last executing test programs: 2h5m54.431024257s ago: executing program 1 (id=160): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="be00000000000000180000000000000001c8"], 0x18}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CAP_PTP_KVM(r1, 0x4068aea3, &(0x7f0000000100)) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x40000, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="be00000000000000180000000000000001c8"], 0x18}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_CAP_PTP_KVM(r1, 0x4068aea3, &(0x7f0000000100)) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 2h5m48.69147869s ago: executing program 1 (id=162): r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f0000000000)) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0x7, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x6, 0x3, &(0x7f0000000080)=0x1ff}) close(r1) ioctl$KVM_CAP_DIRTY_LOG_RING(r0, 0x4068aea3, &(0x7f0000000100)={0xc0, 0x0, 0x11000}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r0, 0x4068aea3, &(0x7f0000000180)={0xe4, 0x0, 0xffffffffffffff17}) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f0000000200)) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000280)=@arm64_ccsidr={0x6020000000110004, &(0x7f0000000240)=0x2}) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f00000002c0)={0x6, 0x0, [{0x9, 0x5, 0x0, 0x0, @msi={0x0, 0xe1be, 0x2}}, {0x3, 0x5, 0x1, 0x0, @msi={0x6, 0x3, 0x6, 0x80000001}}, {0x237, 0x1, 0x1, 0x0, @adapter={0xffffffffffffffff, 0x992e, 0x3, 0x6, 0x401}}, {0x2, 0x3, 0x1, 0x0, @sint={0x401, 0x7ff}}, {0xd0a, 0x2, 0x0, 0x0, @msi={0x100, 0x5, 0xfb, 0x99d}}, {0x8000, 0x2, 0x0, 0x0, @sint={0xc6, 0xe3e}}]}) syz_kvm_setup_cpu$arm64(r0, r0, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000600)=[{0x0, &(0x7f0000000400)=[@msr={0x14, 0x20, {0x603000000013dee1, 0x8}}, @msr={0x14, 0x20, {0x603000000013e101, 0x4}}, @smc={0x1e, 0x40, {0x2000000, [0x100, 0x0, 0xa938, 0x6, 0x7fffffffffffffff]}}, @uexit={0x0, 0x18, 0x4}, @eret={0xe6, 0x18, 0x7d9}, @uexit={0x0, 0x18, 0x1}, @svc={0x122, 0x40, {0x84000012, [0x0, 0x9, 0x7332e262, 0x9, 0xffffffffffffff7b]}}, @mrs={0xbe, 0x18, {0x603000000013e6c2}}, @code={0xa, 0x6c, {"007008d50028c01a007008d5209b9cd200a0b0f2010080d2e20080d2a30080d2440180d2020000d4000028d500e4200e00d8212e00c8212ec0d59dd200a0b8f2c10180d2820180d2e30180d2040080d2020000d4000028d5"}}, @smc={0x1e, 0x40, {0x8400000d, [0x0, 0x7fff, 0x4, 0x1, 0xf]}}], 0x1cc}], 0x1, 0x0, &(0x7f0000000640)=[@featur2], 0x1) ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000680)={0x0, 0x7}) r2 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece) r3 = syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x2, 0x200) ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000700)=@attr_other={0x0, 0x8, 0x9, &(0x7f00000006c0)=0x8}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000740)={0xd000, 0x100000}) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f00000007c0)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000780)=0x8000000000000001}) ioctl$KVM_DIRTY_TLB(r2, 0x4010aeaa, &(0x7f0000000800)={0x9, 0x7fff}) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x39) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r4, 0x4068aea3, &(0x7f0000000840)) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f00000008c0)=@x86={0x2, 0x76, 0x7, 0x0, 0xfffffff9, 0x98, 0x2, 0xfc, 0x7f, 0x5, 0x1, 0x5, 0x0, 0x3, 0x8, 0xae, 0x2, 0x7, 0xd2, '\x00', 0x81, 0x4}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000940)=@attr_other={0x0, 0x0, 0x8, &(0x7f0000000900)}) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, r5, 0x200000c, 0x11, r2, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) munmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x8) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r4, 0x4010aeb5, &(0x7f0000000980)={0x2, 0x4}) 2h5m43.70195s ago: executing program 1 (id=164): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x1, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x10) (async) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1e) (async) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r6, 0x4068aea3, 0x0) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@mrs={0xbe, 0x18, {0x6030000000139808}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x35) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r8, 0x4010ae74, &(0x7f0000000000)={0x80000001, 0x7, 0x8}) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x2, 0x8000000, 0x1000, &(0x7f0000d3b000/0x1000)=nil}) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) 2h5m33.461915369s ago: executing program 1 (id=166): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x1, 0xe59b8351}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x3) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) eventfd2(0x5, 0x40801) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x23) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0x1e) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000ac4000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) 2h4m47.911263413s ago: executing program 32 (id=165): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0x0, 0x1, r7, 0xb}) ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x1, r7, 0x3}) r8 = openat$kvm(0x0, &(0x7f0000000000), 0x222000, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1}) mmap$KVM_VCPU(&(0x7f000000d000/0x3000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) 2h4m44.971283896s ago: executing program 33 (id=166): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x1, 0xe59b8351}) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x3) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) eventfd2(0x5, 0x40801) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x23) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0x1e) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000ac4000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) 1h59m30.949538097s ago: executing program 2 (id=171): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x2, 0xc1}}, @svc={0x122, 0x40, {0x31000000, [0x2, 0x4, 0xf, 0x6, 0xce]}}, @code={0xa, 0x84, {"007008d5a0638bd200c0b0f2e10080d2820080d2a30080d2240180d2020000d4e06f96d200c0b8f2a10180d2620080d2430180d2440080d2020000d4007008d500c0204e0044007f603c94d200c0b8f2e10180d2020080d2e30080d2840080d2020000d40004005e007008d5008008d5"}}, @msr={0x14, 0x20, {0x1e91, 0x9}}, @msr={0x14, 0x20, {0x603000000013802d, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x1e}}, @code={0xa, 0x9c, {"009d98d200a0b8f2410080d2a20180d2230080d2240080d2020000d440e589d200c0b8f2a10080d2420080d2c30080d2640080d2020000d4000c80b8007008d5203c8ad20060b0f2e10180d2620180d2c30080d2440180d2020000d400c58dd20000b8f2010080d2a20080d2c30080d2640180d2020000d4007008d5007008d5000400b800004093"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x48, 0x10000, 0xc}}, @svc={0x122, 0x40, {0x8400000c, [0x0, 0x5, 0x1, 0x5, 0x6]}}, @svc={0x122, 0x40, {0x80000001, [0x5, 0x354, 0x9, 0x80, 0x7]}}, @mrs={0xbe, 0x18, {0x603000000013df64}}, @svc={0x122, 0x40, {0x31000000, [0x99, 0x4, 0x5, 0x7, 0x1]}}, @mrs={0xbe, 0x18, {0x603000000013f08a}}, @eret={0xe6, 0x18, 0x5b}, @smc={0x1e, 0x40, {0xc400000d, [0x5, 0x7, 0x0, 0x0, 0x6]}}, @svc={0x122, 0x40, {0x2000, [0x8001, 0x2, 0xc1, 0x5, 0x8]}}, @smc={0x1e, 0x40, {0x84000001, [0xe, 0x4, 0x1ff, 0x4, 0x5309]}}, @svc={0x122, 0x40, {0x40, [0x212, 0x9, 0x9, 0x7fffffffffffffff, 0xc296]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x100, 0x9, 0x2}}, @svc={0x122, 0x40, {0x5000000, [0x0, 0x0, 0x7, 0xffffffff, 0x3a]}}, @irq_setup={0x46, 0x18, {0x1, 0x30c}}, @eret={0xe6, 0x18, 0x7}, @smc={0x1e, 0x40, {0x80000000, [0x5, 0x1a, 0xd, 0x2, 0x8]}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x22}}, @mrs={0xbe, 0x18, {0x603000000013dee1}}], 0x548}, &(0x7f0000000680), 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = eventfd2(0x8, 0x80800) r4 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x7ffffffffffffffe, 0xeeee0000, 0x8, r4}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0x0, 0x1, r3, 0x3}) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000700)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000006c0)={0x7ff, 0xe94e, 0x2}}) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x1, r3, 0x3}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x2, 0xc1}}, @svc={0x122, 0x40, {0x31000000, [0x2, 0x4, 0xf, 0x6, 0xce]}}, @code={0xa, 0x84, {"007008d5a0638bd200c0b0f2e10080d2820080d2a30080d2240180d2020000d4e06f96d200c0b8f2a10180d2620080d2430180d2440080d2020000d4007008d500c0204e0044007f603c94d200c0b8f2e10180d2020080d2e30080d2840080d2020000d40004005e007008d5008008d5"}}, @msr={0x14, 0x20, {0x1e91, 0x9}}, @msr={0x14, 0x20, {0x603000000013802d, 0x1}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x1e}}, @code={0xa, 0x9c, {"009d98d200a0b8f2410080d2a20180d2230080d2240080d2020000d440e589d200c0b8f2a10080d2420080d2c30080d2640080d2020000d4000c80b8007008d5203c8ad20060b0f2e10180d2620180d2c30080d2440180d2020000d400c58dd20000b8f2010080d2a20080d2c30080d2640180d2020000d4007008d5007008d5000400b800004093"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x48, 0x10000, 0xc}}, @svc={0x122, 0x40, {0x8400000c, [0x0, 0x5, 0x1, 0x5, 0x6]}}, @svc={0x122, 0x40, {0x80000001, [0x5, 0x354, 0x9, 0x80, 0x7]}}, @mrs={0xbe, 0x18, {0x603000000013df64}}, @svc={0x122, 0x40, {0x31000000, [0x99, 0x4, 0x5, 0x7, 0x1]}}, @mrs={0xbe, 0x18, {0x603000000013f08a}}, @eret={0xe6, 0x18, 0x5b}, @smc={0x1e, 0x40, {0xc400000d, [0x5, 0x7, 0x0, 0x0, 0x6]}}, @svc={0x122, 0x40, {0x2000, [0x8001, 0x2, 0xc1, 0x5, 0x8]}}, @smc={0x1e, 0x40, {0x84000001, [0xe, 0x4, 0x1ff, 0x4, 0x5309]}}, @svc={0x122, 0x40, {0x40, [0x212, 0x9, 0x9, 0x7fffffffffffffff, 0xc296]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x100, 0x9, 0x2}}, @svc={0x122, 0x40, {0x5000000, [0x0, 0x0, 0x7, 0xffffffff, 0x3a]}}, @irq_setup={0x46, 0x18, {0x1, 0x30c}}, @eret={0xe6, 0x18, 0x7}, @smc={0x1e, 0x40, {0x80000000, [0x5, 0x1a, 0xd, 0x2, 0x8]}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x22}}, @mrs={0xbe, 0x18, {0x603000000013dee1}}], 0x548}, &(0x7f0000000680), 0x1) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) eventfd2(0x8, 0x80800) (async) eventfd2(0x8, 0x80800) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x7ffffffffffffffe, 0xeeee0000, 0x8, r4}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) (async) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0x0, 0x1, r3, 0x3}) (async) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000700)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000006c0)={0x7ff, 0xe94e, 0x2}}) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x1, r3, 0x3}) (async) 1h59m15.285314015s ago: executing program 2 (id=173): r0 = openat$kvm(0x0, &(0x7f0000000040), 0xc0083, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x27) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000300)={0x0, &(0x7f0000000080)}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1a) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) 1h59m13.268794911s ago: executing program 3 (id=174): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x900, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20000, 0x0) close(0x3) eventfd2(0x81, 0x80000) ioctl$KVM_CREATE_VM(r1, 0x40086602, 0x20000000) mmap$KVM_VCPU(&(0x7f0000038000/0x1000)=nil, 0x930, 0x1, 0x30, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000fe8000/0x2000)=nil, 0x2000) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000280)=[@msr={0x14, 0x20, {0x603000000013c2b1, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c662}}, @svc={0x122, 0x40, {0x8400000e, [0xfffffffffffffe01, 0x3, 0x0, 0xffffffffffffff75, 0x97bd]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x11}}, @mrs={0xbe, 0x18, {0x603000000013c298}}, @irq_setup={0x46, 0x18, {0x2, 0x104}}, @code={0xa, 0x54, {"000008d5000840fa009c000f000028d520898cd20060b8f2010080d2220180d2e30180d2840180d2020000d40010005e0080202e007008d5008008d50068a038"}}, @irq_setup={0x46, 0x18, {0x1, 0x36f}}, @code={0xa, 0x84, {"008008d500008028005d8dd20080b8f2010180d2020180d2c30080d2040080d2020000d4000028d5007008d5602788d200c0b0f2c10180d2820180d2630180d2240080d2020000d40000c05a007008d5c0b688d200c0b0f2410180d2c20080d2830080d2240080d2020000d40040661e"}}, @code={0xa, 0x54, {"008008d50000df0c000028d500629dd200a0b0f2210080d2a20180d2830180d2a40180d2020000d40058284e00e4200e1f00006b007008d5008008d5000028d5"}}, @eret={0xe6, 0x18, 