 0x4068aea3, &(0x7f0000001840)={0xe4, 0x0, 0x4}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000018c0)={0xe}) ioctl$KVM_ARM_PREFERRED_TARGET(r2, 0x8020aeaf, &(0x7f0000001900)) syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) close(0xffffffffffffffff) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001940)={0xfffffffffffffff8, 0x8004, 0x2, r7, 0x2}) 1h26m36.126478952s ago: executing program 1 (id=333): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, &(0x7f0000000740)={0x10002, 0x1c0, 0x0, &(0x7f0000000340)=[0x5, 0x3cdf73e0, 0x9, 0x10, 0xfffffffffffffff2, 0xfffffffffffffffd, 0x2, 0x32, 0x8, 0x5, 0x100000001, 0x8a02, 0x7, 0xf9, 0x4, 0x100, 0x5, 0x9, 0x1c0, 0xffff, 0x2, 0x9, 0x100000001, 0x8000000000000001, 0xe, 0x1e, 0x7, 0x7ef, 0x10000, 0x4, 0x7, 0x2, 0x8, 0x1, 0xfffffffffffffffe, 0xff, 0x9, 0x9de6, 0x5, 0xa, 0x401, 0x6, 0x6, 0x1, 0x2, 0x7fffffff, 0x4, 0x3, 0x3, 0x4, 0xfffffffffffffff3, 0x2, 0xfffffffffffffffb, 0x5, 0x1, 0x800, 0x6f09, 0xce7b, 0x8, 0x7ff, 0xfffffffffffffffb, 0x0, 0x38aa, 0x9, 0xffffffffffffffff, 0x400, 0xfff, 0x3ff, 0x7fff, 0x1, 0x2, 0x0, 0x7, 0x9, 0xbf, 0x800, 0x4, 0x3, 0x3, 0x6, 0x101, 0x80000001, 0x6, 0x487, 0x7cc2f64e, 0x6, 0x8, 0xffffffff, 0x7, 0x4, 0x6b, 0x2, 0x0, 0xa8, 0x4, 0xfffffffffffffff8, 0x5, 0x40, 0x8, 0xffffffffffffffff, 0x7fffffffffffffff, 0x7ff, 0xffffffff, 0x7fff, 0x94f, 0x4, 0x9, 0x1, 0x4, 0x6, 0x0, 0x6, 0x84, 0xa2, 0x6, 0x9, 0x4, 0x5, 0x0, 0x8, 0x1, 0x5, 0x3, 0x1ff, 0x7fffffff, 0x900000000000, 0x6, 0x1]}) syz_kvm_add_vcpu$arm64(r3, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x81}], 0x1) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92) syz_kvm_add_vcpu$arm64(r2, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1h26m34.291328751s ago: executing program 0 (id=334): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r4, 0x8, 0x13, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r4, 0x1000001, 0x12, r3, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r6, 0x4010ae68, &(0x7f0000000040)={0xe000, 0x2000}) 1h25m49.719986026s ago: executing program 32 (id=333): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, &(0x7f0000000740)={0x10002, 0x1c0, 0x0, &(0x7f0000000340)=[0x5, 0x3cdf73e0, 0x9, 0x10, 0xfffffffffffffff2, 0xfffffffffffffffd, 0x2, 0x32, 0x8, 0x5, 0x100000001, 0x8a02, 0x7, 0xf9, 0x4, 0x100, 0x5, 0x9, 0x1c0, 0xffff, 0x2, 0x9, 0x100000001, 0x8000000000000001, 0xe, 0x1e, 0x7, 0x7ef, 0x10000, 0x4, 0x7, 0x2, 0x8, 0x1, 0xfffffffffffffffe, 0xff, 0x9, 0x9de6, 0x5, 0xa, 0x401, 0x6, 0x6, 0x1, 0x2, 0x7fffffff, 0x4, 0x3, 0x3, 0x4, 0xfffffffffffffff3, 0x2, 0xfffffffffffffffb, 0x5, 0x1, 0x800, 0x6f09, 0xce7b, 0x8, 0x7ff, 0xfffffffffffffffb, 0x0, 0x38aa, 0x9, 0xffffffffffffffff, 0x400, 0xfff, 0x3ff, 0x7fff, 0x1, 0x2, 0x0, 0x7, 0x9, 0xbf, 0x800, 0x4, 0x3, 0x3, 0x6, 0x101, 0x80000001, 0x6, 0x487, 0x7cc2f64e, 0x6, 0x8, 0xffffffff, 0x7, 0x4, 0x6b, 0x2, 0x0, 0xa8, 0x4, 0xfffffffffffffff8, 0x5, 0x40, 0x8, 0xffffffffffffffff, 0x7fffffffffffffff, 0x7ff, 0xffffffff, 0x7fff, 0x94f, 0x4, 0x9, 0x1, 0x4, 0x6, 0x0, 0x6, 0x84, 0xa2, 0x6, 0x9, 0x4, 0x5, 0x0, 0x8, 0x1, 0x5, 0x3, 0x1ff, 0x7fffffff, 0x900000000000, 0x6, 0x1]}) syz_kvm_add_vcpu$arm64(r3, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x81}], 0x1) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92) syz_kvm_add_vcpu$arm64(r2, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 1h25m45.961108348s ago: executing program 33 (id=334): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r4, 0x8, 0x13, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r4, 0x1000001, 0x12, r3, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r6, 0x4010ae68, &(0x7f0000000040)={0xe000, 0x2000}) 58m35.980141366s ago: executing program 2 (id=504): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000600)={0x0, &(0x7f0000000000)=[@uexit={0x0, 0x18, 0x4}, @uexit={0x0, 0x18, 0xffffffff}, @hvc={0x32, 0x40, {0x1000, [0x3, 0x7fffffffffffffff, 0x1ac722c2, 0x9, 0x8]}}, @hvc={0x32, 0x40, {0x84000002, [0xffffffffffff47f0, 0x48000000, 0x9, 0x8, 0x9]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0x3, 0x9, 0xfffffbff, 0x2}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x308}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @irq_setup={0x46, 0x18, {0x2, 0x211}}, @eret={0xe6, 0x18, 0x8ca}, @irq_setup={0x46, 0x18, {0x4, 0xcd}}, @hvc={0x32, 0x40, {0x80003fff, [0x86ee, 0x4, 0x9, 0x3, 0x6c1]}}, @code={0xa, 0x84, {"00849f0d0000000bc0179ad20020b8f2610080d2420180d2430180d2840180d2020000d4000028d5000008d5608097d200c0b0f2e10080d2a20180d2e30080d2840180d2020000d4000028d5000028d5e08388d20020b0f2010080d2220180d2a30180d2c40180d2020000d4007008d5"}}, @smc={0x1e, 0x40, {0xf0000156, [0x101, 0xd0, 0x4e5, 0x6, 0x2]}}, @smc={0x1e, 0x40, {0x84000000, [0x1156, 0x7ff, 0x3, 0x4, 0x4]}}, @code={0xa, 0x6c, {"00b8212e007008d5007008d5008008d5008008d5e0f594d20060b8f2810180d2a20080d2a30180d2a40180d2020000d420248cd200a0b0f2610080d2820180d2a30180d2440080d2020000d40014202e000008d5000028d5"}}, @code={0xa, 0x84, {"008008d540eb9fd20060b0f2010080d2020180d2230080d2640180d2020000d40080204e002f8ed200a0b0f2410080d2420180d2630080d2440180d2020000d4609a9fd200e0b8f2c10180d2620180d2a30080d2c40080d2020000d40080400d0028c01a0094202e000028d500209f0d"}}, @code={0xa, 0x84, {"000008d50040641e80b394d20040b8f2210080d2020180d2230080d2240080d2020000d4000008d5e08092d200c0b0f2410080d2c20080d2030180d2640180d2020000d4007008d50000e00d008008d50008e038e0649cd200a0b0f2810080d2620080d2c30180d2040180d2020000d4"}}, @eret={0xe6, 0x18, 0x3}, @smc={0x1e, 0x40, {0x84000012, [0xd, 0xe, 0x80000000, 0x5, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x3, 0xa, 0x3, 0x7, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x8, 0xb, 0xe}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x9b}}, @uexit={0x0, 0x18, 0x9bd}, @hvc={0x32, 0x40, {0x80007fff, [0x911, 0x8000000000000000, 0x0, 0x0, 0xab4]}}, @svc={0x122, 0x40, {0x86008051, [0x7fffffffffffffff, 0x5, 0x6, 0x4, 0x28000000000000]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0x0, 0x5, 0x261f, 0x1}}, @msr={0x14, 0x20, {0x603000000013e2b0, 0x10}}], 0x5d0}, &(0x7f0000000640)=[@featur1={0x1, 0x20}], 0x1) ioctl$KVM_ARM_VCPU_INIT(r0, 0x4020aeae, &(0x7f0000000680)={0x2}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x602900, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x39) ioctl$KVM_GET_REGS(r0, 0x8360ae81, &(0x7f0000000700)) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000007c0)={0x6, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000840)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000800)=0x4}) ioctl$KVM_ARM_VCPU_INIT(r0, 0x4020aeae, &(0x7f0000000880)={0x5, 0x10}) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2a) r5 = eventfd2(0xc6, 0x0) ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f00000008c0)={r0, 0x0, 0x3, r5}) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, r6, 0x9, 0x4010, r0, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000900)={r5, 0x8, 0x3, r5}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000940)={0x5}) r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000ac0)={0x0, &(0x7f0000000980)=[@its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x0, 0xc, 0xc, 0x5, 0x2}}, @code={0xa, 0x54, {"001c004e0010000e000028d50044002f0058202e007008d50000407c000028d5007008d560109ed200a0b8f2410180d2c20080d2030180d2440080d2020000d4"}}, @uexit={0x0, 0x18, 0x9000000000}, @eret={0xe6, 0x18, 0x800}, @code={0xa, 0x84, {"008008d5000028d5802185d20080b8f2810080d2a20080d2c30180d2c40080d2020000d4007008d500fc007f403c86d200c0b8f2210180d2820080d2a30080d2e40180d2020000d4404b9dd200e0b0f2810180d2220080d2230080d2040180d2020000d400d8a02e007008d50040621e"}}], 0x130}, &(0x7f0000000b00)=[@featur2], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000b40)=0x8) eventfd2(0xaf98, 0x80000) close(r0) r8 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000cc0)={0x0, &(0x7f0000000b80)=[@code={0xa, 0x84, {"007008d50000406c007008d5007008d5007008d5007008d5007008d5c0fc92d20040b0f2410180d2020080d2830180d2a40080d2020000d4c0c898d200a0b8f2a10180d2e20180d2030080d2c40180d2020000d4009286d20060b8f2c10180d2c20080d2c30180d2c40080d2020000d4"}}, @smc={0x1e, 0x40, {0x84000000, [0x100000001, 0x7, 0x4, 0x9, 0x100000000]}}, @smc={0x1e, 0x40, {0x84000012, [0x401, 0x6d3, 0x5, 0x7fffffffffffffff, 0x62d8]}}, @uexit={0x0, 0x18, 0x6}], 0x11c}, &(0x7f0000000d00)=[@featur1={0x1, 0x80}], 0x1) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r7, 0x4018aee2, &(0x7f0000000d40)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0xcff}) ioctl$KVM_SET_SREGS(r0, 0x4000ae84, &(0x7f0000000d80)={{0xe000, 0x4000, 0xd, 0x3, 0x7, 0x7, 0xba, 0x6, 0x8, 0x10, 0x87, 0x7}, {0x70000, 0x40000, 0x0, 0x30, 0x0, 0x9, 0x57, 0x81, 0x7, 0x6, 0x0, 0xa}, {0x8080000, 0x30000, 0x4, 0x2, 0xe, 0x9, 0x7, 0x9, 0x6d, 0x2, 0x9}, {0xfec00000, 0x9000, 0xe, 0x0, 0x80, 0x3, 0x8, 0x3, 0x5, 0xa, 0x3, 0x8}, {0x1, 0x200000, 0xd, 0x40, 0x7, 0x1, 0x0, 0x5, 0x4, 0x8, 0xa, 0x5}, {0xb000, 0xdddd0000, 0xc, 0x9, 0x4, 0x9, 0x7, 0x6, 0x98, 0x9e, 0x1}, {0xeeef0000, 0xffe92fff, 0xe, 0x6, 0x4, 0x3, 0xe, 0xb9, 0xfe, 0x6, 0x1, 0x6}, {0x2000, 0x4000, 0x0, 0xf8, 0xc2, 0x7, 0x40, 0x7, 0x6, 0x64, 0x7, 0xb}, {0x7000, 0x8}, {0xdddd0000, 0x9}, 0x4000000e, 0x0, 0x41000, 0x600, 0x0, 0x8001, 0x31000, [0xb, 0x400, 0x5, 0x5ff]}) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) munmap(&(0x7f0000f97000/0x4000)=nil, 0x4000) r9 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3f) ioctl$KVM_CAP_HALT_POLL(r9, 0x4068aea3, &(0x7f0000000ec0)={0xb6, 0x0, 0x825}) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000f40)={0x3, 0xc1}) close(r5) 58m28.475755491s ago: executing program 3 (id=505): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) eventfd2(0x800, 0x801) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0xf4020000}) 58m27.224925732s ago: executing program 2 (id=506): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000840)=[{0x0, 0x0, 0x248}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) syz_kvm_vgic_v3_setup(r3, 0x3, 0x320) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) 58m19.449893074s ago: executing program 3 (id=507): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x23) (async) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x23) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x5}) (async) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x5}) r1 = ioctl$KVM_GET_STATS_FD_vm(r0, 0xaece) ioctl$KVM_CAP_PTP_KVM(r1, 0x4068aea3, &(0x7f0000000040)) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x24) (async) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x24) ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f00000000c0)={0x62, 0x6}) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bff000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x3, 0x1bd}}, @smc={0x1e, 0x40, {0x84000011, [0x8, 0x2, 0xba, 0x9]}}], 0x58}, &(0x7f00000001c0)=[@featur1={0x1, 0xc5}], 0x1) (async) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x3, 0x1bd}}, @smc={0x1e, 0x40, {0x84000011, [0x8, 0x2, 0xba, 0x9]}}], 0x58}, &(0x7f00000001c0)=[@featur1={0x1, 0xc5}], 0x1) r5 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000700)={0x0, &(0x7f0000000200)=[@irq_setup={0x46, 0x18, {0x2, 0x6a}}, @irq_setup={0x46, 0x18, {0x3, 0xb2}}, @svc={0x122, 0x40, {0x80000000, [0x4, 0x0, 0x3, 0x9, 0x9]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x122}}, @code={0xa, 0x84, {"c0679ad20020b8f2e10080d2a20080d2e30080d2c40080d2020000d40058202e00c8a12e00d29fd20020b0f2e10180d2020080d2630180d2640080d2020000d4008008d5008008d500008013000c403800d199d20080b0f2210080d2020180d2030080d2e40080d2020000d400003fd6"}}, @msr={0x14, 0x20, {0x603000000013c00c, 0x5}}, @svc={0x122, 0x40, {0x0, [0x8000000000000001, 0x10, 0x100000001, 0x8000000000000001, 0x7]}}, @eret={0xe6, 0x18, 0x1}, @msr={0x14, 0x20, {0x603000000013deeb, 0x8}}, @irq_setup={0x46, 0x18, {0x4, 0x3a8}}, @msr={0x14, 0x20, {0x603000000013df55, 0x10}}, @hvc={0x32, 0x40, {0xc4000003, [0x340, 0x6, 0x8, 0x189e, 0x1b10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x2, 0xe, 0x6c6, 0x800, 0x2}}, @uexit={0x0, 0x18}, @msr={0x14, 0x20, {0x603000000013c65d, 0x9}}, @uexit={0x0, 0x18, 0x7f}, @uexit={0x0, 0x18, 0x8}, @smc={0x1e, 0x40, {0x80, [0x357f1d18, 0x61, 0x9, 0x3, 0x6]}}, @smc={0x1e, 0x40, {0x84000005, [0x3, 0x6, 0xffffffffffff8000, 0x0, 0x80]}}, @eret={0xe6, 0x18, 0xff}, @svc={0x122, 0x40, {0x100, [0x2800, 0x1, 0x1, 0x0, 0x4a]}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x360}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x1, 0xd, 0x3, 0x6, 0x3}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x20}}, @eret={0xe6, 0x18, 0x3}, @uexit={0x0, 0x18, 0x8c}, @smc={0x1e, 0x40, {0x40, [0xa0, 0x2, 0x6, 0x9, 0x2]}}, @irq_setup={0x46, 0x18, {0x0, 0x19e}}, @eret={0xe6, 0x18, 0x80}, @eret={0xe6, 0x18, 0xffffffffffffffff}], 0x4c4}, &(0x7f0000000740)=[@featur2={0x1, 0x48}], 0x1) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000780)={0xdf, 0x0, 0x10000}) (async) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000780)={0xdf, 0x0, 0x10000}) r6 = ioctl$KVM_GET_STATS_FD_vm(r0, 0xaece) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f0000000800)=0x3) syz_kvm_setup_cpu$arm64(r0, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000b40)=[{0x0, &(0x7f0000000840)=[@eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x200000f, [0x5, 0x1, 0x400, 0x4, 0x3]}}, @uexit={0x0, 0x18, 0x1d}, @memwrite={0x6e, 0x30, @generic={0x10000, 0xa3e, 0x2, 0xd}}, @msr={0x14, 0x20, {0x603000000013e641, 0x10001}}, @eret={0xe6, 0x18, 0xe}, @hvc={0x32, 0x40, {0x1000000, [0x962, 0x3, 0xe77, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x8000000000000001}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x3, 0x2, 0x80000001, 0x100, 0x1}}, @uexit={0x0, 0x18}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x380, 0xffffffff, 0xd752f2a8f31812fa}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0xc, 0x9, 0x3, 0x2}}, @eret={0xe6, 0x18, 0x7}, @code={0xa, 0x9c, {"007008d5c07691d200e0b0f2c10180d2e20080d2230180d2040180d2020000d4000020ca007c209b801982d20020b8f2e10180d2a20080d2a30080d2840180d2020000d4c05381d20080b0f2210080d2e20180d2e30180d2840180d2020000d4007008d5000008d50004805ae0038fd20020b0f2010080d2c20080d2230080d2c40180d2020000d4"}}, @svc={0x122, 0x40, {0x84000007, [0x7, 0x1, 0x100000001, 0xfff]}}, @msr={0x14, 0x20, {0x603000000013f518, 0x33d8}}], 0x2dc}], 0x1, 0x0, &(0x7f0000000b80)=[@featur1={0x1, 0x94}], 0x1) (async) syz_kvm_setup_cpu$arm64(r0, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000b40)=[{0x0, &(0x7f0000000840)=[@eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x200000f, [0x5, 0x1, 0x400, 0x4, 0x3]}}, @uexit={0x0, 0x18, 0x1d}, @memwrite={0x6e, 0x30, @generic={0x10000, 0xa3e, 0x2, 0xd}}, @msr={0x14, 0x20, {0x603000000013e641, 0x10001}}, @eret={0xe6, 0x18, 0xe}, @hvc={0x32, 0x40, {0x1000000, [0x962, 0x3, 0xe77, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x8000000000000001}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x3, 0x2, 0x80000001, 0x100, 0x1}}, @uexit={0x0, 0x18}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x380, 0xffffffff, 0xd752f2a8f31812fa}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0xc, 0x9, 0x3, 0x2}}, @eret={0xe6, 0x18, 0x7}, @code={0xa, 0x9c, {"007008d5c07691d200e0b0f2c10180d2e20080d2230180d2040180d2020000d4000020ca007c209b801982d20020b8f2e10180d2a20080d2a30080d2840180d2020000d4c05381d20080b0f2210080d2e20180d2e30180d2840180d2020000d4007008d5000008d50004805ae0038fd20020b0f2010080d2c20080d2230080d2c40180d2020000d4"}}, @svc={0x122, 0x40, {0x84000007, [0x7, 0x1, 0x100000001, 0xfff]}}, @msr={0x14, 0x20, {0x603000000013f518, 0x33d8}}], 0x2dc}], 0x1, 0x0, &(0x7f0000000b80)=[@featur1={0x1, 0x94}], 0x1) syz_kvm_setup_cpu$arm64(r6, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000ec0)=[{0x0, &(0x7f0000000bc0)=[@svc={0x122, 0x40, {0x80, [0xffffffffffffffff, 0x6, 0x2, 0x5, 0x2]}}, @msr={0x14, 0x20, {0x603000000013defe, 0x2800000000}}, @code={0xa, 0x9c, {"a06b84d20060b8f2010080d2e20180d2030180d2e40180d2020000d4000008d5008008d5e04b96d20080b0f2810080d2420080d2230080d2840080d2020000d400209f0d008008d5a06394d200a0b0f2a10180d2a20180d2230080d2240080d2020000d40014200ee0c998d20060b8f2210080d2a20080d2830080d2840080d2020000d4000028d5"}}, @smc={0x1e, 0x40, {0x84000009, [0x8c0d, 0x6, 0x9b, 0x1, 0x429]}}, @irq_setup={0x46, 0x18, {0x2, 0x2e1}}, @uexit={0x0, 0x18, 0x2}, @irq_setup={0x46, 0x18, {0x0, 0x2e3}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x1e4}}, @code={0xa, 