0x5}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x3, 0x7, 0x8, 0x8001, 0x3}}, @irq_setup={0x46, 0x18, {0x0, 0x3}}, @memwrite={0x6e, 0x30, @generic={0xeeee8000, 0x6ce, 0x80000001, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x3, 0x0, 0x8, 0x1514, 0x2}}, @mrs={0xbe, 0x18}, @eret={0xe6, 0x18}, @smc={0x1e, 0x40, {0x84000009, [0x2, 0xfffffffffffff86b, 0x5, 0x6, 0xf]}}, @msr={0x14, 0x20, {0x603000000013e6dd, 0x100000001}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x2f0}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x10, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0xa, 0x7ff, 0x3, 0x4}}], 0x3d4}, &(0x7f00000000c0)=[@featur2={0x1, 0xc}], 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f00009cd000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000240)=@arm64_core={0x603000000010000e, &(0x7f0000000200)=0x4}) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000040)=@arm64_fw={0x6030000000140000, &(0x7f0000000000)=0x2}) ioctl$KVM_GET_API_VERSION(r5, 0xae00, 0x0) 1h59m1.741920145s ago: executing program 2 (id=175): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xb) (rerun: 64) ioctl$KVM_CAP_ARM_USER_IRQ(r2, 0x4068aea3, &(0x7f00000000c0)) (async, rerun: 64) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) munmap(&(0x7f0000eb6000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10002, 0x2, 0x5000, 0x2000, &(0x7f0000c5d000/0x2000)=nil}) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x4010, r5, 0x0) (async) r7 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x1, 0x0}) (async) ioctl$KVM_CHECK_EXTENSION(r7, 0x541b, 0x20000000000000ac) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000f11000/0x3000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (rerun: 64) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x36) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000b7d000/0x400000)=nil) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10201, 0x2, 0x1, 0x2000, &(0x7f0000f31000/0x2000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) 1h58m59.949221697s ago: executing program 3 (id=176): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x78) r2 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0x42) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0xc0000000000}) 1h58m14.609415465s ago: executing program 34 (id=175): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xb) (rerun: 64) ioctl$KVM_CAP_ARM_USER_IRQ(r2, 0x4068aea3, &(0x7f00000000c0)) (async, rerun: 64) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) munmap(&(0x7f0000eb6000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10002, 0x2, 0x5000, 0x2000, &(0x7f0000c5d000/0x2000)=nil}) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) r6 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x4010, r5, 0x0) (async) r7 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x1, 0x0}) (async) ioctl$KVM_CHECK_EXTENSION(r7, 0x541b, 0x20000000000000ac) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000f11000/0x3000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (rerun: 64) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x36) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000b7d000/0x400000)=nil) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10201, 0x2, 0x1, 0x2000, &(0x7f0000f31000/0x2000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) 1h58m10.299039925s ago: executing program 35 (id=176): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x78) r2 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r6, 0xae03, 0x42) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0xc0000000000}) 1h49m52.461179531s ago: executing program 36 (id=185): munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ce2000/0x2000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f000059b000/0x2000)=nil, r1, 0x100000d, 0x12, r0, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00006a3000/0x3000)=nil, 0x3000) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x4) ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f0000000080)={0x0, 0x94f}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013c029, &(0x7f00000000c0)=0x8}) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0xb, 0x10, r6, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) munmap(&(0x7f00005c0000/0x11000)=nil, 0x11000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) 1h49m29.140624226s ago: executing program 37 (id=187): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000240)=@arm64_sys={0x603000000013c015, &(0x7f0000000200)=0xae}) r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x5, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4}}], 0x75}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x40000000000004, 0xc0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r7, 0xae80, 0x0) 1h33m45.899747727s ago: executing program 38 (id=237): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x31) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000100)=@arm64_extra={0x603000000013c03b}) (async) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000240)={0x0, &(0x7f0000000000)=[@memwrite={0x6e, 0x30, @generic={0x8080000, 0xdc2, 0x4, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x58, 0x9, 0x5}}, @eret={0xe6, 0x18, 0xffffffff}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x3ff}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0xffffffff, 0x8b28846086227187}}, @code={0xa, 0x9c, {"807c83d20040b8f2010180d2620180d2830180d2a40180d2020000d4008008d5807292d200a0b8f2c10180d2220080d2c30080d2e40180d2020000d4008008d5008008d5c0be9fd200e0b8f2410080d2c20180d2830080d2440080d2020000d4007008d5406a86d200e0b8f2010080d2820080d2430080d2840080d2020000d4000000fd00b0204e"}}, @svc={0x122, 0x40, {0x6000007, [0x345, 0x5, 0x2, 0x8000, 0x2]}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x151}}], 0x1d4}, 0x0, 0x0) (async) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xca}) (async) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r8, &(0x7f00000001c0)=0x7ffffff, 0xfdef) (async) r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r9, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e000000000000004000000000000000000000ef000000003a08000000000000010000000000000002c0f70000000000030000000000000004020000000000001400000000000000200000000000000084"], 0x60}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r9, 0xae80, 0x0) 1h33m40.339232508s ago: executing program 39 (id=238): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) r5 = eventfd2(0x0, 0x1) close(r5) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x80080, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0xffff8242, 0x1ff, &(0x7f0000000140)=0x1}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000080a0000}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_ARM_VCPU_FINALIZE(r10, 0x4004aec2, &(0x7f0000000180)=0x4) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) (async) syz_kvm_vgic_v3_setup(r9, 0x3, 0x180) 1h13m55.809704971s ago: executing program 9 (id=296): mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb2000/0x3000)=nil, 0x930, 0x0, 0x32e7851d6de9e532, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) 1h13m38.730729119s ago: executing program 9 (id=298): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x14200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r6, 0x8360ae81, &(0x7f0000000240)) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r7, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r7, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r8 = mmap$KVM_VCPU(&(0x7f0000db0000/0x2000)=nil, 0x0, 0x6, 0x10, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="8a25f0bc3d54da837a7cd4a9971efa2a7245c2a00803dd4305d8895da2a108166e18665f5ab0afcecf12889a0540c835b034741aab72160ac6969a63ba55f87d554daa95815519db", 0x0, 0x48) r9 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0xf, '\x00', 0xfffffffffffff105}) r10 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0x0, 0x6, 0x0, 0x9}}], 0x50}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000cc5000/0x2000)=nil, 0x930, 0x1000002, 0x8010, r11, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x6, 0x8032, 0xffffffffffffffff, 0x0) 1h13m13.689416482s ago: executing program 9 (id=300): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x129a40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r5, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x93}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000040)=@arm64_core={0x6030000000100026}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac4e37c4005a9614fbff67521ce16f8f09449a7a836b73312954000000000000000000000000000000000000000000000000000000dc6900", 0x0, 0x2e) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r9, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r9, 0x0) r11 = eventfd2(0x0, 0x0) close(r11) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r11, &(0x7f00000001c0)=0x87, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) r12 = eventfd2(0x0, 0x0) close(r12) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) r13 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r13, 0x4010aeab, 0x0) 1h12m44.12021687s ago: executing program 9 (id=302): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) close(r1) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) r4 = mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r3, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x4, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x2, 0x2, 0x9, 0x0, 0x80}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000000)="e65bf643e6e1a3ffc871fcc8064f26b4d9f94b6f1ccd7b41443d2b5486580143226c0ead9a1620b6709fafba2af023314cc4bf610d6a743ad4913910b8364e5f73ea2fc43ac1ebfc", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) 1h12m23.239251728s ago: executing program 9 (id=304): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000700)={0x7, 0x0}) (async) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000240)={0x200002f}) (async) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async, rerun: 64) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000280)={0x1000020, 0x1}) (async, rerun: 32) ioctl$KVM_RUN(r10, 0xae80, 0x0) (rerun: 32) write$eventfd(r2, &(0x7f00000001c0), 0xfdef) r11 = openat$kvm(0x0, &(0x7f0000000180), 0x881880, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r15, 0x4010ae68, &(0x7f00000000c0)={0xffff1000, 0x6000, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x2, &(0x7f0000000200)=0x8000000}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000080a0000}) 1h11m33.522618141s ago: executing program 40 (id=304): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000700)={0x7, 0x0}) (async) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000240)={0x200002f}) (async) r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async, rerun: 64) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000280)={0x1000020, 0x1}) (async, rerun: 32) ioctl$KVM_RUN(r10, 0xae80, 0x0) (rerun: 32) write$eventfd(r2, &(0x7f00000001c0), 0xfdef) r11 = openat$kvm(0x0, &(0x7f0000000180), 0x881880, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r15, 0x4010ae68, &(0x7f00000000c0)={0xffff1000, 0x6000, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x2, &(0x7f0000000200)=0x8000000}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000000)=0x400000080a0000}) 1h11m25.423439091s ago: executing program 41 (id=305): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0xffffffffffffffff, 0x1, 0x1}}], 0x28}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x30) ioctl$KVM_HAS_DEVICE_ATTR_vm(r5, 0x4018aee3, 0xffffffffffffffff) syz_kvm_vgic_v3_setup(r1, 0x4, 0x220) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0xb, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1h1m43.81262797s ago: executing program 1 (id=307): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8a80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x78) (async, rerun: 32) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (rerun: 32) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r5, 0x4018aee3, &(0x7f00000000c0)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x3}) (async) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_setup_cpu$arm64(r1, r5, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000240)=[@msr={0x14, 0x20, {0x603000000013dce9, 0x1}}, @smc={0x1e, 0x40, {0x3f000000, [0x1, 0xa01, 0x3e16, 0x8, 0xc97d]}}, @svc={0x122, 