0x84, {"80be9ed20060b0f2410080d2020080d2830080d2440080d2020000d4007008d5007008d5000008d51f000071000028d5807a8ad200a0b8f2a10080d2420080d2a30180d2040080d2020000d4202299d200c0b0f2410180d2a20180d2230180d2840180d2020000d40080200e0000c0da"}}, @smc={0x1e, 0x40, {0x6000000, [0x5adc7dc4, 0x7, 0x7, 0x0, 0x400]}}, @smc={0x1e, 0x40, {0x10, [0x7, 0xfff, 0x5, 0x80000000, 0x100]}}, @irq_setup={0x46, 0x18, {0x0, 0x3b3}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x0, 0x5, 0x3, 0xf5bf, 0x1}}], 0x2f0}], 0x1, 0x0, &(0x7f0000000f00)=[@featur1={0x1, 0x88}], 0x1) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x25) (async) r7 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x25) ioctl$KVM_PPC_ALLOCATE_HTAB(r7, 0xc004aea7, &(0x7f0000000f40)=0xab) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r2, 0x4010ae74, &(0x7f0000000f80)={0x2, 0x0, 0x3}) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000fc0)={0xffffffffffffffff, 0xb000, 0x5, r1, 0x8}) (async) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000fc0)={0xffffffffffffffff, 0xb000, 0x5, r1, 0x8}) r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x17) ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f0000001000)={r6, 0x2, 0x3, r6}) (async) ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f0000001000)={r6, 0x2, 0x3, r6}) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000001080)=@attr_other={0x0, 0x1, 0x3ff, &(0x7f0000001040)=0x5}) (async) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000001080)=@attr_other={0x0, 0x1, 0x3ff, &(0x7f0000001040)=0x5}) ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, &(0x7f00000010c0)={0xc0, 0x0, 0x1b000}) ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000001180)=@arm64_fw={0x6030000000140002, &(0x7f0000001140)=0x9}) ioctl$KVM_RUN(r5, 0xae80, 0x0) eventfd2(0x3, 0x80801) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f00000011c0)={0x7fff, 0x1}) openat$kvm(0xffffffffffffff9c, &(0x7f0000001200), 0x200100, 0x0) 58m12.749647947s ago: executing program 2 (id=508): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0xfffffffffffffffb) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1c) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_GSI_ROUTING(r7, 0x4008ae6a, 0x0) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0xc4000004, [0x40000099a, 0x4, 0x9, 0x89, 0xffffffffffffffff]}}], 0x40}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r9, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(r3, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000000c0)={0x2, 0x10000, 0x1}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, 0x0}) 58m10.100333438s ago: executing program 3 (id=509): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = ioctl$KVM_CREATE_VM(r2, 0x400454d4, 0x40) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x1, 0x4, 0xeeee0000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) 57m59.35361685s ago: executing program 2 (id=510): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x14) ioctl$KVM_RESET_DIRTY_RINGS(r2, 0xaec7) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r6, 0x0) (async, rerun: 32) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x401c5820, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)=0x6}) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async, rerun: 64) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x43ff}) (rerun: 64) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) close(0x4) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) close(0x5) 57m58.508557345s ago: executing program 3 (id=511): mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x6030000000100050, &(0x7f0000000000)=0x85c7}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x4, 0x3a0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r7 = syz_kvm_vgic_v3_setup(r6, 0xffffffffffbffffc, 0x120) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x2, &(0x7f0000000200)=0x8080000}) close(r4) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 57m47.815993033s ago: executing program 2 (id=512): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x206a02, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x27) syz_kvm_vgic_v3_setup(r3, 0x4, 0x1a0) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, 0x0) (async, rerun: 32) r7 = eventfd2(0x2, 0x80000) (async, rerun: 32) r8 = eventfd2(0xf, 0x80001) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000100)={r8, 0x0, 0x2, r7}) (async) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000000)={r7, 0x8, 0x2, r7}) (async) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async) close(0x4) 57m43.621578543s ago: executing program 3 (id=513): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f00000001c0)={0x3, 0x3f46}) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000380)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x2401, 0x0) (async, rerun: 64) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x151080, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000bfe000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r5, 0x1, 0x100) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0xdc032, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$KVM_SET_GUEST_DEBUG_arm64(r7, 0x4208ae9b, 0x0) (async) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2e) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x3) (async) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 64) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 64) r10 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) (async) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000002c0)=@arm64_sve={0x6080000000150158, &(0x7f0000000300)=0x2}) (async) ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) (async) close(r1) (async) r13 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x33) (async) ioctl$KVM_ARM_VCPU_FINALIZE(r9, 0x4004aec2, &(0x7f0000000180)=0x4) (async) ioctl$KVM_GET_REG_LIST(r12, 0xc008aeb0, &(0x7f00000000c0)={0x48, [0x49f79b3d, 0xfffffffffffffff7, 0x4, 0x7, 0x537, 0x2, 0xef4b]}) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000140)=@arm64_ccsidr={0x6020000000110808, 0x0}) 57m36.741701026s ago: executing program 2 (id=514): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x183040, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0xb}) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, 0x0}) 57m29.815799471s ago: executing program 3 (id=515): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0xb, 0xffffffffffffffff}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0x7}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x3, 0x320) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xc018ae85, 0xf0ff1f00000000) r7 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 56m49.642988047s ago: executing program 34 (id=514): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x183040, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0xb}) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, 0x0}) 56m41.142580391s ago: executing program 35 (id=515): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0xb, 0xffffffffffffffff}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0x7}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x3, 0x320) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xc018ae85, 0xf0ff1f00000000) r7 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 51m5.11374003s ago: executing program 4 (id=516): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000040)=@attr_other={0x0, 0x2, 0x6, &(0x7f0000000000)=0x6}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff, 0xffffffffffffffff}) (async) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, 0x0) (async) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000040)=@attr_other={0x0, 0x2, 0x6, &(0x7f0000000000)=0x6}) (async) 50m52.051361808s ago: executing program 4 (id=518): mmap$KVM_VCPU(&(0x7f0000a7e000/0x1000)=nil, 0x930, 0x100000a, 0x4f832, 0xffffffffffffffff, 0x1000000) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) 50m36.490040821s ago: executing program 4 (id=519): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000180)={0xc, "11029c14e50eaac9139c4595"}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000140)=@arm64_fw={0x6030000000140002, &(0x7f0000000280)=0xfffffffffffffffd}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r12 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000bc2000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r14 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r14, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x0, 0x210}}], 0x18}, 0x0, 0x0) eventfd2(0x8, 0x80801) 49m47.020134071s ago: executing program 36 (id=519): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000180)={0xc, "11029c14e50eaac9139c4595"}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x40000, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000140)=@arm64_fw={0x6030000000140002, &(0x7f0000000280)=0xfffffffffffffffd}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r12 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000bc2000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r14 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a21000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r14, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x0, 0x210}}], 0x18}, 0x0, 0x0) eventfd2(0x8, 0x80801) 44m34.963061964s ago: executing program 5 (id=536): r0 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000000c0)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000000}) r4 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r6, 0x0) r8 = eventfd2(0x0, 0x0) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r9 = eventfd2(0x0, 0x0) close(r9) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r9, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000100)=0x8010000000000002}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r0, 0x6, 0x4f832, 0xffffffffffffffff, 0x1000000) 44m15.958353899s ago: executing program 5 (id=537): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1a) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x4, 0x100) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000002c0)={0x2, 0xffffffffffffffff, 0x1}) close(r3) (async) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async) ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f0000000280)={0x6c, 0x6}) (async) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x89, 0x6, 0x2, 0x0, 0x6, 0x6, 0xe2, 0x3, 0x29, 0x0, '\x00', 0x10, 0x6}) (async) r5 = eventfd2(0x8bc, 0x80800) write$eventfd(r5, &(0x7f0000000200)=0x2, 0x8) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x80000, 0x10000, 0x0, 0x8, 0x2}}], 0x50}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR_vm(r6, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x7, 0x10001}}) (async) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000240)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) 43m56.541626658s ago: executing program 5 (id=538): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r3, &(0x7f00000001c0), 0xe80) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r5 = openat$kvm(0x0, &(0x7f0000000200), 0x121040, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x603000000010003e, &(0x7f0000000100)=0xed5b}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) r8 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r8, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="320000000000000040080000000000000000000000000009000000000000000800000000000000f8ffffffffffffff000100"/64], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) 43m33.253888216s ago: executing program 5 (id=539): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xcb) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xcb) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) 43m21.730852608s ago: executing program 5 (id=540): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x1, 0x1ffff, 0x1}}], 0x28}, 0x0, 0x0) (async, rerun: 32) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async, rerun: 32) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x5, 0xffffffffffffffff, 0x1}) (async) r4 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r6, 0x400454d1, 0x28) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async, rerun: 32) munmap(&(0x7f0000d8f000/0x4000)=nil, 0x4000) (async, rerun: 32) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) (async, rerun: 64) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) (async, rerun: 64) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) (async, rerun: 64) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) (async) ioctl$KVM_CREATE_VM(r4, 0xae01, 0xc) (async, rerun: 64) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) 42m56.949741017s ago: executing program 5 (id=541): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x25) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000380)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000140)=@arm64_ccsidr={0x6020000000110808, 0x0}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x31) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f00000000c0)=0xbf12700) ioctl$KVM_CHECK_EXTENSION_VM(r7, 0xae03, 0x8) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c000}) 42m3.498783634s ago: executing program 37 (id=541): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x25) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000380)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000140)=@arm64_ccsidr={0x6020000000110808, 0x0}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x31) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f00000000c0)=0xbf12700) ioctl$KVM_CHECK_EXTENSION_VM(r7, 0xae03, 0x8) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c000}) 18m2.075236993s ago: executing program 7 (id=643): munmap(&(0x7f0000865000/0x4000)=nil, 0x4000) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2e) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000040)={0x5}) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000100)=@arm64_fw={0x6030000000140002, &(0x7f0000000140)=0xffffffffffffffff}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xac) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x400000000000012) ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, &(0x7f0000000280)=[@mrs={0xbe, 0x18, {0x603000000013c298}}, @irq_setup={0x46, 0x18, {0x3, 0x17}}, @uexit={0x0, 0x18, 0x594ab3cd}, @svc={0x122, 0x40, {0x40000044, [0x1, 0x4, 0x8000, 0x8021, 0xffff]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x3a8}}, @uexit={0x0, 0x18, 0x81}, @hvc={0x32, 0x40, {0x80, [0xff, 0x6, 0x9, 0x9, 0xd]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xe, 0x200, 0x5734}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @code={0xa, 0x6c, {"007008d5008c205e007008d5007008d5007008d580bd84d200e0b8f2010180d2420180d2030180d2440180d2020000d400c4200e007008d5000000fcc05b8fd20040b0f2010080d2020180d2030180d2e40080d2020000d4"}}, @smc={0x1e, 0x40, {0x8, [0x4, 0xb, 0x2, 0x9, 0x5bb3]}}], 0x1f4}, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = syz_kvm_vgic_v3_setup(r7, 0x2, 0x200) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000040)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000000000)=0x5}) 17m35.261166587s ago: executing program 7 (id=645): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x480, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100028, 0x0}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x40086602, 0x20000000) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x10000, 0x0, 0xa, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 17m35.259608027s ago: executing program 6 (id=646): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2d) ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000000000)={0x60980d025cc12d41, 0x1ddc8a000, 0xc, 0x1, 0x7}) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000040)={0x4, 0x0, [{0x0, 0x2, 0x1, 0x0, @msi={0x9, 0x3ab3f34a, 0xd, 0x5d17}}, {0x4, 0x5, 0x0, 0x0, @msi={0x0, 0x3, 0x1, 0x6}}, {0x7ff, 0x3, 0x1, 0x0, @msi={0x1, 0x3, 0xffff, 0x3ff}}, {0x2, 0x2, 0x0, 0x0, @irqchip={0x1, 0x2}}]}) ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000140)={0x50e, 0x800}) close(r0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x101ff, 0x3, 0xdddd1000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x14) r3 = ioctl$KVM_GET_STATS_FD_vm(r2, 0xaece) syz_kvm_setup_cpu$arm64(r0, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000440)=[{0x0, &(0x7f00000001c0)=[@svc={0x122, 0x40, {0xc, [0x4, 0x2, 0x1, 0x8, 0x7]}}, @eret={0xe6, 0x18, 0x67}, @uexit={0x0, 0x18, 