0x40, {0xc5000020, [0x7fffffffffffffff, 0x8001, 0x8, 0x0, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138066, 0x4}}, @uexit={0x0, 0x18, 0xffff}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x2, 0x2, 0x800, 0xa, 0x3}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x300, 0x8, 0x7}}], 0x130}], 0x1, 0x0, &(0x7f0000000380)=[@featur2={0x1, 0x15}], 0x1) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r12, 0x4010aeab, &(0x7f0000000100)=@arm64_ccsidr={0x602000000011000e, 0x0}) (async, rerun: 32) r13 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x2, 0x9, 0x0, 0x80}}], 0x50}, 0x0, 0x0) (rerun: 32) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) (async, rerun: 64) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r14, 0xae04) (async) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8}) ioctl$KVM_RUN(r13, 0xae80, 0x0) 1h1m3.109269202s ago: executing program 42 (id=306): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r5, 0xae03, 0x81) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x32) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0xfffffffdffffffff) ioctl$KVM_SET_GSI_ROUTING(r9, 0x4008ae6a, &(0x7f00000002c0)={0x0, 0x100000}) ioctl$KVM_CHECK_EXTENSION_VM(r7, 0xae03, 0x5) 1h0m53.168821767s ago: executing program 43 (id=307): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8a80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x78) (async, rerun: 32) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (rerun: 32) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r5, 0x4018aee3, &(0x7f00000000c0)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x3}) (async) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_setup_cpu$arm64(r1, r5, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000240)=[@msr={0x14, 0x20, {0x603000000013dce9, 0x1}}, @smc={0x1e, 0x40, {0x3f000000, [0x1, 0xa01, 0x3e16, 0x8, 0xc97d]}}, @svc={0x122, 0x40, {0xc5000020, [0x7fffffffffffffff, 0x8001, 0x8, 0x0, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138066, 0x4}}, @uexit={0x0, 0x18, 0xffff}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x2, 0x2, 0x800, 0xa, 0x3}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x300, 0x8, 0x7}}], 0x130}], 0x1, 0x0, &(0x7f0000000380)=[@featur2={0x1, 0x15}], 0x1) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r12, 0x4010aeab, &(0x7f0000000100)=@arm64_ccsidr={0x602000000011000e, 0x0}) (async, rerun: 32) r13 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x2, 0x9, 0x0, 0x80}}], 0x50}, 0x0, 0x0) (rerun: 32) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) (async, rerun: 64) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r14, 0xae04) (async) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8}) ioctl$KVM_RUN(r13, 0xae80, 0x0) 51m22.351594273s ago: executing program 3 (id=309): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000be7000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000140)=[@uexit={0x0, 0x18, 0x9}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x4) r6 = eventfd2(0x5, 0x800) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000040)={0x5, 0x8080000, 0x2, r6, 0x8}) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x20) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f00000000c0)={0x8000000008000800, 0x0, 0x0, r6, 0x2}) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000000)={0x1, 0x0, 0x7000000, r6, 0x6}) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000400)={0x0, &(0x7f0000000240)=[@uexit={0x0, 0x18, 0x7}, @irq_setup={0x46, 0x18, {0x4, 0x350}}, @msr={0x14, 0x20, {0x603000000013c663, 0xb}}, @msr={0x14, 0x20, {0x6030000000138005, 0x7}}, @svc={0x122, 0x40, {0xc4000012, [0x8, 0xfff, 0xfff, 0xa70, 0x80000000fe]}}, @irq_setup={0x46, 0x18, {0x4, 0x77}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2d0}}, @hvc={0x32, 0x40, {0x84000010, [0x401, 0x1, 0x101, 0x4, 0x9]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x48, 0x8, 0x2}}, @memwrite={0x6e, 0x30, @generic={0x2, 0xfc2, 0x7, 0x2}}], 0x190}, &(0x7f0000000440)=[@featur2={0x1, 0x62}], 0x1) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x161681, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING(r2, 0x4068aea3, &(0x7f00000001c0)={0xc0, 0x0, 0x3000}) syz_kvm_setup_cpu$arm64(r15, r16, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r16, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100032, &(0x7f00000000c0)=0x3ff}) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r17, 0x4018aee3, &(0x7f0000000940)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) 51m14.621354423s ago: executing program 2 (id=308): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x4000, 0x13000, 0x1}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0xffffffffffffffff) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r5 = syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000180)}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000380)={0x2, 0x25000, 0x1}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000003c0)={0x4, 0xa7e9ea20e9018807, 0x1}) 50m58.910497308s ago: executing program 2 (id=310): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x2, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0x0, 0x6, 0x2, 0x4}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0xc0189436, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r8, 0x400454cb, 0x2f) r9 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0x0, 0x1, r9, 0xb}) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x1, r9, 0x3}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 50m58.093899151s ago: executing program 3 (id=311): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x29) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x5d) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 50m39.306949991s ago: executing program 3 (id=312): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x31) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010003c, &(0x7f0000000140)=0x7}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013c081, 0x2000002}}], 0x20}, 0x0, 0xfffffffffffffd83) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 50m36.173172071s ago: executing program 2 (id=313): munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x8030aeb4, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f7c000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r3, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) 49m51.590599348s ago: executing program 44 (id=312): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x31) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010003c, &(0x7f0000000140)=0x7}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013c081, 0x2000002}}], 0x20}, 0x0, 0xfffffffffffffd83) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) 49m42.921585634s ago: executing program 45 (id=313): munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x8030aeb4, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f7c000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r3, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) 36m18.949977951s ago: executing program 4 (id=352): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x16831, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000080)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) 36m16.868450405s ago: executing program 5 (id=353): openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2f) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000200)={0x0, &(0x7f00000001c0)=[@eret={0xe6, 0x18, 0x1}], 0x18}, 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000000)={0x1, 0xe59b8351}) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, &(0x7f0000000380)=[@code={0xa, 0x84, {"202786d200c0b8f2a10180d2a20180d2e30080d2e40180d2020000d4200189d20040b8f2810180d2c20180d2c30180d2c40180d2020000d4002cc09a008008d5008008d50000407d600284d200e0b8f2810080d2a20180d2830180d2c40080d2020000d400809f0c008008d5008008d5"}}, @msr={0x14, 0x20, {0x603000000013df6c, 0x8000}}, @msr={0x14, 0x20, {0x603000000013e532, 0x8000}}], 0x4e}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000100)={0x0, 0x2, 0xdddd1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r15 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r15, 0x4010ae74, &(0x7f0000000100)={0x7fffffff, 0x9, 0xfffd}) ioctl$KVM_SET_DEVICE_ATTR_vm(r15, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0) 36m3.490142497s ago: executing program 4 (id=354): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) munmap(&(0x7f0000ff6000/0x7000)=nil, 0x7000) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f00000002c0)=@arm64_sys={0x603000000013df12, &(0x7f0000000000)=0x3}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d) r6 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x29) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) r10 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r9, 0x2, 0x11, r8, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) r11 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r12, 0x4010aeab, &(0x7f0000000000)=@arm64_sve={0x60800000001504cb, 0x0}) 36m2.120625317s ago: executing program 5 (id=355): r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f00000000c0)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x8}) (async) ioctl$KVM_SET_GUEST_DEBUG_arm64(r0, 0x4208ae9b, &(0x7f0000000180)={0x0, 0x0, {[0x2, 0x5, 0x7, 0x1, 0xfffffffffffffffb, 0x3, 0x5, 0x0, 0x2, 0x200, 0xb, 0x0, 0xa532, 0x6, 0x3c9, 0x405], [0xffff, 0x7f, 0xec2, 0x2, 0xfffffffffffff475, 0xfff, 0x7fffffffffffffff, 0xfffffffffffffffd, 0xffffffffffff2069, 0xa56, 0xffffffffffffffff, 0x0, 0x6, 0x5000, 0xff, 0xc], [0x0, 0x7, 0xfff, 0x2, 0xffffffff, 0x7ff, 0x1, 0xfffffffffffffffe, 0x9584, 0xba, 0xe7fa, 0x8, 0x8, 0x1, 0xc, 0x1], [0xd, 0xfffffffffffffffd, 0x6, 0xfffffffffffffffa, 0x8f4, 0x4, 0x6, 0xfffffffffffffffd, 0x8000004, 0x6, 0x8000, 0x7, 0x4, 0xfff, 0xffdffffffffeffff, 0x2]}}) (async) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) (async) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) syz_kvm_setup_cpu$arm64(r5, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x2c}], 0x1, 0x0, 0x0, 0x0) (async) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) ioctl$KVM_CHECK_EXTENSION(r8, 0x5421, 0x6) (async) r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0xffff1000, 0x1000, &(0x7f00003f1000/0x1000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000000000/0x400000)=nil) (async) r10 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000100)=@arm64_ccsidr={0x602000000011000e, 0x0}) r15 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x29) r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r16, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000140)=@arm64_fp_extra={0x60200000003000d5, &(0x7f0000000100)=0x7fffffff}) 35m41.384978604s ago: executing program 5 (id=356): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) (async, rerun: 64) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 64) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0xa8) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x7, 0x1, 0x0}) 35m38.572588372s ago: executing program 4 (id=357): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x10002, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x20) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x3c1d02, 0x0) 35m28.803390294s ago: executing program 4 (id=358): openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r5, 0x2000000, 0x14012, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000003, 0x4010, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) 35m27.709807567s ago: executing program 5 (id=359): munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x6832, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0xf, '\x00', 0xfffffffffffff105}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r4, 0x6000004, 0x110, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x6832, 0xffffffffffffffff, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0xf, '\x00', 0xfffffffffffff105}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r4, 0x6000004, 0x110, r3, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) (async) 35m17.650213678s ago: executing program 5 (id=360): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000200)={0x1, 0x19}) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f00000000c0)=@arm64_fp_extra={0x60200000001000d4, &(0x7f0000000080)=0x2}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f00000001c0)={0xdddd1000, 0x10000}) r5 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x26) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000100)="746abf250f7959c813e4adfb369b808022e69fe80cfadce4a1259e77bab54ac9749537b3d016bb7f745a6e22d2f9ff443f19467748a3fe02c239457600", 0x0, 0xfffffffffffffec5) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r9, 0x4018aee1, 0xffffffffffffffff) syz_kvm_setup_cpu$arm64(r1, r7, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x27) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x8, 0x0, 0x0}) ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c030}) r13 = eventfd2(0x6, 0x800) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000180)={r9, 0x9, 0x1, r13}) 35m16.670660019s ago: executing program 4 (id=361): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil) (async) r3 = mmap$KVM_VCPU(&(0x7f0000df3000/0x4000)=nil, 0x0, 0x2800009, 0x40010, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000280)="773842f922c2fbea5f49f376b100d8267f1bc041e24a57eeae3c6635af32f12738d465ad4c6d0166acafa894891e610c96ec4e1f484e21de8b48149b1ee885e8837be90af57f1905", 0x0, 0x48) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000200)={0x0, &(0x7f0000000040)=[@uexit={0x0, 0x18, 0x800}, @mrs={0xbe, 0x18, {0x603000000013e6cb}}, @svc={0x122, 0x40, {0x31007fff, [0x9, 0x5, 0x7, 0x7fffffff, 0xb]}}, @svc={0x122, 0x40, {0xc400000e, [0x7, 0xfffffffffffff0d4, 0x2c40, 0x6, 0x4]}}, @eret={0xe6, 0x18, 0x84fe}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x1, 0xe, 0xfffffff9, 0x8001, 0x1}}, @svc={0x122, 0x40, {0x84000051, [0x1, 0x101, 0xb59b, 0x9500, 0x1]}}, @uexit={0x0, 0x18, 0x8}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x3, 0x8, 0x8001, 0x1ff, 0x3}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x0, 0x6, 0x4, 0x2}}, @irq_setup={0x46, 0x18, {0x0, 0x6d}}], 0x1b0}, &(0x7f0000000240)=[@featur1={0x1, 0x64}], 0x1) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f00000009c0)=[@hvc={0x32, 0x40, {0xc4000004, [0x4, 0xfffffffffffffffa, 0x8000000000000000, 0x427f, 0x400003]}}], 0x40}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) 35m4.508619266s ago: executing program 4 (id=362): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000380)=[@irq_setup={0x46, 0x18, {0x2, 0x377}}, @code={0xa, 0xb4, {"a0be81d20080b0f2410180d2a20080d2230080d2a40180d2020000d4008008d50020c09aa03390d200c0b0f2c10080d2420080d2230180d2040180d2020000d40000c0a860ab91d200e0b0f2210080d2020080d2830080d2640180d2020000d4008008d5003292d20020b0f2810080d2020080d2830180d2440180d2020000d4000008d580019dd20080b0f2410180d2a20180d2c30180d2240080d2020000d4"}}, @hvc={0x32, 0x40, {0x8400000e, [0x6, 0x100000000, 0x0, 0x2, 0x6]}}, @irq_setup={0x46, 0x18, {0x3, 0x203}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x152}}, @mrs={0xbe, 0x18, {0x603000000013807d}}, @eret={0xe6, 0x18, 0x7}, @irq_setup={0x46, 0x18, {0x4, 0x2ad}}], 0x194}, &(0x7f0000000040)=[@featur1={0x1, 0xa8}], 0x1) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$KVM_CREATE_VM(r3, 0xc0189436, 0x20004000) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r9, 0x4018aee1, 0xffffffffffffffff) r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010002a, &(0x7f00000000c0)=0xc}) r11 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r15, 0x4018aee2, &(0x7f0000000140)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f00000000c0)=0x19}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_other={0x0, 0x2, 0x287, 0x0}) 34m49.120532045s ago: executing program 5 (id=363): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000b97000/0x400000)=nil) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0x40086602, 0x110e22ffff) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) eventfd2(0xfffffffa, 0x80001) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x40086602, 0x20000000) ioctl$KVM_CHECK_EXTENSION(r7, 0x40086602, 0x110e227ffe) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x28) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r11, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) 34m17.57716696s ago: executing program 46 (id=362): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000380)=[@irq_setup={0x46, 0x18, {0x2, 0x377}}, @code={0xa, 0xb4, {"a0be81d20080b0f2410180d2a20080d2230080d2a40180d2020000d4008008d50020c09aa03390d200c0b0f2c10080d2420080d2230180d2040180d2020000d40000c0a860ab91d200e0b0f2210080d2020080d2830080d2640180d2020000d4008008d5003292d20020b0f2810080d2020080d2830180d2440180d2020000d4000008d580019dd20080b0f2410180d2a20180d2c30180d2240080d2020000d4"}}, @hvc={0x32, 0x40, {0x8400000e, [0x6, 0x100000000, 0x0, 0x2, 0x6]}}, @irq_setup={0x46, 0x18, {0x3, 0x203}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x152}}, @mrs={0xbe, 0x18, {0x603000000013807d}}, @eret={0xe6, 0x18, 0x7}, @irq_setup={0x46, 0x18, {0x4, 0x2ad}}], 0x194}, &(0x7f0000000040)=[@featur1={0x1, 0xa8}], 0x1) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) ioctl$KVM_CREATE_VM(r3, 0xc0189436, 0x20004000) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r9, 0x4018aee1, 0xffffffffffffffff) r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010002a, &(0x7f00000000c0)=0xc}) r11 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r15, 0x4018aee2, &(0x7f0000000140)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f00000000c0)=0x19}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_other={0x0, 0x2, 0x287, 0x0}) 33m59.570490007s ago: executing program 47 (id=363): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000b97000/0x400000)=nil) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0x40086602, 0x110e22ffff) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) eventfd2(0xfffffffa, 0x80001) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x40086602, 0x20000000) ioctl$KVM_CHECK_EXTENSION(r7, 0x40086602, 0x110e227ffe) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x28) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r11, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) 25m37.078728752s ago: executing program 7 (id=373): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r6, 0x400454d9, 0x1a) r7 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000140)={0x80, 0x4, 0x0, r7}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a92616}) ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f0000000080)={0x3, 0xffffffff}) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000180)={0x5000}) r8 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r12 = syz_kvm_vgic_v3_setup(r10, 0x1, 0x100) ioctl$KVM_HAS_DEVICE_ATTR(r12, 0x4018aee3, &(0x7f0000000380)=@attr_other={0x0, 0x1, 0xc00000, 0x0}) ioctl$KVM_RUN(r8, 0xae80, 0x0) r13 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r14, 0x4018aee2, &(0x7f00000000c0)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0xffffffffffffffff}) 25m19.151357474s ago: executing program 7 (id=376): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000000)=@other={0x1000, &(0x7f00000000c0)=0x100000000}) 25m8.980300301s ago: executing program 7 (id=377): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x200000000000001}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x9}}], 0x50}, 0x0, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) r4 = syz_kvm_vgic_v3_setup(r1, 0x3, 0x140) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x7fffffff, 0x99, &(0x7f0000000000)=0x4}) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 24m55.427009282s ago: executing program 7 (id=379): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r4, 0x2000003, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, r4, 0x3, 0x11, 0xffffffffffffffff, 0x0) 24m43.270559717s ago: executing program 7 (id=381): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xa) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000080)=@arm64_bitmap={0x6030000000160001, &(0x7f0000000040)=0x3}) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r1, 0x4068aea3, &(0x7f00000000c0)={0xa8, 0x0, 0x1}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1a) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)={0xd000, 0x9000, 0x1}) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000240)={0x0, &(0x7f0000000180)=[@code={0xa, 0x84, {"200497d20040b0f2410080d2c20080d2c30180d2640080d2020000d40004007f0010200e00c8217e000cc0da0000006a007008d5c01f94d200c0b0f2c10180d2420180d2c30180d2c40180d2020000d440718cd20000b0f2610080d2c20180d2e30180d2c40180d2020000d4008008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x124}}], 0x9c}, &(0x7f0000000280)=[@featur2={0x1, 0x140}], 0x1) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x20) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r3, 0x4018aee3, &(0x7f0000000300)=@attr_other={0x0, 0x38000000, 0x9, &(0x7f00000002c0)=0xc1}) r4 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_GET_API_VERSION(r4, 0xae00, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x22) ioctl$KVM_GET_DEVICE_ATTR_vm(r4, 0x4018aee2, &(0x7f0000000380)=@attr_other={0x0, 0x40, 0x5, &(0x7f0000000340)=0x8}) ioctl$KVM_INTERRUPT(r4, 0x4004ae86, &(0x7f00000003c0)=0xfffff0a4) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000400)=0x4) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000440)={0x5}) syz_kvm_setup_cpu$arm64(r5, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000680)=[{0x0, &(0x7f0000000480)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x58, 0x2}}, @smc={0x1e, 0x40, {0xc, [0x48, 0x4, 0x6, 0x6, 0x10]}}, @msr={0x14, 0x20, {0x603000000013d921, 0x40}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x0, 0x7abc, 0x3}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x176}}, @smc={0x1e, 0x40, {0x10, [0x1ff, 0x3, 0x10000, 0x9, 0x9]}}, @mrs={0xbe, 0x18, {0x603000000013df6f}}, @smc={0x1e, 0x40, {0x4000, [0x4, 0x9, 0x7fffffff, 0x2b6, 0x6]}}, @irq_setup={0x46, 0x18, {0x0, 0x2ee}}, @msr={0x14, 0x20, {0x603000000013dee1, 0x5}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x95}}, @uexit={0x0, 0x18, 0x3ff}], 0x1f8}], 0x1, 0x0, &(0x7f00000006c0)=[@featur1={0x1, 0x31}], 0x1) r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000a00)={0x0, &(0x7f0000000700)=[@smc={0x1e, 0x40, {0x84000008, [0x7, 0x10000, 0xfffffffffffff001, 0x90000, 0x5]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x398}}, @code={0xa, 0x6c, {"000008d500a8215ee03f8dd20000b0f2210080d2420180d2630080d2040180d2020000d4a0979ad200a0b8f2010180d2420180d2630080d2a40180d2020000d4000028d5000028d5000040fd000040f8000008d5000028d5"}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x205}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x2, 0xff, 0x3, 0x7, 0x2}}, @smc={0x1e, 0x40, {0x8400000c, [0x4, 0x0, 0x10001, 0x6]}}, @hvc={0x32, 0x40, {0xc4000005, [0x7, 0x8, 0x8, 0x3, 0x100]}}, @hvc={0x32, 0x40, {0x100, [0x3, 0x32386df4, 0xf9, 0x8, 0x8d]}}, @msr={0x14, 0x20, {0x603000000013dea5, 0xfffffffffffff5f7}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x19d}}, @eret={0xe6, 0x18, 0x1}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x90, 0x100, 0x2}}, @smc={0x1e, 0x40, {0x3, [0x8001, 0x3, 0x81a5, 0x1800, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x129}}], 0x2dc}, &(0x7f0000000a40)=[@featur2={0x1, 0xc9}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000a80)=@attr_pmu_init) ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8360ae81, &(0x7f0000000ac0)) ioctl$KVM_ASSIGN_SET_MSIX_NR(r4, 0x4008ae73, &(0x7f0000000b80)={0x8, 0x8}) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r4, 0x4018aee2, &(0x7f0000000c00)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000bc0)=0x80}) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000f64000/0x2000)=nil, r7, 0x1, 0x810, r4, 0x0) ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) 24m32.521425043s ago: executing program 7 (id=382): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x7ff, 0x9}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x9000, 0x1}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r2, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100010, &(0x7f0000000100)}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) 23m44.669137012s ago: executing program 48 (id=382): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x7ff, 0x9}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x9000, 0x1}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r2, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100010, &(0x7f0000000100)}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) 21m6.017001093s ago: executing