0xd}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013df42, 0x7c04}}, @irq_setup={0x46, 0x18, {0x1, 0x22a}}, @uexit={0x0, 0x18, 0x101}, @irq_setup={0x46, 0x18, {0x4, 0x4b}}, @eret={0xe6, 0x18, 0x6}, @eret={0xe6, 0x18, 0x29ac}, @uexit={0x0, 0x18, 0x8}, @smc={0x1e, 0x40, {0x1000000, [0xbbb4, 0x0, 0xff, 0xfffffffffffffffb, 0x5]}}, @smc={0x1e, 0x40, {0x400, [0x5, 0xffffffff80000001, 0x9, 0x0, 0x100000000]}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x1a4}}, @smc={0x1e, 0x40, {0x8400000f, [0x401, 0x8, 0x4, 0x800000000, 0x2]}}, @memwrite={0x6e, 0x30, @generic={0x100000, 0xd8c, 0x1, 0x2}}], 0x250}], 0x1, 0x0, &(0x7f0000000480)=[@featur1={0x1, 0x36}], 0x1) ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f00000004c0)={0x10001, 0x2}) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x10) ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000500)={r3, 0x6, 0x2, r3}) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0xd) r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000640)={0x0, &(0x7f0000000540)=[@its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x3, 0x0, 0x0, 0xffffff00, 0x1}}, @mrs={0xbe, 0x18, {0x603000000013c64a}}, @irq_setup={0x46, 0x18, {0x2, 0x4d}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x2, 0xe, 0x8, 0x3, 0x3}}, @svc={0x122, 0x40, {0xc400000c, [0x81, 0x86d, 0x6, 0xc, 0x5]}}, @smc={0x1e, 0x40, {0x4000000, [0x9, 0x10001, 0x8, 0xe8c, 0x9]}}], 0x100}, &(0x7f0000000680)=[@featur2={0x1, 0x10}], 0x1) ioctl$KVM_SET_SREGS(r6, 0x4000ae84, &(0x7f00000006c0)={{0xddd88000, 0x5000, 0xf, 0x2, 0x3, 0x7, 0x7, 0xd8, 0x7, 0x0, 0x7, 0x3}, {0x6000, 0xe000, 0xa, 0x8, 0x10, 0x2c, 0x80, 0x5, 0x0, 0x0, 0x7c, 0x4}, {0x58000, 0x2000, 0x9, 0x9, 0x9, 0x4c, 0x6, 0x3, 0x5, 0x1, 0x5, 0x5}, {0x1000, 0xeeee0000, 0xe, 0xff, 0x0, 0xc, 0x80, 0x9c, 0x0, 0x7, 0xc}, {0x4, 0x25000, 0x4, 0x5, 0x8, 0x5, 0x9, 0x6, 0x9, 0x1, 0x3d, 0x84}, {0x41004, 0xa000, 0xb, 0x4, 0x8, 0x72, 0x9, 0x2, 0x0, 0xff, 0x1, 0xff}, {0x30000, 0xf000, 0xc, 0x0, 0x5, 0x1, 0x1, 0x10, 0x4, 0x7, 0x2}, {0xffffffff, 0x25000, 0xb, 0x4, 0x41, 0x0, 0xa7, 0xd, 0x2, 0x0, 0x4, 0x7}, {0x9000, 0x3}, {0xf000, 0x4}, 0xc0000000, 0x0, 0x50000, 0x202000, 0x7, 0x1a100, 0x80a0000, [0xff, 0x80, 0x6, 0x594bb73b]}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000800)={0x2, 0x1, 0x80a0000, 0x1000, &(0x7f0000d97000/0x1000)=nil}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r4, 0x4068aea3, &(0x7f0000000840)) r7 = ioctl$KVM_GET_STATS_FD_vm(r3, 0xaece) ioctl$KVM_CAP_ARM_MTE(r3, 0x4068aea3, &(0x7f00000008c0)) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f0000000940)) r8 = ioctl$KVM_GET_STATS_FD_vm(r5, 0xaece) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000ce1000/0x2000)=nil, r9, 0x4, 0x110, r8, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vm(r8, 0x4018aee2, &(0x7f0000000a00)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000009c0)={0x2, 0x4, 0x1}}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000a6f000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0xc0000000) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f00008ea000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_RUN(r7, 0xae80, 0x0) 17m21.611005339s ago: executing program 6 (id=647): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)}], 0x1, 0x0, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0) eventfd2(0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000000000/0x400000)=nil) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0xfffffffffffffffc) r12 = syz_kvm_vgic_v3_setup(r4, 0x1, 0x140) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000000)=@attr_other={0x0, 0x6, 0x100382bc664, &(0x7f0000000140)=0x1}) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0xf, 0x32, 0xffffffffffffffff, 0x0) close(r7) 17m20.203494901s ago: executing program 7 (id=648): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r2, 0x400454d4, 0x110c230020) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x17) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_RUN(r6, 0xc018ae85, 0xf0ff1f00000000) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x161681, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000000c0)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x4}], 0x1) syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x2041, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x4) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1800, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x2a) r15 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8900, 0x0) ioctl$KVM_CREATE_VM(r15, 0xae01, 0x24) syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000aec000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r16, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x7, 0x0, 0xfc, '\x00', 0x4}) ioctl$KVM_RUN(r16, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r16, 0x4040aea0, &(0x7f0000000080)=@arm64={0xd, 0x8, 0x7, '\x00', 0x2d}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) 16m56.507174518s ago: executing program 7 (id=649): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f00000000c0)=@arm64_core={0x6030000000100008, &(0x7f0000000000)=0xc}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x41) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000040)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000200)=@attr_other={0x0, 0x1000, 0x8, &(0x7f00000001c0)=0x4e}) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) (async) r12 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000100)=@arm64={0x4e, 0x2, 0x0, '\x00', 0x4}) ioctl$KVM_GET_VCPU_EVENTS(r13, 0x8040ae9f, &(0x7f0000000000)=@arm64) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000240)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df7f, 0x1000}}], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000481000/0x1000)=nil, 0x1000) munmap(&(0x7f0000136000/0x2000)=nil, 0x2000) 16m53.517952412s ago: executing program 6 (id=650): openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r2 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2b) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x5) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r5, 0x2, 0x12, r4, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SIGNAL_MSI(r8, 0x4020aea5, &(0x7f0000000000)={0xe000, 0x30000, 0x4, 0x1, 0x401}) write$eventfd(r8, &(0x7f00000001c0)=0x3, 0xfdef) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) 16m29.624474202s ago: executing program 7 (id=651): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x42042, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000000)={0x1000, 0x11c000, 0x1}) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0xc000, 0x0, 0x1}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f0000000040)={0x17000, 0x206000, 0x1}) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_other={0x0, 0xe, 0x8, &(0x7f0000000040)=0xc3}) ioctl$KVM_INTERRUPT(r5, 0x4004ae86, &(0x7f0000000080)=0x454e55ce) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x5}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 16m26.601061859s ago: executing program 6 (id=652): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000700)={0x7, 0x0}) (async) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, &(0x7f0000000240)={0x200002f}) (async) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async, rerun: 64) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000100)={0x1000020, 0x1}) (async, rerun: 32) ioctl$KVM_RUN(r8, 0xae80, 0x0) (rerun: 32) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x46, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x100001, 0xffc0000, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x93}) munmap$KVM_VCPU(0x0, 0x1000000000) r9 = mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000e, 0x24132, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000000)="caf9d6ac7953c5a4571996b36c0135c684c5c0d4fad93b80dd7cb2b66d542f6173f233a6e1606154cf719c2550e01ad56fce42d3686e6f9b00a64f3728849edd28e62dda6398ff0f", 0x0, 0x48) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4000ae84, &(0x7f0000000200)={{0x0, 0x1000, 0x1, 0x3a, 0x0, 0x9, 0xba, 0xc, 0x2, 0x6, 0x0, 0xa0}, {0xeeef0000, 0x0, 0xd, 0x1, 0xfc, 0x1, 0x5, 0xc, 0x7, 0x4, 0x6, 0x6}, {0x0, 0xeeee8000, 0x8, 0x9, 0x6, 0x7, 0x3, 0xdb, 0x8, 0x1, 0x1}, {0x2, 0xe000, 0x0, 0x55, 0x7f, 0x80, 0x4, 0x4, 0xa, 0x1, 0x5, 0x9}, {0x6000, 0x0, 0x0, 0x38, 0x0, 0x6, 0x8, 0x1, 0x81, 0x93, 0x7f, 0x8}, {0xdddd1000, 0x41000, 0xd, 0x5, 0x9, 0x5, 0x2, 0x8, 0x81, 0xf, 0x5, 0xfe}, {0xffff1000, 0xb000, 0x14, 0x1, 0x1, 0x7b, 0xfd, 0x9, 0x6a, 0xe, 0x8, 0xd1}, {0xeeef0000, 0x7000, 0x4, 0x3, 0x0, 0x0, 0x7, 0xfa, 0x10, 0x8, 0x2, 0x1}, {0xeeee0000, 0x2}, {0x8000000, 0xc71}, 0x20000002, 0x0, 0x1000, 0x8, 0x8, 0x8000, 0x7000, [0x3, 0x8000000000000000, 0x89, 0x1]}) write$eventfd(r2, &(0x7f00000001c0)=0x3, 0xfdef) 16m13.02827325s ago: executing program 7 (id=653): r0 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000240)=@attr_other={0x0, 0x6, 0xb2, 0x0}) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x42002, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="04198bd844c9e8a7b82d748f0f0244293d28bd940000c2ed44db9969759357abeb8d85c8e856a4606c2e979f98d67e4ff39fb6df9547f6a9506c610dc37b175c8ad3e5952305abf0", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) mmap$KVM_VCPU(&(0x7f0000c41000/0x3000)=nil, 0x930, 0x280000b, 0x2010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) 16m0.218295477s ago: executing program 6 (id=654): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0xc, 0x5, 0x0}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x5000, 0x12000, 0x81}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r6, &(0x7f00000001c0)=0x4000000001, 0x56) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x13) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00000000c0)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x1, &(0x7f0000000000)=0x10000}) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000080)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000140)=@attr_riscv64=@attr_config={0x0, 0x1, 0x0, &(0x7f0000000100)=0x4c8}) 15m25.202126081s ago: executing program 38 (id=653): r0 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000240)=@attr_other={0x0, 0x6, 0xb2, 0x0}) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x42002, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="04198bd844c9e8a7b82d748f0f0244293d28bd940000c2ed44db9969759357abeb8d85c8e856a4606c2e979f98d67e4ff39fb6df9547f6a9506c610dc37b175c8ad3e5952305abf0", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r5, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) mmap$KVM_VCPU(&(0x7f0000c41000/0x3000)=nil, 0x930, 0x280000b, 0x2010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) 15m17.479993613s ago: executing program 6 (id=656): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x800, [0xffffffeffffffff8, 0x8, 0x8000000005, 0x5, 0x400]}}], 0x40}, 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r10, 0x3, 0x40b2811, r9, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000bff000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x2}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r14, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) r16 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101080, 0x0) r17 = ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r17, 0xc00caee0, &(0x7f0000000040)={0x4, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r18, 0x4018aee3, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) 14m26.470598679s ago: executing program 39 (id=656): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x800, [0xffffffeffffffff8, 0x8, 0x8000000005, 0x5, 0x400]}}], 0x40}, 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r10, 0x3, 0x40b2811, r9, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000bff000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x2}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r14, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) r16 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101080, 0x0) r17 = ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r17, 0xc00caee0, &(0x7f0000000040)={0x4, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r18, 0x4018aee3, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) 3m42.622661357s ago: executing program 8 (id=663): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r3 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x401, &(0x7f0000000140)=0x200a8a}) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000aba000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000cc0)={0x0, 0x0}, 0x0, 0x0) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000300)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x3, 0x121}}], 0x28}, 0x0, 0x0) r8 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000000)={0x0, &(0x7f0000000780)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xf6}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0xff7ffffffffffffd, 0x360) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(0xffffffffffffffff, 0xae03, 0x2) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x1000009, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) write$eventfd(r11, &(0x7f00000001c0)=0x3, 0x50) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6}) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r14, &(0x7f00000001c0)=0x3, 0x10) 3m7.624973883s ago: executing program 8 (id=665): munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x1, 0x104000, 0x1}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000380)={0x3000, 0x34000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000140)={0xd000, 0x99000, 0x1}) r2 = openat$kvm(0x0, &(0x7f00000001c0), 0x224000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0xfffffffffffffffd) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) (async, rerun: 32) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0xc4000010, [0x0, 0x1, 0x2, 0x3, 0x4]}}, @hvc={0x32, 0x40, {0xc5000021, [0x0, 0x1, 0x2, 0x9, 0x6]}}], 0x80}, 0x0, 0x0) (rerun: 32) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) (async) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0xa) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x6) syz_kvm_setup_cpu$arm64(r7, r8, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x6030000000100030}) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0xaf832, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r10, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000f7b000/0x4000)=nil, r10, 0x2000007, 0x1010, r8, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r10, 0x400000f, 0x10, 0xffffffffffffffff, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async, rerun: 64) ioctl$KVM_KVMCLOCK_CTRL(0xffffffffffffffff, 0xaead) (async) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) 3m7.624610283s ago: executing program 9 (id=666): ioctl$KVM_S390_VCPU_FAULT(0xffffffffffffffff, 0x4008ae52, &(0x7f0000000000)=0x39c) ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000040)={0xe, 0x25000}) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) r1 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000002c0)={0x0, &(0x7f0000000080)=[@msr={0x14, 0x20, {0x603000000013e708, 0x9}}, @uexit={0x0, 0x18, 0x8000000000000001}, @eret={0xe6, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x23}}, @smc={0x1e, 0x40, {0x5000000, [0x1, 0x8, 0x56, 0x4, 0x43c4]}}, @code={0xa, 0xcc, {"007008d560218fd20000b0f2c10080d2e20180d2630080d2e40080d2020000d4209b9cd20000b8f2e10080d2220180d2e30180d2840180d2020000d41004601e80ac93d20080b0f2210080d2820080d2630080d2440080d2020000d4008008d560219fd200e0b8f2610180d2820180d2630180d2640080d2020000d4c07d82d20060b0f2c10080d2020180d2630180d2a40180d2020000d4005281d20020b0f2610080d2220180d2630180d2440080d2020000d4008008d5"}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x3, 0xa, 0x2, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1000, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @generic={0xb000, 0x729, 0x6, 0x4}}], 0x20c}, &(0x7f0000000300)=[@featur1={0x1, 0x80}], 0x1) r2 = ioctl$KVM_GET_STATS_FD_cpu(r1, 0xaece) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_KVMCLOCK_CTRL(r3, 0xaead) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000340)={0x4, 0x10}) ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000380)=@x86={0x4, 0x5, 0x8f, 0x0, 0x4, 0x1, 0x0, 0xa, 0x6, 0x2, 0x40, 0x5, 0x0, 0x5, 0x81, 0x0, 0x1, 0x82, 0x4, '\x00', 0x2, 0x4}) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r3, 