program 6 (id=397): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0xc0083, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x0, 0x3, 0x11, r2, 0x0) 20m55.199853259s ago: executing program 6 (id=398): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x6832, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) r6 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x4, 0x220) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000040)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f0000000000)=0x1b}) (async, rerun: 64) ioctl$KVM_RUN(r7, 0xae80, 0x0) (rerun: 64) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r2, 0x4018aee3, 0x0) 20m45.438486236s ago: executing program 6 (id=399): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x200, 0x0) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (rerun: 64) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) (async, rerun: 64) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000000000000000000002", @ANYRESOCT=r2]) (async, rerun: 64) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0x80111500, 0x20000000) write$eventfd(r5, &(0x7f0000000040), 0x8) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) openat$kvm(0x0, &(0x7f0000000140), 0x430000, 0x0) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x4) (async) r7 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xc) ioctl$KVM_SIGNAL_MSI(r8, 0x4020aea5, 0x0) (async, rerun: 64) r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x29) (rerun: 64) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000340)=[@uexit={0x0, 0x18, 0x1f95}, @svc={0x122, 0x40, {0x100, [0x9, 0x7030, 0x3, 0x5, 0x200000000003]}}, @code={0xa, 0x6c, {"008008d50044207e0000809a007008d5006c200e007c001b20ec99d20040b8f2810180d2e20180d2230180d2240180d2020000d4a0a19dd20080b0f2810180d2620080d2630080d2640080d2020000d40820601e000008d5"}}], 0xc4}, 0x0, 0x0) (async) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1) r11 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r10, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000100)={0x202, 0x2, 0x1, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (rerun: 64) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4d) (async, rerun: 32) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 32) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000300)=[@eret={0xe6, 0x18, 0x253b}, @smc={0x1e, 0x40, {0xffff, [0x7f, 0x800, 0xff, 0xa, 0x9]}}, @mrs={0xbe, 0x18, {0x603000000013da15}}, @smc={0x1e, 0x40, {0x6000000, [0x4, 0x2, 0x897, 0x2ba]}}, @mrs={0xbe, 0x18, {0x603000000013804f}}, @mrs={0xbe, 0x18, {0x603000000013c091}}, @svc={0x122, 0x40, {0x8018, [0x1, 0x0, 0x0, 0x10001, 0x101]}}], 0x120}, &(0x7f00000000c0)=[@featur1={0x1, 0x3}], 0x1) (async) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_GET_DIRTY_LOG(r12, 0x4010ae42, &(0x7f0000000080)={0x1, 0x0, &(0x7f0000ffb000/0x3000)=nil}) 20m35.270527095s ago: executing program 6 (id=400): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r6 = syz_kvm_vgic_v3_setup(r4, 0x3, 0xa0) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x4, 0x0, &(0x7f0000000280)=0x4}) r7 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000080)={0x1ff, 0xa, 0x1}}) r13 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000240)={0x3, 0x9}}) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000200)=@attr_arm64={0x0, 0x1, 0x1, &(0x7f0000000000)=0x3}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f00000002c0)=@arm64={0x0, 0x6, 0x0, '\x00', 0x3}) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x0, &(0x7f0000000000)=0x10}) 20m19.761989229s ago: executing program 6 (id=401): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x4d) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x46) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000380)=[{0x0, &(0x7f0000000200)=[@eret={0xe6, 0x18, 0x8}], 0x18}], 0x1, 0x0, 0x0, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r2 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x29) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) r5 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000000)=@arm64={0xad, 0x40, 0xcd, '\x00', 0x100}) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) 20m9.522827735s ago: executing program 6 (id=402): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r7 = ioctl$KVM_CREATE_VM(r6, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xb701, 0x0) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000240)="04198bd844c9e8a7b82d748f0f0244293d28bd9400bfc2ed44db9969759357abeb8d85c8e856a4606c2e979f98d67e4ff39fb6df9547f6a9506c610dc37b175c3ad3c9952305abf0", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) (async) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x201302, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x2, 0x8000000, 0x1000, &(0x7f0000c42000/0x1000)=nil}) r10 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x13) ioctl$KVM_HAS_DEVICE_ATTR_vm(r10, 0x4018aee3, &(0x7f00000000c0)=@attr_other={0x0, 0x7ff, 0xffffffff80000001, &(0x7f0000000000)=0x100000000}) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) (async) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r14, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000001000/0x2000)=nil, 0x930, 0x2000003, 0x4120932, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) 19m22.047432152s ago: executing program 49 (id=402): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r7 = ioctl$KVM_CREATE_VM(r6, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xb701, 0x0) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000240)="04198bd844c9e8a7b82d748f0f0244293d28bd9400bfc2ed44db9969759357abeb8d85c8e856a4606c2e979f98d67e4ff39fb6df9547f6a9506c610dc37b175c3ad3c9952305abf0", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x0) (async) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x201302, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x2, 0x8000000, 0x1000, &(0x7f0000c42000/0x1000)=nil}) r10 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x13) ioctl$KVM_HAS_DEVICE_ATTR_vm(r10, 0x4018aee3, &(0x7f00000000c0)=@attr_other={0x0, 0x7ff, 0xffffffff80000001, &(0x7f0000000000)=0x100000000}) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) (async) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r14, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000001000/0x2000)=nil, 0x930, 0x2000003, 0x4120932, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) 15m43.663530456s ago: executing program 9 (id=384): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x21) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r8 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r7, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x60871, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0xa5) r9 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x6, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x347}}, @uexit={0x0, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013c664}}, @uexit={0x0, 0x18, 0x1}, @irq_setup={0x46, 0x18, {0x2, 0x127}}, @smc={0x1e, 0x40, {0x84003fef, [0x4, 0x8001, 0x7, 0x1, 0xe]}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x3, 0x10, 0x4467, 0x1, 0x3}}, @msr={0x14, 0x20, {0x603000000013803e, 0x4}}, @msr={0x14, 0x20, {0x603000000013dea5}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0xc, 0x2, 0x2, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e649}}, @eret={0xe6, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0xe, 0x3, 0x1ff}}, @smc={0x1e, 0x40, {0x6000000, [0x80000000, 0x8c5, 0x3, 0x6, 0x4]}}, @irq_setup={0x46, 0x18, {0x4, 0x1a1}}, @its_setup={0x82, 0xfffffffffffffcc1, {0x4, 0x1, 0x3cb}}], 0x260}, &(0x7f0000000180)=[@featur1={0x1, 0x20}], 0x1) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000040)={0x2710, 0x2, 0xd000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IRQ_LINE_STATUS(r12, 0xc008ae67, &(0x7f0000000100)={0x0, 0x81}) ioctl$KVM_SIGNAL_MSI(r12, 0x4020aea5, &(0x7f00000000c0)={0x19191000, 0xdddd1000, 0x5b5, 0x0, 0x8}) 14m55.280298668s ago: executing program 50 (id=384): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x21) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r8 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r7, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x60871, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0xa5) r9 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x6, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x347}}, @uexit={0x0, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013c664}}, @uexit={0x0, 0x18, 0x1}, @irq_setup={0x46, 0x18, {0x2, 0x127}}, @smc={0x1e, 0x40, {0x84003fef, [0x4, 0x8001, 0x7, 0x1, 0xe]}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x3, 0x10, 0x4467, 0x1, 0x3}}, @msr={0x14, 0x20, {0x603000000013803e, 0x4}}, @msr={0x14, 0x20, {0x603000000013dea5}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0xc, 0x2, 0x2, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e649}}, @eret={0xe6, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0xe, 0x3, 0x1ff}}, @smc={0x1e, 0x40, {0x6000000, [0x80000000, 0x8c5, 0x3, 0x6, 0x4]}}, @irq_setup={0x46, 0x18, {0x4, 0x1a1}}, @its_setup={0x82, 0xfffffffffffffcc1, {0x4, 0x1, 0x3cb}}], 0x260}, &(0x7f0000000180)=[@featur1={0x1, 0x20}], 0x1) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000040)={0x2710, 0x2, 0xd000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IRQ_LINE_STATUS(r12, 0xc008ae67, &(0x7f0000000100)={0x0, 0x81}) ioctl$KVM_SIGNAL_MSI(r12, 0x4020aea5, &(0x7f00000000c0)={0x19191000, 0xdddd1000, 0x5b5, 0x0, 0x8}) 8m33.232127452s ago: executing program 0 (id=424): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x11) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_GET_API_VERSION(r2, 0xae00, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0xab) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vm(r9, 0x4018aee3, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0}) ioctl$KVM_CHECK_EXTENSION(r6, 0x401c5820, 0x8000000000000001) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x2, 0x2, &(0x7f0000000080)}) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x13, r5, 0x0) 8m21.807423111s ago: executing program 0 (id=426): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000000)={0x1, 0x6000, 0x9fff, 0xffffffffffffffff, 0x8}) r3 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000080)={0x4, 0x80a0000, 0x4, r6}) r7 = eventfd2(0x27000000, 0x80801) r8 = eventfd2(0xffff8000, 0x80000) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000140)={r7, 0x3, 0x1, r8}) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(r10, 0xc018aec0, &(0x7f00000000c0)={0x5, 0x340, 0x1, 0x0}) r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r12 = syz_kvm_vgic_v3_setup(r11, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r12, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1c, 0x2, &(0x7f0000000180)=0x4}) 8m11.94195585s ago: executing program 8 (id=427): munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) eventfd2(0xba88, 0x80401) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) munmap(&(0x7f0000f7c000/0x2000)=nil, 0x2000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r1, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) 8m7.09760863s ago: executing program 0 (id=428): munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000eed000/0x4000)=nil, 0x4000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r1, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xc0189436, 0x20004000) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0x7ffffff, 0x648) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000e2c000/0x3000)=nil, r1, 0x3000003, 0x10, r5, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ff8000/0x4000)=nil, 0x0, 0x3000005, 0x41812, r6, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) 8m0.739216087s ago: executing program 8 (id=429): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x296601, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x400031) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x10002, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x5, 0x8080000, 0x2000, &(0x7f0000c5d000/0x2000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d) (async) r3 = openat$kvm(0x0, &(0x7f0000000040), 0xe14f79e55e3d2557, 0x0) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000572000/0xd000)=nil, 0x930, 0x0, 