0x4018aee2, &(0x7f0000000400)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f00000003c0)=0x10}) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r2, 0x4010aeb5, &(0x7f0000000440)={0xb, 0x7}) ioctl$KVM_PRE_FAULT_MEMORY(r1, 0xc040aed5, &(0x7f0000000480)={0x25000, 0x8000}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000004c0)={0x3}) ioctl$KVM_GET_REGS(r1, 0x8360ae81, &(0x7f0000000500)) ioctl$KVM_GET_REG_LIST(r2, 0xc008aeb0, &(0x7f00000005c0)={0x3, [0x5, 0x10000, 0x8]}) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000640)=@arm64_sys={0x6030000000138035, &(0x7f0000000600)=0x2d08af84}) ioctl$KVM_SET_SREGS(r2, 0x4000ae84, &(0x7f0000000680)={{0x70000, 0xdddd1000, 0x4, 0x3, 0x8, 0x7, 0x4, 0x2, 0x4, 0x5, 0x8, 0xdf}, {0x54000, 0xffff1000, 0x4, 0x8, 0x6, 0xf7, 0x7, 0x9, 0xfe, 0x1, 0x8, 0x8}, {0x54000, 0x25000, 0x0, 0x57, 0xa, 0x6, 0x0, 0x4, 0x5, 0x9, 0x6, 0x4}, {0x80a0000, 0x41000, 0x9, 0xd, 0xeb, 0x9, 0x8, 0x5, 0xc, 0x81, 0x4, 0x7}, {0xc000, 0x1, 0x9, 0x4, 0xc0, 0x3, 0x40, 0x9, 0x9, 0x4, 0xcd, 0x29}, {0xdddd0000, 0x7000, 0xc, 0x8, 0xff, 0x7, 0x4, 0xc6, 0x9, 0x0, 0x8, 0x6}, {0x54000, 0x41000, 0x3, 0x2, 0x5, 0xa, 0x1, 0x4, 0x96, 0x9, 0x2b, 0x1}, {0x58000, 0x41000, 0x8, 0x1, 0x8, 0x2, 0xe6, 0x2, 0x3, 0xa, 0x1, 0x6}, {0xdddd0000, 0x3}, {0x1000, 0x3e0}, 0x40000000, 0x0, 0x40000, 0x202603, 0xb, 0x101, 0xe000, [0x4, 0x167d, 0x17, 0x9]}) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x9) ioctl$KVM_CAP_HALT_POLL(r2, 0x4068aea3, &(0x7f00000007c0)={0xb6, 0x0, 0x1}) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000840)={0xa8, 0x0, 0x2}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3a) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0xfff) ioctl$KVM_SET_GUEST_DEBUG_arm64(r2, 0x4208ae9b, &(0x7f00000008c0)={0x10002, 0x0, {[0x8, 0x4, 0x5, 0xa, 0x80000000, 0x3db9, 0x3ff, 0x8, 0x93, 0xfff, 0x1, 0xffffffffffffffff, 0x10, 0xf, 0x9, 0x7fffffff], [0x5, 0x6, 0xfffffffffffffffd, 0x100000001, 0x2, 0x6, 0xfffffffffffffff7, 0x8, 0xc652, 0x3, 0x3, 0x0, 0x7f, 0x4, 0x800000, 0x9], [0x8, 0x8, 0x4, 0x4, 0xfffffffffffffff7, 0x3, 0xfd, 0x2, 0x8, 0x400, 0x5, 0x1, 0x400, 0x100, 0xf3, 0x7fffffff], [0x3, 0x1, 0x80, 0x2, 0x0, 0x9, 0x3, 0x3, 0x5, 0x17, 0xc67, 0xb667, 0x0, 0x2, 0x990, 0x5]}}) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x400) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000b00)={0x3, 0x6000, 0xa, r2, 0xc}) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000b40)={r2, 0x1000, 0x1, r2}) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x9) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000b80)=@arm64) 2m46.233631839s ago: executing program 9 (id=667): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_RUN(r3, 0xae80, 0x0) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000000)) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r8, 0x400454d4, 0x110c230020) r9 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f00000000c0)={0xbd, 0x1000, 0x3, 0xffffffffffffffff, 0x2}) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000000)={0x1, 0x0, 0x0, r9, 0x6}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10681, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) 2m38.933803234s ago: executing program 8 (id=668): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x100a83, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0xfffffff8, 0x4, 0x1, 0x0, @msi={0x32c, 0x0, 0xffff5811, 0x401}}]}) (async) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000002c0)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @adapter={0x0, 0x0, 0x8, 0x5, 0x1}}, {0x3, 0x5, 0x0, 0x0, @msi={0x1, 0x5, 0x0, 0xcfb}}]}) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) 2m17.098247736s ago: executing program 8 (id=669): mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x2132, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000080)={0x100000000, 0x3}) ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000140)={0x2, 0x4, 0xf000, 0x1000, &(0x7f0000e21000/0x1000)=nil, 0x0, r2}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f00000000c0)=@arm64_bitmap={0x6030000000160002, &(0x7f0000000040)=0xfffffffffffffffe}) r6 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x1fd, 0x4, 0x8000000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x10000, r2}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) 2m15.225515408s ago: executing program 9 (id=670): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r2, 0x8927, 0x10000000000000) 1m52.159814144s ago: executing program 9 (id=671): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000007c0), 0x404000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2000000000000000) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f00000000c0)=0x5}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) syz_kvm_setup_cpu$arm64(r6, 0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000540)=[{0x0, &(0x7f0000000280)=[@code={0xa, 0x9c, {"0004801a00e083d20020b0f2010180d2c20080d2a30080d2840180d2020000d4000008d540b899d200a0b8f2210080d2c20080d2830080d2840180d2020000d40040e00d007008d5000028d5000028d5a0aa93d20060b0f2010080d2420080d2a30080d2440080d2020000d460589dd20000b8f2810080d2420180d2a30180d2e40180d2020000d4"}}, @its_setup={0x82, 0x28, {0x0, 0x1, 0xae}}, @eret={0xe6, 0x18, 0x7}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x14f}}, @svc={0x122, 0x40, {0x8000, [0x7, 0x1, 0xb0, 0x9, 0x101]}}, @code={0xa, 0x3c, {"007008d5007008d5000028d500a4e00d000008d5000008d5000008d5007008d5001c600e000000f2"}}, @msr={0x14, 0x20, {0x603000000013c00a, 0x8}}, @code={0xa, 0x6c, {"000008d5008008d560a981d20060b0f2210080d2e20180d2230180d2240180d2020000d4e00320aa0000689e00a0400c206b8dd20060b8f2a10180d2420080d2c30080d2840080d2020000d4008008d50000402c008008d5"}}, @svc={0x122, 0x40, {0xc4000001, [0x2, 0x3, 0x7, 0xc, 0x4]}}, @smc={0x1e, 0x40, {0x84000000, [0x5, 0x1, 0x5051, 0x0, 0x5]}}, @irq_setup={0x46, 0x18, {0x2, 0x38b}}, @irq_setup={0x46, 0x18, {0x3, 0x33}}], 0x2bc}], 0x1, 0x0, &(0x7f0000000580)=[@featur1={0x1, 0x9}], 0x1) r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f0000000000)={0xb6, 0x0, 0x7f}) r8 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x37) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r8, 0x4068aea3, &(0x7f0000000a00)={0xe4, 0x0, 0x9425}) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000007c0), 0x404000, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) (async) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2000000000000000) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000240)={0x8}) (async) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f00000000c0)=0x5}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) (async) syz_kvm_setup_cpu$arm64(r6, 0xffffffffffffffff, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000540)=[{0x0, &(0x7f0000000280)=[@code={0xa, 0x9c, {"0004801a00e083d20020b0f2010180d2c20080d2a30080d2840180d2020000d4000008d540b899d200a0b8f2210080d2c20080d2830080d2840180d2020000d40040e00d007008d5000028d5000028d5a0aa93d20060b0f2010080d2420080d2a30080d2440080d2020000d460589dd20000b8f2810080d2420180d2a30180d2e40180d2020000d4"}}, @its_setup={0x82, 0x28, {0x0, 0x1, 0xae}}, @eret={0xe6, 0x18, 0x7}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x14f}}, @svc={0x122, 0x40, {0x8000, [0x7, 0x1, 0xb0, 0x9, 0x101]}}, @code={0xa, 0x3c, {"007008d5007008d5000028d500a4e00d000008d5000008d5000008d5007008d5001c600e000000f2"}}, @msr={0x14, 0x20, {0x603000000013c00a, 0x8}}, @code={0xa, 0x6c, {"000008d5008008d560a981d20060b0f2210080d2e20180d2230180d2240180d2020000d4e00320aa0000689e00a0400c206b8dd20060b8f2a10180d2420080d2c30080d2840080d2020000d4008008d50000402c008008d5"}}, @svc={0x122, 0x40, {0xc4000001, [0x2, 0x3, 0x7, 0xc, 0x4]}}, @smc={0x1e, 0x40, {0x84000000, [0x5, 0x1, 0x5051, 0x0, 0x5]}}, @irq_setup={0x46, 0x18, {0x2, 0x38b}}, @irq_setup={0x46, 0x18, {0x3, 0x33}}], 0x2bc}], 0x1, 0x0, &(0x7f0000000580)=[@featur1={0x1, 0x9}], 0x1) (async) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f0000000000)={0xb6, 0x0, 0x7f}) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x37) (async) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r8, 0x4068aea3, &(0x7f0000000a00)={0xe4, 0x0, 0x9425}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0) (async) 1m42.643847472s ago: executing program 8 (id=672): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x0, 0x2000003, 0x4000010, r5, 0x0) (async) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async) munmap(&(0x7f0000000000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000007000/0x2000)=nil, r6, 0x3000003, 0x2011, r5, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r7 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0) (async) r9 = openat$kvm(0x0, &(0x7f0000000180), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) (async) ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x6030000000138064, &(0x7f00000000c0)=0x8000}) ioctl$KVM_CREATE_VCPU(r7, 0xb702, 0xfffeffffffffffff) (async) openat$kvm(0x0, &(0x7f0000000080), 0x141001, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000100)) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async) r15 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@uexit={0x0, 0x18, 0x8}], 0x18}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r12, 0x2, 0x100) ioctl$KVM_RUN(r15, 0xae80, 0x0) (async) ioctl$KVM_RUN(r14, 0xae80, 0x0) 1m23.440814498s ago: executing program 9 (id=673): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000080)={0xa, 0xffffffffffffffff, 0x1}) openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000a, 0x53033, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) 1m15.478401973s ago: executing program 8 (id=674): munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000) r0 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r1 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x700000a, 0x12, 0xffffffffffffffff, 0x0) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000200)={0x0, &(0x7f0000000140)=[@hvc={0x32, 0x40, {0xffff, [0x2, 0x22e, 0x9, 0x4]}}, @smc={0x1e, 0x40, {0xc4000012, [0xe9e1, 0x5, 0xf, 0x3ff, 0xfd6]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x1, 0xc, 0x1, 0x1, 0x2}}], 0xa8}, &(0x7f0000000240)=[@featur2={0x1, 0x20}], 0x1) ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000000280)) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) 53.288632418s ago: executing program 9 (id=675): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r2, 0x4018aee3, &(0x7f0000000180)=@attr_other={0x0, 0x8, 0x9, &(0x7f0000000140)=0x1}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x1f) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x10000, 0x3, 0x4, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r4, 0x2, 0x100) ioctl$KVM_IRQ_LINE(r4, 0x4008ae61, &(0x7f0000000180)={0x1010024, 0x1}) eventfd2(0x1, 0x801) ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) 24.540862854s ago: executing program 40 (id=674): munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000) r0 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r1 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x700000a, 0x12, 0xffffffffffffffff, 0x0) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000200)={0x0, &(0x7f0000000140)=[@hvc={0x32, 0x40, {0xffff, [0x2, 0x22e, 0x9, 0x4]}}, @smc={0x1e, 0x40, {0xc4000012, [0xe9e1, 0x5, 0xf, 0x3ff, 0xfd6]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x1, 0xc, 0x1, 0x1, 0x2}}], 0xa8}, &(0x7f0000000240)=[@featur2={0x1, 0x20}], 0x1) ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000000280)) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) 0s ago: executing program 41 (id=675): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r2, 0x4018aee3, &(0x7f0000000180)=@attr_other={0x0, 0x8, 0x9, &(0x7f0000000140)=0x1}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x1f) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x10000, 0x3, 0x4, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r4, 0x2, 0x100) ioctl$KVM_IRQ_LINE(r4, 0x4008ae61, &(0x7f0000000180)={0x1010024, 0x1}) eventfd2(0x1, 0x801) ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) kernel console output (not intermixed with test programs): [ 367.696708][ T24] audit: type=1400 audit(366.890:74): avc: denied { write } for pid=3259 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 371.825882][ T24] audit: type=1400 audit(371.020:75): avc: denied { write } for pid=3263 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 374.387237][ T3205] 8021q: adding VLAN 0 to HW filter on device bond0 [ 381.093374][ T24] audit: type=1400 audit(380.300:76): avc: denied { write } for pid=3270 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 387.196042][ T24] audit: type=1400 audit(386.390:77): avc: denied { write } for pid=3273 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 404.339230][ T24] audit: type=1400 audit(403.520:78): avc: denied { write } for pid=3280 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 408.138585][ T24] audit: type=1400 audit(407.320:79): avc: denied { write } for pid=3283 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 410.734102][ T3205] eql: remember to turn off Van-Jacobson compression on your slave devices [ 418.497703][ T24] audit: type=1400 audit(417.700:80): avc: denied { write } for pid=3288 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 422.416937][ T24] audit: type=1400 audit(421.590:81): avc: denied { write } for pid=3291 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 431.581212][ T24] audit: type=1400 audit(430.780:82): avc: denied { write } for pid=3295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 435.315909][ T24] audit: type=1400 audit(434.480:83): avc: denied { write } for pid=3298 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 447.197134][ T24] audit: type=1400 audit(446.390:84): avc: denied { write } for pid=3303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 452.207567][ T24] audit: type=1400 audit(451.380:85): avc: denied { write } for pid=3306 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 459.202320][ T24] audit: type=1400 audit(458.410:86): avc: denied { write } for pid=3308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 463.007140][ T24] audit: type=1400 audit(462.210:87): avc: denied { write } for pid=3311 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 469.116226][ T24] audit: type=1400 audit(468.300:88): avc: denied { write } for pid=3314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 472.878133][ T24] audit: type=1400 audit(472.070:89): avc: denied { write } for pid=3317 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 479.836832][ T24] audit: type=1400 audit(479.030:90): avc: denied { write } for pid=3320 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 483.574046][ T24] audit: type=1400 audit(482.780:91): avc: denied { write } for pid=3323 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 494.882234][ T24] audit: type=1400 audit(494.090:92): avc: denied { write } for pid=3328 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 498.617209][ T24] audit: type=1400 audit(497.820:93): avc: denied { write } for pid=3331 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 520.128727][ T24] audit: type=1400 audit(519.310:94): avc: denied { write } for pid=3339 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 523.952757][ T24] audit: type=1400 audit(523.160:95): avc: denied { write } for pid=3342 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 539.479415][ T24] audit: type=1400 audit(538.690:96): avc: denied { write } for pid=3349 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 543.327995][ T24] audit: type=1400 audit(542.530:97): avc: denied { write } for pid=3352 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 555.229712][ T24] audit: type=1400 audit(554.440:98): avc: denied { write } for pid=3356 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 559.154259][ T24] audit: type=1400 audit(558.360:99): avc: denied { write } for pid=3359 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:18563' (ED25519) to the list of known hosts. [ 590.750243][ T24] audit: type=1400 audit(589.960:100): avc: denied { name_bind } for pid=3364 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 591.589448][ T24] audit: type=1400 audit(590.800:101): avc: denied { execute } for pid=3365 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 591.609010][ T24] audit: type=1400 audit(590.810:102): avc: denied { execute_no_trans } for pid=3365 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 616.779643][ T24] audit: type=1400 audit(615.990:103): avc: denied { mounton } for pid=3365 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 616.818354][ T24] audit: type=1400 audit(616.020:104): avc: denied { mount } for pid=3365 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 616.912267][ T3365] cgroup: Unknown subsys name 'net' [ 616.970770][ T24] audit: type=1400 audit(616.180:105): avc: denied { unmount } for pid=3365 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 617.382734][ T3365] cgroup: Unknown subsys name 'cpuset' [ 617.501203][ T3365] cgroup: Unknown subsys name 'rlimit' [ 617.870068][ T24] audit: type=1400 audit(617.080:106): avc: denied { setattr } for pid=3365 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 617.889509][ T24] audit: type=1400 audit(617.100:107): avc: denied { mounton } for pid=3365 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 617.919457][ T24] audit: type=1400 audit(617.130:108): avc: denied { mount } for pid=3365 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 618.908440][ T3368] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 618.927005][ T24] audit: type=1400 audit(618.130:109): avc: denied { relabelto } for pid=3368 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 618.950974][ T24] audit: type=1400 audit(618.160:110): avc: denied { write } for pid=3368 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 619.139313][ T24] audit: type=1400 audit(618.350:111): avc: denied { read } for pid=3365 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.153596][ T24] audit: type=1400 audit(618.360:112): avc: denied { open } for pid=3365 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.210208][ T3365] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 677.759683][ T24] audit: type=1400 audit(676.970:113): avc: denied { execmem } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 682.359402][ T24] audit: type=1400 audit(681.550:114): avc: denied { read } for pid=3372 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 682.382929][ T24] audit: type=1400 audit(681.560:115): avc: denied { open } for pid=3371 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 682.449512][ T24] audit: type=1400 audit(681.640:116): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 682.669656][ T24] audit: type=1400 audit(681.870:117): avc: denied { module_request } for pid=3371 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 683.634479][ T24] audit: type=1400 audit(682.830:118): avc: denied { sys_module } for pid=3372 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 707.990967][ T3372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 708.122079][ T3372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 709.242933][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 709.367503][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 720.118791][ T3372] hsr_slave_0: entered promiscuous mode [ 720.160877][ T3372] hsr_slave_1: entered promiscuous mode [ 721.539715][ T3371] hsr_slave_0: entered promiscuous mode [ 721.570489][ T3371] hsr_slave_1: entered promiscuous mode [ 721.617774][ T3371] debugfs: 'hsr0' already exists in 'hsr' [ 721.621980][ T3371] Cannot create hsr debugfs directory [ 726.932757][ T24] audit: type=1400 audit(726.140:119): avc: denied { create } for pid=3372 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 726.991766][ T24] audit: type=1400 audit(726.200:120): avc: denied { write } for pid=3372 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 727.050840][ T24] audit: type=1400 audit(726.260:121): avc: denied { read } for pid=3372 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 727.202932][ T3372] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 727.541610][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 727.594331][ T3372] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 727.823989][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 727.942377][ T3372] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 728.107137][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 728.280228][ T3372] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 728.363257][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 729.857578][ T3371] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 729.963379][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 730.073145][ T3371] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 730.229942][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 730.323126][ T3371] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 730.480886][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 730.561274][ T3371] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 730.699774][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 743.406584][ T24] audit: type=1400 audit(742.550:122): avc: denied { write } for pid=3462 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 743.533898][ T3372] 8021q: adding VLAN 0 to HW filter on device bond0 [ 746.930734][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 749.688306][ T24] audit: type=1400 audit(748.890:123): avc: denied { write } for pid=3466 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 799.103733][ T3372] veth0_vlan: entered promiscuous mode [ 799.628051][ T3372] veth1_vlan: entered promiscuous mode [ 801.470188][ T3372] veth0_macvtap: entered promiscuous mode [ 801.828552][ T3372] veth1_macvtap: entered promiscuous mode [ 802.611418][ T3371] veth0_vlan: entered promiscuous mode [ 803.614124][ T3371] veth1_vlan: entered promiscuous mode [ 804.418170][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.512544][ T3424] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.520787][ T3424] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 804.540660][ T3424] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 806.870562][ T3371] veth0_macvtap: entered promiscuous mode [ 806.980103][ T24] audit: type=1400 audit(806.140:124): avc: denied { mount } for pid=3372 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 807.140796][ T24] audit: type=1400 audit(806.340:125): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/syzkaller.MtoJWV/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 807.180640][ T3371] veth1_macvtap: entered promiscuous mode [ 807.284011][ T24] audit: type=1400 audit(806.490:126): avc: denied { mount } for pid=3372 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 807.556970][ T24] audit: type=1400 audit(806.760:127): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/syzkaller.MtoJWV/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 807.661091][ T24] audit: type=1400 audit(806.870:128): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/syzkaller.MtoJWV/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3744 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 808.396646][ T24] audit: type=1400 audit(807.540:129): avc: denied { unmount } for pid=3372 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 808.581583][ T24] audit: type=1400 audit(807.760:130): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 808.678642][ T24] audit: type=1400 audit(807.890:131): avc: denied { mount } for pid=3372 comm="syz-executor" name="/" dev="gadgetfs" ino=3753 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 809.008262][ T24] audit: type=1400 audit(808.210:132): avc: denied { mount } for pid=3372 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 809.078049][ T24] audit: type=1400 audit(808.270:133): avc: denied { mounton } for pid=3372 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 809.326836][ T40] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.328121][ T40] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.329225][ T40] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.329978][ T40] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 810.762745][ T3372] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 812.095635][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 812.107684][ T24] audit: type=1400 audit(811.230:135): avc: denied { read write } for pid=3372 comm="syz-executor" name="loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 812.108789][ T24] audit: type=1400 audit(811.310:136): avc: denied { open } for pid=3372 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 812.177299][ T24] audit: type=1400 audit(811.350:137): avc: denied { ioctl } for pid=3372 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 825.518074][ T24] audit: type=1400 audit(824.700:138): avc: denied { read } for pid=3528 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 825.621766][ T24] audit: type=1400 audit(824.830:139): avc: denied { open } for pid=3528 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 826.428195][ T24] audit: type=1400 audit(825.620:140): avc: denied { ioctl } for pid=3528 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 839.978244][ T24] audit: type=1400 audit(839.150:141): avc: denied { append } for pid=3536 comm="syz.1.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 841.872393][ T24] audit: type=1400 audit(841.080:142): avc: denied { write } for pid=3538 comm="syz.0.4" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 870.093358][ T24] audit: type=1400 audit(869.240:143): avc: denied { create } for pid=3555 comm="syz.0.9" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 872.100821][ T24] audit: type=1400 audit(871.240:144): avc: denied { map } for pid=3555 comm="syz.0.9" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4303 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 872.133446][ T24] audit: type=1400 audit(871.320:145): avc: denied { read } for pid=3555 comm="syz.0.9" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4303 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 907.912552][ T3569] kvm [3567]: Unsupported guest access at: eeef0000 [ 907.912552][ T3569] { Op0( 2), Op1( 4), CRn(15), CRm(13), Op2( 6), func_write }, [ 929.950579][ T24] audit: type=1400 audit(929.150:146): avc: denied { execute } for pid=3580 comm="syz.1.19" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4829 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 996.248183][ T24] audit: type=1400 audit(995.450:147): avc: denied { setattr } for pid=3616 comm="syz.0.28" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1187.862126][ T24] audit: type=1400 audit(1187.070:148): avc: denied { write } for pid=3725 comm="syz.1.60" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=7699 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1212.776765][ T24] audit: type=1400 audit(1211.930:149): avc: denied { write } for pid=3741 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1220.098494][ T24] audit: type=1400 audit(1219.290:150): avc: denied { write } for pid=3748 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1259.116369][ T24] audit: type=1400 audit(1258.320:151): avc: denied { ioctl } for pid=3769 comm="syz.0.71" path="net:[4026532628]" dev="nsfs" ino=4026532628 ioctlcmd=0xb704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1276.266957][ T24] audit: type=1400 audit(1275.470:152): avc: denied { map } for pid=3781 comm="syz.0.75" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1276.303896][ T24] audit: type=1400 audit(1275.500:153): avc: denied { execute } for pid=3781 comm="syz.0.75" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1373.483511][ T3830] kvm [3830]: Failed to find VMA for hva 0x20c01000 [ 1405.682494][ T24] audit: type=1400 audit(1404.890:154): avc: denied { execute } for pid=3852 comm="syz.0.98" path=2F34372F10FBFF67525673312B0104 dev="tmpfs" ino=255 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 1572.573670][ T3932] kvm [3932]: Failed to find VMA for hva 0x20c79000 [ 1739.117914][ T24] audit: type=1400 audit(1738.300:155): avc: denied { write } for pid=4016 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1747.808866][ T24] audit: type=1400 audit(1746.990:156): avc: denied { write } for pid=4026 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1925.729849][ T4121] kvm [4121]: Failed to find VMA for hva 0x20c01000 [ 1925.813371][ T4122] kvm [4122]: Failed to find VMA for hva 0x20c01000 [ 1984.199711][ T4148] kvm [4148]: Failed to find VMA for hva 0x21016000 [ 2016.916806][ T24] audit: type=1400 audit(2016.120:157): avc: denied { map } for pid=4163 comm="syz.1.193" path="/" dev="tmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 2165.447363][ T24] audit: type=1400 audit(2164.650:158): avc: denied { write } for pid=4243 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2173.264166][ T24] audit: type=1400 audit(2172.410:159): avc: denied { write } for pid=4247 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2202.878307][ T4270] debugfs: 'vgic-its-state@8080000' already exists in '4270-4' [ 2244.708241][ T24] audit: type=1400 audit(2243.910:160): avc: denied { map } for pid=4303 comm="syz.0.230" path="pipe:[2753]" dev="pipefs" ino=2753 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 2300.303900][ T4342] kvm [4342]: Failed to find VMA for hva 0x20c01000 [ 2300.924427][ T4342] kvm [4342]: Failed to find VMA for hva 0x20c01000 [ 2449.225842][ T24] audit: type=1400 audit(2448.420:161): avc: denied { write } for pid=4419 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2457.836033][ T24] audit: type=1400 audit(2456.990:162): avc: denied { write } for pid=4423 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2491.364031][ T4441] kvm [4441]: Failed to find VMA for hva 0x20c01000 [ 2652.319485][ T24] audit: type=1400 audit(2651.510:163): avc: denied { write } for pid=4529 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2659.502235][ T24] audit: type=1400 audit(2658.660:164): avc: denied { write } for pid=4536 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2746.967670][ T4580] kvm [4580]: Failed to find VMA for hva 0x20dcb000 [ 2769.182606][ T4592] kvm [4592]: Failed to find VMA for hva 0x20d8d000 [ 2813.966402][ T4613] kvm [4613]: Failed to find VMA for hva 0x20c79000 [ 2966.268699][ T4642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2966.548521][ T4642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2969.248877][ T4645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2969.459510][ T4645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2992.713471][ T4642] hsr_slave_0: entered promiscuous mode [ 2992.839420][ T4642] hsr_slave_1: entered promiscuous mode [ 2992.956488][ T4642] debugfs: 'hsr0' already exists in 'hsr' [ 2992.985917][ T4642] Cannot create hsr debugfs directory [ 2999.460874][ T4645] hsr_slave_0: entered promiscuous mode [ 2999.539100][ T4645] hsr_slave_1: entered promiscuous mode [ 2999.587520][ T4645] debugfs: 'hsr0' already exists in 'hsr' [ 2999.590640][ T4645] Cannot create hsr debugfs directory [ 3000.958326][ T4649] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3002.762954][ T4649] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3003.980067][ T4649] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3005.017763][ T4649] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3017.139135][ T4649] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3017.486025][ T4649] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3017.560748][ T4649] bond0 (unregistering): Released all slaves [ 3018.836909][ T4649] hsr_slave_0: left promiscuous mode [ 3018.877088][ T4649] hsr_slave_1: left promiscuous mode [ 3019.042074][ T4649] veth1_macvtap: left promiscuous mode [ 3019.052128][ T4649] veth0_macvtap: left promiscuous mode [ 3019.064011][ T4649] veth1_vlan: left promiscuous mode [ 3019.069291][ T4649] veth0_vlan: left promiscuous mode [ 3031.991644][ T4642] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 3032.780822][ T4642] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3033.038579][ T4642] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 3033.369496][ T4642] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3033.501077][ T4642] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 3033.798711][ T4642] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3033.982277][ T4642] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 3034.603216][ T4642] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3036.220919][ T4649] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3037.191601][ T4649] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3038.613784][ T4649] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3040.160350][ T4649] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3040.776269][ T4645] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 3041.079866][ T4645] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3041.200137][ T4645] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 3041.464209][ T4645] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3041.626618][ T4645] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 3041.884207][ T4645] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3042.000858][ T4645] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 3042.199819][ T4645] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3043.477195][ T24] audit: type=1400 audit(3042.620:165): avc: denied { write } for pid=4721 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3053.017079][ T24] audit: type=1400 audit(3052.210:166): avc: denied { write } for pid=4738 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3059.896906][ T4649] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3060.238990][ T4649] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3060.400268][ T4649] bond0 (unregistering): Released all slaves [ 3061.402817][ T3205] 8021q: adding VLAN 0 to HW filter on device eth1 [ 3062.269067][ T4649] hsr_slave_0: left promiscuous mode [ 3062.349383][ T4649] hsr_slave_1: left promiscuous mode [ 3062.812335][ T4649] veth1_macvtap: left promiscuous mode [ 3062.854458][ T4649] veth0_macvtap: left promiscuous mode [ 3062.859793][ T4649] veth1_vlan: left promiscuous mode [ 3062.886933][ T4649] veth0_vlan: left promiscuous mode [ 3088.974129][ T24] audit: type=1400 audit(3088.180:167): avc: denied { write } for pid=4752 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3089.170777][ T4642] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3089.750292][ T4645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3094.849386][ T24] audit: type=1400 audit(3094.060:168): avc: denied { write } for pid=4757 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3098.550977][ T3205] 8021q: adding VLAN 0 to HW filter on device eth3 [ 3110.879660][ T24] audit: type=1400 audit(3110.090:169): avc: denied { write } for pid=4771 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3119.266081][ T24] audit: type=1400 audit(3118.460:170): avc: denied { write } for pid=4776 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3124.408417][ T3205] 8021q: adding VLAN 0 to HW filter on device eth2 [ 3136.336461][ T24] audit: type=1400 audit(3135.530:171): avc: denied { write } for pid=4792 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3142.248824][ T24] audit: type=1400 audit(3141.440:172): avc: denied { write } for pid=4801 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3146.173849][ T3205] 8021q: adding VLAN 0 to HW filter on device eth4 [ 3157.962522][ T24] audit: type=1400 audit(3157.170:173): avc: denied { write } for pid=4817 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3163.876380][ T24] audit: type=1400 audit(3163.070:174): avc: denied { write } for pid=4825 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3168.877255][ T3205] 8021q: adding VLAN 0 to HW filter on device eth5 [ 3174.410903][ T4642] veth0_vlan: entered promiscuous mode [ 3176.698446][ T4642] veth1_vlan: entered promiscuous mode [ 3176.999659][ T4645] veth0_vlan: entered promiscuous mode [ 3178.699157][ T4645] veth1_vlan: entered promiscuous mode [ 3181.474227][ T4642] veth0_macvtap: entered promiscuous mode [ 3182.451712][ T4642] veth1_macvtap: entered promiscuous mode [ 3184.318393][ T4645] veth0_macvtap: entered promiscuous mode [ 3184.687524][ T24] audit: type=1400 audit(3183.860:175): avc: denied { write } for pid=4836 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3185.439449][ T4645] veth1_macvtap: entered promiscuous mode [ 3187.678399][ T4649] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3187.683021][ T4649] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3187.717746][ T4649] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3187.749499][ T4283] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3190.331106][ T4649] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3190.347372][ T4649] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3190.357224][ T4649] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3190.376305][ T4649] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3192.559146][ T24] audit: type=1400 audit(3191.770:176): avc: denied { write } for pid=4839 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3194.078830][ T24] audit: type=1400 audit(3193.130:177): avc: denied { unmount } for pid=4642 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 3196.763408][ T3205] 8021q: adding VLAN 0 to HW filter on device eth6 [ 3214.766754][ T24] audit: type=1400 audit(3213.970:178): avc: denied { write } for pid=4851 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3224.021337][ T24] audit: type=1400 audit(3223.200:179): avc: denied { write } for pid=4859 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3231.123775][ T3205] 8021q: adding VLAN 0 to HW filter on device eth7 [ 3241.016216][ T24] audit: type=1400 audit(3240.220:180): avc: denied { write } for pid=4864 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3252.377169][ T24] audit: type=1400 audit(3251.520:181): avc: denied { write } for pid=4877 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3277.461694][ T24] audit: type=1400 audit(3276.670:182): avc: denied { write } for pid=4893 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3287.815844][ T24] audit: type=1400 audit(3287.000:183): avc: denied { write } for pid=4903 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3294.924330][ T3205] 8021q: adding VLAN 0 to HW filter on device eth8 [ 3354.479665][ T24] audit: type=1400 audit(3353.610:184): avc: denied { write } for pid=4941 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3365.620980][ T24] audit: type=1400 audit(3364.800:185): avc: denied { write } for pid=4949 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3383.007182][ T24] audit: type=1400 audit(3382.160:186): avc: denied { write } for pid=4960 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3392.180703][ T24] audit: type=1400 audit(3391.390:187): avc: denied { write } for pid=4969 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3393.852211][ T4970] kvm [4970]: Failed to find VMA for hva 0x20c01000 [ 3421.718343][ T24] audit: type=1400 audit(3420.910:188): avc: denied { write } for pid=4985 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3432.505900][ T24] audit: type=1400 audit(3431.690:189): avc: denied { write } for pid=4991 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3456.910798][ T24] audit: type=1400 audit(3456.100:190): avc: denied { write } for pid=5008 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3466.886990][ T24] audit: type=1400 audit(3466.060:191): avc: denied { write } for pid=5017 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3489.522119][ T24] audit: type=1400 audit(3488.620:192): avc: denied { write } for pid=5029 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3499.390143][ T24] audit: type=1400 audit(3498.530:193): avc: denied { write } for pid=5037 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3527.967374][ T24] audit: type=1400 audit(3527.120:194): avc: denied { write } for pid=5059 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3538.858842][ T24] audit: type=1400 audit(3538.060:195): avc: denied { write } for pid=5068 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3556.577662][ T24] audit: type=1400 audit(3555.780:196): avc: denied { write } for pid=5076 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3565.329165][ T24] audit: type=1400 audit(3564.520:197): avc: denied { write } for pid=5084 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3585.138319][ T24] audit: type=1400 audit(3584.290:198): avc: denied { write } for pid=5095 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3595.970116][ T24] audit: type=1400 audit(3595.180:199): avc: denied { write } for pid=5106 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3677.739217][ T24] audit: type=1400 audit(3676.940:200): avc: denied { write } for pid=5137 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3686.556513][ T24] audit: type=1400 audit(3685.750:201): avc: denied { write } for pid=5148 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3757.320257][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.452182][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.511566][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.601486][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.612583][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.744133][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.800416][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.831690][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.953679][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3757.969997][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.039309][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.180458][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.250501][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.333181][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.352556][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.451858][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 3758.568261][ T5183] kvm [5183]: Failed to find VMA for hva 0x21016000 [ 4004.868836][ T24] audit: type=1400 audit(4004.020:202): avc: denied { execute } for pid=5288 comm="syz.3.438" path="/sys/kernel/debug/kcov" dev="debugfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1 [ 4177.254170][ T5364] kvm [5364]: Failed to find VMA for hva 0x20c01000 [ 4225.017447][ T24] audit: type=1400 audit(4224.190:203): avc: denied { write } for pid=5384 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4234.575940][ T24] audit: type=1400 audit(4233.780:204): avc: denied { write } for pid=5395 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4444.408700][ T24] audit: type=1400 audit(4443.590:205): avc: denied { write } for pid=5480 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4455.146617][ T24] audit: type=1400 audit(4454.350:206): avc: denied { write } for pid=5490 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4500.062939][ T5512] kvm [5512]: Failed to find VMA for hva 0x20c01000 [ 4658.573768][ T24] audit: type=1400 audit(4657.780:207): avc: denied { write } for pid=5582 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4666.728076][ T24] audit: type=1400 audit(4665.910:208): avc: denied { write } for pid=5590 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4703.739449][ T4283] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4705.358522][ T4283] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4706.604159][ T4283] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4707.859586][ T4283] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4722.133948][ T4283] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4722.289273][ T4283] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4722.398300][ T4283] bond0 (unregistering): Released all slaves [ 4724.306725][ T4283] hsr_slave_0: left promiscuous mode [ 4724.597429][ T4283] hsr_slave_1: left promiscuous mode [ 4725.096760][ T4283] veth1_macvtap: left promiscuous mode [ 4725.099991][ T4283] veth0_macvtap: left promiscuous mode [ 4725.127226][ T4283] veth1_vlan: left promiscuous mode [ 4725.152051][ T4283] veth0_vlan: left promiscuous mode [ 4747.238137][ T5580] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4747.734404][ T5580] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4753.488959][ T4283] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4755.182986][ T4283] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4756.932785][ T4283] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4758.258681][ T4283] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4758.660180][ T24] audit: type=1400 audit(4757.870:209): avc: denied { write } for pid=5635 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4766.427389][ T24] audit: type=1400 audit(4765.620:210): avc: denied { write } for pid=5645 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4773.389896][ T4283] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4773.523617][ T4283] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4773.620192][ T4283] bond0 (unregistering): Released all slaves [ 4773.983472][ T3205] 8021q: adding VLAN 0 to HW filter on device eth9 [ 4775.680606][ T4283] hsr_slave_0: left promiscuous mode [ 4775.746914][ T4283] hsr_slave_1: left promiscuous mode [ 4776.123495][ T4283] veth1_macvtap: left promiscuous mode [ 4776.151461][ T4283] veth0_macvtap: left promiscuous mode [ 4776.160199][ T4283] veth1_vlan: left promiscuous mode [ 4776.176417][ T4283] veth0_vlan: left promiscuous mode [ 4790.463024][ T5588] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4790.809837][ T5588] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4793.726370][ T5580] hsr_slave_0: entered promiscuous mode [ 4793.797217][ T5580] hsr_slave_1: entered promiscuous mode [ 4802.480922][ T24] audit: type=1400 audit(4801.640:211): avc: denied { write } for pid=5659 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4809.141639][ T24] audit: type=1400 audit(4808.300:212): avc: denied { write } for pid=5664 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4810.850170][ T5580] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 4811.240665][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4811.344194][ T5580] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 4811.663252][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4811.789520][ T5580] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 4812.101788][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4812.258132][ T5580] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 4812.591440][ T5580] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4814.871504][ T3205] 8021q: adding VLAN 0 to HW filter on device eth10 [ 4820.849355][ T5588] hsr_slave_0: entered promiscuous mode [ 4820.909507][ T5588] hsr_slave_1: entered promiscuous mode [ 4820.998832][ T5588] debugfs: 'hsr0' already exists in 'hsr' [ 4821.005932][ T5588] Cannot create hsr debugfs directory [ 4827.901254][ T24] audit: type=1400 audit(4827.110:213): avc: denied { write } for pid=5683 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4833.738216][ T24] audit: type=1400 audit(4832.950:214): avc: denied { write } for pid=5688 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4837.552368][ T3205] 8021q: adding VLAN 0 to HW filter on device eth11 [ 4837.627978][ T5588] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 4837.808631][ T5588] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4837.844250][ T5588] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 4838.055985][ T5588] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4838.477592][ T5588] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 4838.657303][ T5588] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4838.847180][ T5588] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 4839.039923][ T5588] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4839.966670][ T5580] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4853.488809][ T24] audit: type=1400 audit(4852.690:215): avc: denied { write } for pid=5706 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4861.450324][ T24] audit: type=1400 audit(4860.640:216): avc: denied { write } for pid=5715 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4867.503566][ T3205] 8021q: adding VLAN 0 to HW filter on device eth12 [ 4869.998434][ T5588] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4887.052639][ T24] audit: type=1400 audit(4886.260:217): avc: denied { write } for pid=5728 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4895.284220][ T24] audit: type=1400 audit(4894.490:218): avc: denied { write } for pid=5737 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4901.178816][ T3205] 8021q: adding VLAN 0 to HW filter on device eth13 [ 4916.017437][ T24] audit: type=1400 audit(4915.220:219): avc: denied { write } for pid=5752 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4925.026465][ T24] audit: type=1400 audit(4924.220:220): avc: denied { write } for pid=5761 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4931.571473][ T3205] 8021q: adding VLAN 0 to HW filter on device eth14 [ 4950.111735][ T24] audit: type=1400 audit(4949.310:221): avc: denied { write } for pid=5777 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4957.647919][ T24] audit: type=1400 audit(4956.780:222): avc: denied { write } for pid=5787 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4962.803102][ T3205] 8021q: adding VLAN 0 to HW filter on device eth15 [ 4965.368758][ T5580] veth0_vlan: entered promiscuous mode [ 4966.361922][ T5580] veth1_vlan: entered promiscuous mode [ 4969.690293][ T5580] veth0_macvtap: entered promiscuous mode [ 4970.323760][ T5580] veth1_macvtap: entered promiscuous mode [ 4974.354161][ T5352] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4974.387227][ T5352] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4974.393453][ T5352] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4974.394244][ T5352] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4983.798425][ T24] audit: type=1400 audit(4982.990:223): avc: denied { write } for pid=5799 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4995.361859][ T24] audit: type=1400 audit(4994.570:224): avc: denied { write } for pid=5811 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5002.438566][ T5588] veth0_vlan: entered promiscuous mode [ 5004.031770][ T3205] 8021q: adding VLAN 0 to HW filter on device eth16 [ 5004.200094][ T5588] veth1_vlan: entered promiscuous mode [ 5008.213057][ T5588] veth0_macvtap: entered promiscuous mode [ 5009.246223][ T5588] veth1_macvtap: entered promiscuous mode [ 5014.033189][ T40] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5014.057426][ T40] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5014.096634][ T40] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5014.126986][ T40] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5034.786259][ T24] audit: type=1400 audit(5033.970:225): avc: denied { write } for pid=5824 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5046.500863][ T24] audit: type=1400 audit(5045.710:226): avc: denied { write } for pid=5832 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5085.642905][ T4283] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5087.972942][ T4283] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5090.049244][ T4283] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5092.785767][ T24] audit: type=1400 audit(5091.960:227): avc: denied { write } for pid=5850 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5093.029762][ T4283] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5106.156256][ T24] audit: type=1400 audit(5105.330:228): avc: denied { write } for pid=5861 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5125.370620][ T4283] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5125.918459][ T4283] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5126.222299][ T4283] bond0 (unregistering): Released all slaves [ 5128.867291][ T4283] hsr_slave_0: left promiscuous mode [ 5129.048645][ T4283] hsr_slave_1: left promiscuous mode [ 5129.706882][ T4283] veth1_macvtap: left promiscuous mode [ 5129.716523][ T4283] veth0_macvtap: left promiscuous mode [ 5129.717903][ T4283] veth1_vlan: left promiscuous mode [ 5129.718951][ T4283] veth0_vlan: left promiscuous mode [ 5177.049564][ T24] audit: type=1400 audit(5176.180:229): avc: denied { write } for pid=5884 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5187.206982][ T24] audit: type=1400 audit(5186.410:230): avc: denied { write } for pid=5892 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5219.202767][ T24] audit: type=1400 audit(5218.410:231): avc: denied { write } for pid=5916 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5229.796936][ T24] audit: type=1400 audit(5228.920:232): avc: denied { write } for pid=5928 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5235.389662][ T5851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5235.840563][ T5851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5237.672686][ T3205] 8021q: adding VLAN 0 to HW filter on device eth18 [ 5264.261344][ T24] audit: type=1400 audit(5263.440:233): avc: denied { write } for pid=5946 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5273.644396][ T24] audit: type=1400 audit(5272.850:234): avc: denied { write } for pid=5956 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5277.081918][ T5851] hsr_slave_0: entered promiscuous mode [ 5277.143146][ T5851] hsr_slave_1: entered promiscuous mode [ 5279.891286][ T3205] 8021q: adding VLAN 0 to HW filter on device eth17 [ 5302.949157][ T5851] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 5303.388707][ T5851] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5303.538320][ T5851] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 5303.950663][ T5851] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5304.099813][ T5851] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 5304.577203][ T5851] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5304.763562][ T5851] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 5305.241996][ T5851] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5314.327328][ T24] audit: type=1400 audit(5313.420:235): avc: denied { write } for pid=5967 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5325.606470][ T24] audit: type=1400 audit(5324.790:236): avc: denied { write } for pid=5985 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5332.143932][ T3205] 8021q: adding VLAN 0 to HW filter on device eth19 [ 5343.003348][ T5851] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5344.086728][ T24] audit: type=1400 audit(5343.250:237): avc: denied { write } for pid=5993 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5356.746115][ T24] audit: type=1400 audit(5355.940:238): avc: denied { write } for pid=6001 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5363.937176][ T6006] KVM: debugfs: duplicate directory 6006-4 [ 5379.766432][ T24] audit: type=1400 audit(5378.950:239): avc: denied { write } for pid=6011 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5391.213621][ T24] audit: type=1400 audit(5390.420:240): avc: denied { write } for pid=6020 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5418.292108][ T24] audit: type=1400 audit(5417.490:241): avc: denied { write } for pid=6034 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5430.697384][ T24] audit: type=1400 audit(5429.900:242): avc: denied { write } for pid=6045 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5460.336301][ T24] audit: type=1400 audit(5459.540:243): avc: denied { write } for pid=6060 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5473.317545][ T24] audit: type=1400 audit(5472.410:244): avc: denied { write } for pid=6075 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5481.909128][ T3205] 8021q: adding VLAN 0 to HW filter on device eth20 [ 5497.568241][ T24] audit: type=1400 audit(5496.770:245): avc: denied { write } for pid=6087 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5506.169513][ T24] audit: type=1400 audit(5505.300:246): avc: denied { write } for pid=6094 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5514.659433][ T5851] veth0_vlan: entered promiscuous mode [ 5515.802462][ T5851] veth1_vlan: entered promiscuous mode [ 5522.559174][ T5851] veth0_macvtap: entered promiscuous mode [ 5524.643912][ T5851] veth1_macvtap: entered promiscuous mode [ 5532.479247][ T5217] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5532.507814][ T5217] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5532.909421][ T5217] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5533.132455][ T5519] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5564.368136][ T24] audit: type=1400 audit(5563.550:247): avc: denied { write } for pid=6108 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5567.014209][ T6083] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5569.770405][ T6083] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5572.282599][ T6083] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5574.858405][ T6083] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5577.867723][ T24] audit: type=1400 audit(5576.950:248): avc: denied { write } for pid=6118 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5608.704301][ T6083] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5609.108871][ T6083] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5609.331743][ T6083] bond0 (unregistering): Released all slaves [ 5612.251196][ T6083] hsr_slave_0: left promiscuous mode [ 5612.450664][ T6083] hsr_slave_1: left promiscuous mode [ 5613.401177][ T6083] veth1_macvtap: left promiscuous mode [ 5613.448617][ T6083] veth0_macvtap: left promiscuous mode [ 5613.452242][ T6083] veth1_vlan: left promiscuous mode [ 5613.476362][ T6083] veth0_vlan: left promiscuous mode [ 5683.637796][ T24] audit: type=1400 audit(5682.810:249): avc: denied { write } for pid=6160 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5693.317947][ T24] audit: type=1400 audit(5692.440:250): avc: denied { write } for pid=6170 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5701.833568][ T3205] 8021q: adding VLAN 0 to HW filter on device eth21 [ 5717.766376][ T24] audit: type=1400 audit(5716.970:251): avc: denied { write } for pid=6185 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5727.102657][ T6113] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5727.658014][ T6113] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5729.808278][ T24] audit: type=1400 audit(5728.900:252): avc: denied { write } for pid=6193 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5758.107178][ T24] audit: type=1400 audit(5757.290:253): avc: denied { write } for pid=6211 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5770.037571][ T24] audit: type=1400 audit(5769.240:254): avc: denied { write } for pid=6221 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5774.183636][ T6113] hsr_slave_0: entered promiscuous mode [ 5774.476600][ T6113] hsr_slave_1: entered promiscuous mode [ 5774.598271][ T6113] debugfs: 'hsr0' already exists in 'hsr' [ 5774.619176][ T6113] Cannot create hsr debugfs directory [ 5778.172510][ T3205] 8021q: adding VLAN 0 to HW filter on device eth22 [ 5790.297713][ T24] audit: type=1400 audit(5789.490:255): avc: denied { write } for pid=6228 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5802.473708][ T24] audit: type=1400 audit(5801.680:256): avc: denied { write } for pid=6239 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5803.398079][ T6113] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 5803.833407][ T6113] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5803.963998][ T6113] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 5804.383378][ T6113] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5804.592020][ T6113] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 5804.982731][ T6113] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5805.190946][ T6113] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 5805.651872][ T6113] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5824.566202][ T24] audit: type=1400 audit(5823.730:257): avc: denied { write } for pid=6256 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5837.879050][ T24] audit: type=1400 audit(5837.070:258): avc: denied { write } for pid=6266 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5848.291699][ T6113] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5879.536376][ T24] audit: type=1400 audit(5878.740:259): avc: denied { write } for pid=6282 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5894.416341][ T24] audit: type=1400 audit(5893.600:260): avc: denied { write } for pid=6291 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5903.943241][ T3205] 8021q: adding VLAN 0 to HW filter on device eth23 [ 5930.962957][ T24] audit: type=1400 audit(5930.160:261): avc: denied { write } for pid=6307 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5943.250717][ T24] audit: type=1400 audit(5942.460:262): avc: denied { write } for pid=6319 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5953.069622][ T3205] 8021q: adding VLAN 0 to HW filter on device eth24 [ 6012.808475][ T24] audit: type=1400 audit(6011.970:263): avc: denied { write } for pid=6355 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6026.708737][ T24] audit: type=1400 audit(6025.830:264): avc: denied { write } for pid=6365 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6041.013006][ T6113] veth0_vlan: entered promiscuous mode [ 6042.998985][ T6113] veth1_vlan: entered promiscuous mode [ 6047.962165][ T6113] veth0_macvtap: entered promiscuous mode [ 6048.733319][ T6113] veth1_macvtap: entered promiscuous mode [ 6053.421446][ T4743] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6053.589467][ T4743] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6053.807706][ T4649] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6053.823889][ T4649] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6059.161092][ T24] audit: type=1400 audit(6058.300:265): avc: denied { write } for pid=6377 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6073.624270][ T24] audit: type=1400 audit(6072.710:266): avc: denied { write } for pid=6384 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6103.936993][ T24] audit: type=1400 audit(6103.090:267): avc: denied { write } for pid=6393 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6117.209388][ T24] audit: type=1400 audit(6116.420:268): avc: denied { write } for pid=6401 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6196.306653][ T24] audit: type=1400 audit(6195.510:269): avc: denied { write } for pid=6441 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6211.941124][ T24] audit: type=1400 audit(6211.110:270): avc: denied { write } for pid=6451 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6245.536748][ T24] audit: type=1400 audit(6244.680:271): avc: denied { write } for pid=6462 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6260.978022][ T24] audit: type=1400 audit(6260.160:272): avc: denied { write } for pid=6472 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6289.618695][ T24] audit: type=1400 audit(6288.790:273): avc: denied { write } for pid=6480 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6303.066538][ T24] audit: type=1400 audit(6302.270:274): avc: denied { write } for pid=6487 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6328.350139][ T24] audit: type=1400 audit(6327.450:275): avc: denied { write } for pid=6498 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6343.310028][ T24] audit: type=1400 audit(6342.500:276): avc: denied { write } for pid=6506 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6409.956996][ T24] audit: type=1400 audit(6409.150:277): avc: denied { write } for pid=6532 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6423.792415][ T24] audit: type=1400 audit(6423.000:278): avc: denied { write } for pid=6543 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6455.433856][ T24] audit: type=1400 audit(6454.640:279): avc: denied { write } for pid=6556 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6470.194306][ T24] audit: type=1400 audit(6469.370:280): avc: denied { write } for pid=6566 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6754.077925][ T24] audit: type=1400 audit(6753.250:281): avc: denied { write } for pid=6668 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6768.338939][ T24] audit: type=1400 audit(6767.510:282): avc: denied { write } for pid=6676 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7152.992147][ T5716] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7155.632774][ T5716] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7157.722082][ T5716] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7159.603472][ T5716] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7190.819869][ T5716] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7191.956878][ T5716] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7193.006578][ T5716] bond0 (unregistering): Released all slaves [ 7195.810326][ T5716] hsr_slave_0: left promiscuous mode [ 7195.986754][ T5716] hsr_slave_1: left promiscuous mode [ 7196.651135][ T5716] veth1_macvtap: left promiscuous mode [ 7196.706123][ T5716] veth0_macvtap: left promiscuous mode [ 7196.708083][ T5716] veth1_vlan: left promiscuous mode [ 7196.753373][ T5716] veth0_vlan: left promiscuous mode [ 7265.367320][ T24] audit: type=1400 audit(7264.470:283): avc: denied { write } for pid=6833 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7276.900267][ T24] audit: type=1400 audit(7275.990:284): avc: denied { write } for pid=6842 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7284.444052][ T3205] 8021q: adding VLAN 0 to HW filter on device eth25 [ 7301.608422][ T24] audit: type=1400 audit(7300.800:285): avc: denied { write } for pid=6850 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7310.908918][ T6805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7311.489444][ T6805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7312.307177][ T24] audit: type=1400 audit(7311.440:286): avc: denied { write } for pid=6860 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7350.303293][ T6823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7350.907192][ T24] audit: type=1400 audit(7350.100:287): avc: denied { write } for pid=6876 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7351.027633][ T6823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7363.214257][ T6805] hsr_slave_0: entered promiscuous mode [ 7363.459544][ T6805] hsr_slave_1: entered promiscuous mode [ 7363.514274][ T6805] debugfs: 'hsr0' already exists in 'hsr' [ 7363.625707][ T6805] Cannot create hsr debugfs directory [ 7364.588012][ T24] audit: type=1400 audit(7363.780:288): avc: denied { write } for pid=6885 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7373.338791][ T3205] 8021q: adding VLAN 0 to HW filter on device eth26 [ 7374.981513][ T6301] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7377.843779][ T6301] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7379.851603][ T6301] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7382.342859][ T6301] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7409.790925][ T24] audit: type=1400 audit(7408.980:289): avc: denied { write } for pid=6900 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7417.161941][ T6301] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7417.573664][ T6301] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7417.864152][ T6301] bond0 (unregistering): Released all slaves [ 7420.139784][ T24] audit: type=1400 audit(7419.330:290): avc: denied { write } for pid=6905 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7420.262253][ T6301] hsr_slave_0: left promiscuous mode [ 7420.321203][ T6301] hsr_slave_1: left promiscuous mode [ 7420.723011][ T6301] veth1_macvtap: left promiscuous mode [ 7420.787790][ T6301] veth0_macvtap: left promiscuous mode [ 7420.792257][ T6301] veth1_vlan: left promiscuous mode [ 7420.820192][ T6301] veth0_vlan: left promiscuous mode [ 7447.284189][ T3205] 8021q: adding VLAN 0 to HW filter on device eth27 [ 7449.239722][ T6805] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 7449.819360][ T6805] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7449.953867][ T6805] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 7450.424291][ T6805] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7451.242722][ T6823] hsr_slave_0: entered promiscuous mode [ 7451.342138][ T6823] hsr_slave_1: entered promiscuous mode [ 7451.537421][ T6805] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 7451.983857][ T6805] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7452.451470][ T6805] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 7452.692809][ T6805] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7479.322736][ T6823] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 7479.780673][ T6823] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7479.826193][ T24] audit: type=1400 audit(7478.990:291): avc: denied { write } for pid=6920 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7480.037475][ T6823] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 7480.560039][ T6823] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7480.789941][ T6823] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 7481.241905][ T6823] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7481.441055][ T6823] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 7481.888894][ T6823] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7492.346574][ T24] audit: type=1400 audit(7491.450:292): avc: denied { write } for pid=6935 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7492.564259][ T6805] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7499.886767][ T3205] 8021q: adding VLAN 0 to HW filter on device eth28 [ 7520.939133][ T6823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7527.179332][ T24] audit: type=1400 audit(7526.390:293): avc: denied { write } for pid=6950 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7540.797092][ T24] audit: type=1400 audit(7539.820:294): avc: denied { write } for pid=6958 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7548.473478][ T3205] 8021q: adding VLAN 0 to HW filter on device eth29 [ 7579.508369][ T24] audit: type=1400 audit(7578.700:295): avc: denied { write } for pid=6974 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7592.167135][ T24] audit: type=1400 audit(7591.340:296): avc: denied { write } for pid=6983 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7600.357994][ T3205] 8021q: adding VLAN 0 to HW filter on device eth30 [ 7612.518639][ T24] audit: type=1400 audit(7611.620:297): avc: denied { write } for pid=6991 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7623.916584][ T24] audit: type=1400 audit(7623.110:298): avc: denied { write } for pid=7002 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7660.326604][ T24] audit: type=1400 audit(7659.520:299): avc: denied { write } for pid=7018 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7672.523237][ T24] audit: type=1400 audit(7671.690:300): avc: denied { write } for pid=7029 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7674.561087][ T6805] veth0_vlan: entered promiscuous mode [ 7676.071112][ T6805] veth1_vlan: entered promiscuous mode [ 7680.522904][ T6805] veth0_macvtap: entered promiscuous mode [ 7681.467353][ T6805] veth1_macvtap: entered promiscuous mode [ 7681.958360][ T3205] 8021q: adding VLAN 0 to HW filter on device eth31 [ 7686.799111][ T6643] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7686.807175][ T6643] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7686.961244][ T6643] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7686.988607][ T5604] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7708.418782][ T6823] veth0_vlan: entered promiscuous mode [ 7710.507936][ T6823] veth1_vlan: entered promiscuous mode [ 7715.814447][ T6823] veth0_macvtap: entered promiscuous mode [ 7716.922647][ T6823] veth1_macvtap: entered promiscuous mode [ 7723.593390][ T6810] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7723.659322][ T6810] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7723.866807][ T6810] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7723.896045][ T5716] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7734.198571][ T24] audit: type=1400 audit(7733.360:301): avc: denied { write } for pid=7048 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7750.545812][ T24] audit: type=1400 audit(7749.590:302): avc: denied { write } for pid=7056 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7762.559126][ T3205] 8021q: adding VLAN 0 to HW filter on device eth32 [ 7829.253824][ T24] audit: type=1400 audit(7828.460:303): avc: denied { write } for pid=7090 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7846.352628][ T24] audit: type=1400 audit(7845.560:304): avc: denied { write } for pid=7100 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7886.819707][ T24] audit: type=1400 audit(7885.980:305): avc: denied { write } for pid=7112 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7903.607783][ T24] audit: type=1400 audit(7902.810:306): avc: denied { write } for pid=7123 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7945.396846][ T24] audit: type=1400 audit(7944.510:307): avc: denied { write } for pid=7139 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7962.856112][ T24] audit: type=1400 audit(7961.900:308): avc: denied { write } for pid=7151 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8037.826033][ T24] audit: type=1400 audit(8037.010:309): avc: denied { write } for pid=7176 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8050.310967][ T24] audit: type=1400 audit(8049.480:310): avc: denied { write } for pid=7180 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8097.688365][ T24] audit: type=1400 audit(8096.780:311): avc: denied { write } for pid=7195 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8111.577583][ T24] audit: type=1400 audit(8110.770:312): avc: denied { write } for pid=7204 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8144.632384][ T24] audit: type=1400 audit(8143.810:313): avc: denied { write } for pid=7214 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8159.309543][ T24] audit: type=1400 audit(8158.520:314): avc: denied { write } for pid=7222 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8199.469125][ T24] audit: type=1400 audit(8198.600:315): avc: denied { write } for pid=7237 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8203.157547][ T7183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8203.804019][ T7183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8214.366139][ T24] audit: type=1400 audit(8213.440:316): avc: denied { write } for pid=7247 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8225.862796][ T7191] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8226.510592][ T7191] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8252.592777][ T24] audit: type=1400 audit(8251.800:317): avc: denied { write } for pid=7258 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8268.168206][ T24] audit: type=1400 audit(8267.360:318): avc: denied { write } for pid=7268 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8268.821293][ T7183] hsr_slave_0: entered promiscuous mode [ 8269.082706][ T7183] hsr_slave_1: entered promiscuous mode [ 8269.237388][ T7183] debugfs: 'hsr0' already exists in 'hsr' [ 8269.278822][ T7183] Cannot create hsr debugfs directory [ 8298.656557][ T7191] hsr_slave_0: entered promiscuous mode [ 8298.801163][ T7191] hsr_slave_1: entered promiscuous mode [ 8298.951162][ T7191] debugfs: 'hsr0' already exists in 'hsr' [ 8298.952876][ T7191] Cannot create hsr debugfs directory [ 8316.116558][ T24] audit: type=1400 audit(8315.280:319): avc: denied { write } for pid=7277 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8331.897708][ T24] audit: type=1400 audit(8331.060:320): avc: denied { write } for pid=7284 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8344.787992][ T7183] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 8345.528400][ T7183] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 8345.739341][ T7183] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 8346.451687][ T7183] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 8349.947739][ T7183] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 8350.851148][ T7183] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 8351.326832][ T7183] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 8352.072824][ T7183] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 8364.026553][ T24] audit: type=1400 audit(8363.200:321): avc: denied { write } for pid=7289 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8377.913482][ T7191] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 8378.580900][ T7191] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 8378.849888][ T7191] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 8379.450028][ T7191] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 8379.633112][ T7191] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 8380.340379][ T7191] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 8380.729625][ T7191] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 8381.441371][ T7191] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 8381.656185][ T24] audit: type=1400 audit(8380.730:322): avc: denied { write } for pid=7301 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8408.371765][ T24] audit: type=1400 audit(8407.570:323): avc: denied { write } for pid=7314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8417.173692][ T7183] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8426.256739][ T24] audit: type=1400 audit(8425.330:324): avc: denied { write } for pid=7323 comm="rm" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8435.419129][ T7191] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8455.145974][ T24] audit: type=1400 audit(8454.320:325): avc: denied { write } for pid=7330 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=113 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 8460.206193][ T26] INFO: task syz.9.675:7168 blocked for more than 430 seconds. [ 8460.266618][ T26] Not tainted syzkaller #0 [ 8460.336215][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 8460.336860][ T26] task:syz.9.675 state:D stack:0 pid:7168 tgid:7168 ppid:6823 task_flags:0x400040 flags:0x00000011 [ 8460.338346][ T26] Call trace: [ 8460.338843][ T26] __switch_to+0x5e0/0xb5c (T) [ 8460.341156][ T26] __schedule+0x1f54/0x38a8 [ 8460.341676][ T26] schedule+0xac/0x27c [ 8460.342110][ T26] schedule_timeout+0x68/0x1ec [ 8460.342568][ T26] do_wait_for_common+0x28c/0x440 [ 8460.342981][ T26] wait_for_completion+0x44/0x5c [ 8460.343401][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 8460.343950][ T26] synchronize_srcu+0x668/0x8dc [ 8460.344470][ T26] mmu_notifier_unregister+0x320/0x428 [ 8460.528305][ T26] kvm_put_kvm+0x698/0xbb8 [ 8460.528910][ T26] kvm_vm_release+0x58/0x78 [ 8460.529403][ T26] __fput+0x4ac/0x978 [ 8460.529847][ T26] ____fput+0x20/0x30 [ 8460.530278][ T26] task_work_run+0x1b8/0x250 [ 8460.530727][ T26] exit_to_user_mode_loop+0x110/0x188 [ 8460.531197][ T26] el0_svc+0x184/0x238 [ 8460.532234][ T26] el0t_64_sync_handler+0x84/0x12c [ 8460.532723][ T26] el0t_64_sync+0x198/0x19c [ 8460.534422][ T26] [ 8460.534422][ T26] Showing all locks held in the system: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 8460.694115][ T26] 1 lock held by khungtaskd/26: [ 8460.734327][ T26] #0: ffff800087dc48b8 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 8460.769119][ T26] 1 lock held by klogd/3168: [ 8460.769540][ T26] 2 locks held by getty/3235: [ 8460.769877][ T26] #0: 0df00000127a20a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 8460.771519][ T26] #1: 43ff80008cb5b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x1284 [ 8460.773218][ T26] 2 locks held by syz-executor/3365: [ 8460.773550][ T26] 3 locks held by kworker/u4:5/4655: [ 8460.773881][ T26] 3 locks held by kworker/u4:7/5604: [ 8460.774187][ T26] 2 locks held by kworker/u4:10/5716: [ 8460.946885][ T26] 3 locks held by kworker/u4:12/5865: [ 8460.949845][ T26] 3 locks held by kworker/u4:11/6301: [ 8460.950319][ T26] 3 locks held by kworker/u4:13/6643: [ 8460.950658][ T26] 3 locks held by kworker/u4:1/6809: [ 8460.950954][ T26] 3 locks held by kworker/u4:14/6810: [ 8460.951301][ T26] 2 locks held by kworker/u4:15/7035: [ 8460.951609][ T26] #0: 65f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80 [ 8460.953658][ T26] #1: ffff80008ef97ca8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80 [ 8461.081121][ T26] 2 locks held by syz.8.674/7157: [ 8461.082119][ T26] 2 locks held by syz-executor/7183: [ 8461.082508][ T26] 1 lock held by modprobe/7338: [ 8461.082977][ T26] [ 8461.083252][ T26] ============================================= [ 8461.083252][ T26] [ 8461.084227][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 8461.093086][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 8461.094575][ T26] Hardware name: linux,dummy-virt (DT) [ 8461.095591][ T26] Call trace: [ 8461.096458][ T26] show_stack+0x2c/0x3c (C) [ 8461.097549][ T26] __dump_stack+0x30/0x40 [ 8461.098553][ T26] dump_stack_lvl+0x30/0x12c [ 8461.099401][ T26] dump_stack+0x1c/0x28 [ 8461.100422][ T26] vpanic+0x4d0/0x848 [ 8461.101351][ T26] vpanic+0x0/0x848 [ 8461.102223][ T26] hung_task_panic+0x0/0x2c [ 8461.103230][ T26] kthread+0x4d4/0x51c [ 8461.104237][ T26] ret_from_fork+0x10/0x20 [ 8461.106175][ T26] Kernel Offset: disabled [ 8461.106971][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 8461.108212][ T26] Memory Limit: none [ 8461.110472][ T26] Rebooting in 86400 seconds..