0x8010, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r6, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) (async) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000004, 0x12, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000834000/0x3000)=nil, 0x930, 0x100000a, 0x8032, 0xffffffffffffffff, 0x0) (async) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000080)={0x3, 0xd2}) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000140)={0xc, 0xfff9, 0x1}}) (async) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r2, 0x4068aea3, &(0x7f0000000180)={0xe4, 0x0, 0xcb9}) 7m53.021131924s ago: executing program 0 (id=430): r0 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r3, 0x801054db, 0x1) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r4, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) 7m50.358799759s ago: executing program 8 (id=431): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2e) (async) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2e) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x12}) (async) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x12}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) (async) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_bitmap={0x6030000000160000, &(0x7f0000000000)=0x7}) (async) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_bitmap={0x6030000000160000, &(0x7f0000000000)=0x7}) r9 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) (async) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r11, 0xae03, 0xef) r12 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0xfffffffe, 0x0, 0x6, 0x0, 0x20000004}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) write$eventfd(0xffffffffffffffff, &(0x7f0000000240), 0x8) ioctl$KVM_RUN(r12, 0xae80, 0x0) 7m29.636003898s ago: executing program 8 (id=432): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xdddd1000, 0x2000, &(0x7f0000fa4000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000000)={0x1, 0x0, &(0x7f0000ffb000/0x3000)=nil}) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x0, 0x2}}], 0x68}, 0x0, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x25) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8}) r8 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x20) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x6, 0x4, 0x0}) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x2, 0x8000000, 0x2000, &(0x7f0000c36000/0x2000)=nil}) 7m29.2305267s ago: executing program 0 (id=433): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f0000000000)=0x1b}) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x13, r2, 0x0) 7m18.120775727s ago: executing program 0 (id=434): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r2 = eventfd2(0x0, 0x80000) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r2, 0x3}) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x203, 0x0, 0x2, r2, 0xf}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0xfffffffc, 0x3, 0x1, 0x0, @sint={0x2, 0x8}}]}) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) eventfd2(0x0, 0x80000) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r2, 0x3}) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x203, 0x0, 0x2, r2, 0xf}) (async) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0xfffffffc, 0x3, 0x1, 0x0, @sint={0x2, 0x8}}]}) (async) 7m17.009960241s ago: executing program 8 (id=435): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r1, 0x4010aeb5, &(0x7f00000002c0)={0x200}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 7m7.881091664s ago: executing program 8 (id=436): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a82616}) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x5, 0x2, 0x4}}], 0x28}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x80) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffb}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000140)=@attr_arm64={0x0, 0x5, 0x3, &(0x7f0000000080)=0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 6m31.87928318s ago: executing program 51 (id=434): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r2 = eventfd2(0x0, 0x80000) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r2, 0x3}) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x203, 0x0, 0x2, r2, 0xf}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0xfffffffc, 0x3, 0x1, 0x0, @sint={0x2, 0x8}}]}) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) eventfd2(0x0, 0x80000) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r2, 0x3}) (async) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x203, 0x0, 0x2, r2, 0xf}) (async) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0xfffffffc, 0x3, 0x1, 0x0, @sint={0x2, 0x8}}]}) (async) 6m20.279125577s ago: executing program 52 (id=436): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a82616}) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x5, 0x2, 0x4}}], 0x28}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x80) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffb}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000140)=@attr_arm64={0x0, 0x5, 0x3, &(0x7f0000000080)=0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 12.183105224s ago: executing program 1 (id=437): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000140)={0x80, 0x4, 0x0, r3}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000080)={0xd000, 0x37d03030d7b9a616}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x5000}) r4 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 0s ago: executing program 3 (id=438): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r8, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x1, 0x0}) r9 = eventfd2(0x4, 0x80000) r10 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r10, 0x1, 0x100) ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f00000000c0)={r9, 0x3}) write$eventfd(r9, &(0x7f0000000140)=0x3, 0x8) ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xe4) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@arm64={0x5, 0x5, 0x9, '\x00', 0x4}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r12, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vm(r15, 0x4018aee3, &(0x7f00000001c0)=@attr_other={0x0, 0x2, 0x0, 0x0}) mmap$KVM_VCPU(&(0x7f0000de7000/0x3000)=nil, r12, 0x2000009, 0x40010, r13, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000640)=@arm64_core={0x603000000010003c, &(0x7f0000000040)}) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000000080)={0x2, 0x0, [{0x4, 0x2, 0x1, 0x0, @irqchip={0x3, 0x1}}, {0xf, 0x2, 0x0, 0x0, @msi={0xffffffff, 0x2, 0x1, 0x6}}]}) kernel console output (not intermixed with test programs): [ 381.729538][ T3150] 8021q: adding VLAN 0 to HW filter on device bond0 [ 431.700972][ T3150] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:5693' (ED25519) to the list of known hosts. [ 593.389627][ T25] audit: type=1400 audit(592.630:60): avc: denied { name_bind } for pid=3306 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 594.337916][ T25] audit: type=1400 audit(593.570:61): avc: denied { execute } for pid=3307 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 594.366270][ T25] audit: type=1400 audit(593.600:62): avc: denied { execute_no_trans } for pid=3307 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 616.000666][ T25] audit: type=1400 audit(615.240:63): avc: denied { mounton } for pid=3307 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 616.037946][ T25] audit: type=1400 audit(615.270:64): avc: denied { mount } for pid=3307 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 616.126670][ T3307] cgroup: Unknown subsys name 'net' [ 616.220109][ T25] audit: type=1400 audit(615.460:65): avc: denied { unmount } for pid=3307 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 616.859640][ T3307] cgroup: Unknown subsys name 'cpuset' [ 617.070376][ T3307] cgroup: Unknown subsys name 'rlimit' [ 617.987151][ T25] audit: type=1400 audit(617.220:66): avc: denied { setattr } for pid=3307 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 618.011307][ T25] audit: type=1400 audit(617.240:67): avc: denied { mounton } for pid=3307 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 618.029144][ T25] audit: type=1400 audit(617.270:68): avc: denied { mount } for pid=3307 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 619.202118][ T3310] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 619.228119][ T25] audit: type=1400 audit(618.460:69): avc: denied { relabelto } for pid=3310 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.248016][ T25] audit: type=1400 audit(618.480:70): avc: denied { write } for pid=3310 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 619.430056][ T25] audit: type=1400 audit(618.670:71): avc: denied { read } for pid=3307 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.455622][ T25] audit: type=1400 audit(618.680:72): avc: denied { open } for pid=3307 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.499464][ T3307] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 669.398564][ T25] audit: type=1400 audit(668.640:73): avc: denied { execmem } for pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 673.758549][ T25] audit: type=1400 audit(672.990:74): avc: denied { read } for pid=3313 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 673.779087][ T25] audit: type=1400 audit(673.010:75): avc: denied { open } for pid=3313 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 673.844690][ T25] audit: type=1400 audit(673.080:76): avc: denied { mounton } for pid=3313 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 674.128770][ T25] audit: type=1400 audit(673.360:77): avc: denied { module_request } for pid=3314 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 674.154785][ T25] audit: type=1400 audit(673.380:78): avc: denied { module_request } for pid=3313 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 675.258409][ T25] audit: type=1400 audit(674.490:79): avc: denied { sys_module } for pid=3313 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 700.747518][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 700.927586][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 702.938332][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 703.132890][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 716.699370][ T3314] hsr_slave_0: entered promiscuous mode [ 716.757633][ T3314] hsr_slave_1: entered promiscuous mode [ 718.468773][ T3313] hsr_slave_0: entered promiscuous mode [ 718.491542][ T3313] hsr_slave_1: entered promiscuous mode [ 718.510041][ T3313] debugfs: 'hsr0' already exists in 'hsr' [ 718.519298][ T3313] Cannot create hsr debugfs directory [ 723.595793][ T25] audit: type=1400 audit(722.830:80): avc: denied { create } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.644684][ T25] audit: type=1400 audit(722.870:81): avc: denied { write } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.685745][ T25] audit: type=1400 audit(722.920:82): avc: denied { read } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.832168][ T3314] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 724.132659][ T3314] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 724.506333][ T3314] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 724.886661][ T3314] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 726.350087][ T3313] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 726.561859][ T3313] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 726.708102][ T3313] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 726.908340][ T3313] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 739.311775][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 741.839713][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 801.556367][ T3314] veth0_vlan: entered promiscuous mode [ 801.978333][ T3314] veth1_vlan: entered promiscuous mode [ 803.988522][ T3313] veth0_vlan: entered promiscuous mode [ 804.120981][ T3314] veth0_macvtap: entered promiscuous mode [ 804.689159][ T3314] veth1_macvtap: entered promiscuous mode [ 804.787533][ T3313] veth1_vlan: entered promiscuous mode [ 806.926997][ T3350] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 807.046992][ T3350] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 807.066781][ T3350] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 807.071564][ T3350] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 807.472806][ T3313] veth0_macvtap: entered promiscuous mode [ 808.078923][ T3313] veth1_macvtap: entered promiscuous mode [ 809.546055][ T25] audit: type=1400 audit(808.630:83): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 809.824827][ T25] audit: type=1400 audit(809.060:84): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/syzkaller.hFfQhv/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 810.064904][ T25] audit: type=1400 audit(809.290:85): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 810.410125][ T25] audit: type=1400 audit(809.610:86): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/syzkaller.hFfQhv/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 810.498244][ T25] audit: type=1400 audit(809.730:87): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/syzkaller.hFfQhv/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3767 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 810.640194][ T3363] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 810.645671][ T3363] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 810.666768][ T3363] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 810.676689][ T3363] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.267980][ T25] audit: type=1400 audit(810.510:88): avc: denied { unmount } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 811.441915][ T25] audit: type=1400 audit(810.680:89): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 811.572781][ T25] audit: type=1400 audit(810.810:90): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="gadgetfs" ino=3777 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 811.996241][ T25] audit: type=1400 audit(811.230:91): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 812.187021][ T25] audit: type=1400 audit(811.350:92): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 813.387836][ T3314] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 824.155040][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 824.168453][ T25] audit: type=1400 audit(823.380:97): avc: denied { read } for pid=3471 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 824.264878][ T25] audit: type=1400 audit(823.490:98): avc: denied { open } for pid=3471 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 825.212350][ T25] audit: type=1400 audit(824.450:99): avc: denied { ioctl } for pid=3471 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 837.707326][ T25] audit: type=1400 audit(836.890:100): avc: denied { append } for pid=3481 comm="syz.1.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 837.868616][ T25] audit: type=1400 audit(837.050:101): avc: denied { write } for pid=3481 comm="syz.1.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 850.568262][ T25] audit: type=1400 audit(849.800:102): avc: denied { map } for pid=3488 comm="syz.0.5" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 850.659102][ T25] audit: type=1400 audit(849.870:103): avc: denied { execute } for pid=3488 comm="syz.0.5" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 900.797454][ T25] audit: type=1400 audit(899.980:104): avc: denied { execute } for pid=3521 comm="syz.1.14" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4589 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1037.965884][ T25] audit: type=1400 audit(1037.200:105): avc: denied { setattr } for pid=3617 comm="syz.1.44" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1518.519922][ T25] audit: type=1400 audit(1517.750:106): avc: denied { ioctl } for pid=3930 comm="syz.0.146" path="net:[4026532615]" dev="nsfs" ino=4026532615 ioctlcmd=0xb706 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1674.692623][ T21] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1676.547205][ T21] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1677.590770][ T21] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1678.512920][ T21] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1692.482358][ T21] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1692.620251][ T21] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1692.678512][ T21] bond0 (unregistering): Released all slaves [ 1694.135103][ T21] hsr_slave_0: left promiscuous mode [ 1694.241071][ T21] hsr_slave_1: left promiscuous mode [ 1694.645604][ T21] veth1_macvtap: left promiscuous mode [ 1694.649552][ T21] veth0_macvtap: left promiscuous mode [ 1694.667415][ T21] veth1_vlan: left promiscuous mode [ 1694.690089][ T21] veth0_vlan: left promiscuous mode [ 1711.169544][ T21] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1712.082989][ T21] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1713.311230][ T21] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1714.131262][ T21] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1727.758221][ T21] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1728.286390][ T21] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1728.666140][ T21] bond0 (unregistering): Released all slaves [ 1730.344968][ T21] hsr_slave_0: left promiscuous mode [ 1730.403954][ T21] hsr_slave_1: left promiscuous mode [ 1730.717327][ T21] veth1_macvtap: left promiscuous mode [ 1730.720548][ T21] veth0_macvtap: left promiscuous mode [ 1730.736489][ T21] veth1_vlan: left promiscuous mode [ 1730.749312][ T21] veth0_vlan: left promiscuous mode [ 1769.339559][ T4012] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1769.549427][ T4012] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1771.890665][ T4016] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1772.078119][ T4016] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1791.156370][ T4012] hsr_slave_0: entered promiscuous mode [ 1791.238570][ T4012] hsr_slave_1: entered promiscuous mode [ 1794.887929][ T4016] hsr_slave_0: entered promiscuous mode [ 1794.948110][ T4016] hsr_slave_1: entered promiscuous mode [ 1795.000902][ T4016] debugfs: 'hsr0' already exists in 'hsr' [ 1795.004688][ T4016] Cannot create hsr debugfs directory [ 1808.042311][ T4012] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1808.532382][ T4012] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1808.915897][ T4012] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1809.302257][ T4012] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1813.328036][ T4016] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1813.589190][ T4016] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1813.819968][ T4016] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1814.058666][ T4016] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1833.799928][ T4012] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1837.412074][ T4016] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1930.616573][ T4012] veth0_vlan: entered promiscuous mode [ 1931.698558][ T4012] veth1_vlan: entered promiscuous mode [ 1935.986461][ T4012] veth0_macvtap: entered promiscuous mode [ 1936.467821][ T4016] veth0_vlan: entered promiscuous mode [ 1936.990560][ T4012] veth1_macvtap: entered promiscuous mode [ 1938.289571][ T4016] veth1_vlan: entered promiscuous mode [ 1941.196404][ T52] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1941.215446][ T52] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1941.221070][ T52] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1941.222010][ T52] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1942.706276][ T4016] veth0_macvtap: entered promiscuous mode [ 1943.429185][ T4016] veth1_macvtap: entered promiscuous mode [ 1947.364932][ T3363] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1947.371367][ T52] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1947.401141][ T52] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1947.450886][ T3363] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2090.966121][ T21] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2092.871353][ T21] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2094.411357][ T21] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2096.357051][ T21] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2119.857814][ T21] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2120.095798][ T21] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2120.218675][ T21] bond0 (unregistering): Released all slaves [ 2121.896564][ T21] hsr_slave_0: left promiscuous mode [ 2121.965330][ T21] hsr_slave_1: left promiscuous mode [ 2122.426491][ T21] veth1_macvtap: left promiscuous mode [ 2122.430114][ T21] veth0_macvtap: left promiscuous mode [ 2122.455889][ T21] veth1_vlan: left promiscuous mode [ 2122.477542][ T21] veth0_vlan: left promiscuous mode [ 2143.066197][ T21] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2144.206481][ T21] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2145.318750][ T21] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2146.430611][ T21] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2166.138295][ T21] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2166.334878][ T21] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2166.537416][ T21] bond0 (unregistering): Released all slaves [ 2169.880683][ T21] hsr_slave_0: left promiscuous mode [ 2170.085952][ T21] hsr_slave_1: left promiscuous mode [ 2170.817689][ T21] veth1_macvtap: left promiscuous mode [ 2170.838495][ T21] veth0_macvtap: left promiscuous mode [ 2170.855651][ T21] veth1_vlan: left promiscuous mode [ 2170.871147][ T21] veth0_vlan: left promiscuous mode [ 2203.035820][ T4321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2203.269842][ T4321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2206.767688][ T4318] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2207.002040][ T4318] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2233.056327][ T4321] hsr_slave_0: entered promiscuous mode [ 2233.160291][ T4321] hsr_slave_1: entered promiscuous mode [ 2236.725956][ T4318] hsr_slave_0: entered promiscuous mode [ 2236.745792][ T4318] hsr_slave_1: entered promiscuous mode [ 2236.762828][ T4318] debugfs: 'hsr0' already exists in 'hsr' [ 2236.784416][ T4318] Cannot create hsr debugfs directory [ 2249.862933][ T4321] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 2250.440926][ T4321] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 2250.952267][ T4321] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 2251.541171][ T4321] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 2256.346002][ T4318] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 2256.837092][ T4318] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 2257.359101][ T4318] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 2257.861403][ T4318] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 2282.059891][ T4321] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2288.719558][ T4318] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2414.315960][ T4321] veth0_vlan: entered promiscuous mode [ 2415.529944][ T4321] veth1_vlan: entered promiscuous mode [ 2419.412616][ T4321] veth0_macvtap: entered promiscuous mode [ 2420.789123][ T4321] veth1_macvtap: entered promiscuous mode [ 2422.176978][ T4318] veth0_vlan: entered promiscuous mode [ 2424.160358][ T4318] veth1_vlan: entered promiscuous mode [ 2426.607315][ T3843] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2426.611190][ T3843] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2426.625649][ T3843] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2426.639979][ T3843] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2429.952909][ T4318] veth0_macvtap: entered promiscuous mode [ 2431.010368][ T4318] veth1_macvtap: entered promiscuous mode [ 2434.925768][ T3363] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2434.972932][ T3363] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2435.060538][ T3363] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2435.095829][ T4328] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2614.347970][ T4328] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2616.645897][ T4328] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2619.310164][ T4328] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2620.810371][ T4328] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2647.576576][ T4328] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2647.886572][ T4328] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2648.140970][ T4328] bond0 (unregistering): Released all slaves [ 2653.057165][ T4328] hsr_slave_0: left promiscuous mode [ 2653.329206][ T4328] hsr_slave_1: left promiscuous mode [ 2654.385233][ T4328] veth1_macvtap: left promiscuous mode [ 2654.386534][ T4328] veth0_macvtap: left promiscuous mode [ 2654.406835][ T4328] veth1_vlan: left promiscuous mode [ 2654.408358][ T4328] veth0_vlan: left promiscuous mode [ 2680.380072][ T4328] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2681.822245][ T4328] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2683.327992][ T4328] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2684.790094][ T4328] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2713.068879][ T4328] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2713.275644][ T4328] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2713.389711][ T4328] bond0 (unregistering): Released all slaves [ 2715.560682][ T4328] hsr_slave_0: left promiscuous mode [ 2715.647152][ T4328] hsr_slave_1: left promiscuous mode [ 2716.375802][ T4328] veth1_macvtap: left promiscuous mode [ 2716.380332][ T4328] veth0_macvtap: left promiscuous mode [ 2716.418829][ T4328] veth1_vlan: left promiscuous mode [ 2716.430178][ T4328] veth0_vlan: left promiscuous mode [ 2735.282484][ T4635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2736.609948][ T4635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2753.791194][ T4650] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2754.151604][ T4650] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2772.468933][ T4635] hsr_slave_0: entered promiscuous mode [ 2772.568548][ T4635] hsr_slave_1: entered promiscuous mode [ 2788.206260][ T4650] hsr_slave_0: entered promiscuous mode [ 2788.288491][ T4650] hsr_slave_1: entered promiscuous mode [ 2788.339296][ T4650] debugfs: 'hsr0' already exists in 'hsr' [ 2788.342150][ T4650] Cannot create hsr debugfs directory [ 2792.177932][ T4635] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 2792.552258][ T4635] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 2793.929365][ T4635] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 2794.152843][ T4635] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 2807.007500][ T4650] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 2807.501356][ T4650] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 2807.897196][ T4650] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 2808.237548][ T4650] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 2830.312924][ T4635] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2844.108903][ T4650] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2980.890267][ T4635] veth0_vlan: entered promiscuous mode [ 2982.026997][ T4635] veth1_vlan: entered promiscuous mode [ 2985.366419][ T4635] veth0_macvtap: entered promiscuous mode [ 2985.927050][ T4635] veth1_macvtap: entered promiscuous mode [ 2989.344716][ T4328] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2989.361836][ T4328] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2989.426849][ T4328] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2989.430793][ T4328] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2997.148339][ T4650] veth0_vlan: entered promiscuous mode [ 2998.817984][ T4650] veth1_vlan: entered promiscuous mode [ 3003.099869][ T4650] veth0_macvtap: entered promiscuous mode [ 3003.850082][ T4650] veth1_macvtap: entered promiscuous mode [ 3009.006406][ T3843] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3009.015970][ T3843] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3009.052228][ T3843] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3009.137520][ T21] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3556.489035][ T4029] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3558.319545][ T4029] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3560.328953][ T4029] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3562.838390][ T4029] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3591.332283][ T4029] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3591.736569][ T4029] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3591.934991][ T4029] bond0 (unregistering): Released all slaves [ 3596.868295][ T4029] hsr_slave_0: left promiscuous mode [ 3597.116369][ T4029] hsr_slave_1: left promiscuous mode [ 3598.710397][ T4029] veth1_macvtap: left promiscuous mode [ 3598.774644][ T4029] veth0_macvtap: left promiscuous mode [ 3598.787842][ T4029] veth1_vlan: left promiscuous mode [ 3598.789353][ T4029] veth0_vlan: left promiscuous mode [ 3638.672913][ T4029] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3640.482314][ T4029] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3641.950214][ T4029] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3642.957650][ T4029] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3672.176547][ T4029] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3672.549378][ T4029] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3672.797285][ T4029] bond0 (unregistering): Released all slaves [ 3675.248336][ T4029] hsr_slave_0: left promiscuous mode [ 3675.410976][ T4029] hsr_slave_1: left promiscuous mode [ 3675.908664][ T4029] veth1_macvtap: left promiscuous mode [ 3675.946337][ T4029] veth0_macvtap: left promiscuous mode [ 3675.966856][ T4029] veth1_vlan: left promiscuous mode [ 3675.998203][ T4029] veth0_vlan: left promiscuous mode [ 3741.340069][ T5158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3741.740105][ T5158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3745.961663][ T5161] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3746.356819][ T5161] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3776.970942][ T5158] hsr_slave_0: entered promiscuous mode [ 3777.089098][ T5158] hsr_slave_1: entered promiscuous mode [ 3782.821086][ T5161] hsr_slave_0: entered promiscuous mode [ 3782.910542][ T5161] hsr_slave_1: entered promiscuous mode [ 3782.975068][ T5161] debugfs: 'hsr0' already exists in 'hsr' [ 3782.987164][ T5161] Cannot create hsr debugfs directory [ 3804.520687][ T5158] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 3805.397721][ T5158] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 3806.236012][ T5158] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 3807.689902][ T5158] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 3813.261345][ T5161] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 3813.772133][ T5161] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 3814.425028][ T5161] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 3814.950504][ T5161] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 3848.580150][ T5158] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3856.272178][ T5161] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4030.246252][ T5158] veth0_vlan: entered promiscuous mode [ 4031.697318][ T5158] veth1_vlan: entered promiscuous mode [ 4037.878690][ T5158] veth0_macvtap: entered promiscuous mode [ 4038.732457][ T5161] veth0_vlan: entered promiscuous mode [ 4039.100331][ T5158] veth1_macvtap: entered promiscuous mode [ 4041.499259][ T5161] veth1_vlan: entered promiscuous mode [ 4045.849489][ T5155] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4045.868495][ T5155] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4045.906918][ T21] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4046.055278][ T4328] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4050.411458][ T5161] veth0_macvtap: entered promiscuous mode [ 4052.215834][ T5161] veth1_macvtap: entered promiscuous mode [ 4058.510153][ T4654] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4058.534828][ T5187] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4058.695173][ T4550] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4058.697386][ T4550] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4885.689753][ T5166] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4890.142054][ T5166] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4892.549032][ T5166] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4894.916055][ T5166] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4927.026658][ T5166] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4927.300437][ T5166] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4927.651303][ T5166] bond0 (unregistering): Released all slaves [ 4933.076847][ T5166] hsr_slave_0: left promiscuous mode [ 4933.286711][ T5166] hsr_slave_1: left promiscuous mode [ 4934.612043][ T5166] veth1_macvtap: left promiscuous mode [ 4934.688858][ T5166] veth0_macvtap: left promiscuous mode [ 4934.780154][ T5166] veth1_vlan: left promiscuous mode [ 4934.821708][ T5166] veth0_vlan: left promiscuous mode [ 4979.210531][ T5164] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4981.346931][ T5164] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4983.209832][ T5164] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4985.231052][ T5164] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5016.944570][ T5164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5017.292075][ T5164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5017.638191][ T5164] bond0 (unregistering): Released all slaves [ 5020.556734][ T5164] hsr_slave_0: left promiscuous mode [ 5020.626322][ T5164] hsr_slave_1: left promiscuous mode [ 5021.474406][ T5164] veth1_macvtap: left promiscuous mode [ 5021.477717][ T5164] veth0_macvtap: left promiscuous mode [ 5021.496331][ T5164] veth1_vlan: left promiscuous mode [ 5021.516059][ T5164] veth0_vlan: left promiscuous mode [ 5106.962689][ T5761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5107.432253][ T5761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5112.758099][ T5765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5113.317337][ T5765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5155.302313][ T5761] hsr_slave_0: entered promiscuous mode [ 5155.380269][ T5761] hsr_slave_1: entered promiscuous mode [ 5160.780694][ T5765] hsr_slave_0: entered promiscuous mode [ 5160.890337][ T5765] hsr_slave_1: entered promiscuous mode [ 5161.017612][ T5765] debugfs: 'hsr0' already exists in 'hsr' [ 5161.020946][ T5765] Cannot create hsr debugfs directory [ 5207.257411][ T5761] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 5208.081752][ T5761] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 5208.956257][ T5761] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 5210.725171][ T5761] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 5215.722778][ T5765] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 5216.246164][ T5765] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 5216.689600][ T5765] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 5217.246789][ T5765] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 5255.217235][ T5761] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5261.252520][ T5765] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5406.710192][ T5761] veth0_vlan: entered promiscuous mode [ 5408.312785][ T5761] veth1_vlan: entered promiscuous mode [ 5414.139011][ T5765] veth0_vlan: entered promiscuous mode [ 5414.471282][ T5761] veth0_macvtap: entered promiscuous mode [ 5416.146310][ T5761] veth1_macvtap: entered promiscuous mode [ 5417.408525][ T5765] veth1_vlan: entered promiscuous mode [ 5422.854955][ T5483] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5422.859782][ T5483] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5423.080242][ T5483] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5423.087051][ T5483] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5425.752218][ T5765] veth0_macvtap: entered promiscuous mode [ 5427.290353][ T5765] veth1_macvtap: entered promiscuous mode [ 5434.366382][ T4550] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5434.370053][ T4550] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5434.598456][ T4550] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5434.665330][ T5164] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5595.185166][ T4019] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5597.768727][ T4019] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5601.042653][ T4019] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5604.061550][ T4019] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5643.111376][ T4019] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5643.507653][ T4019] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5643.799669][ T4019] bond0 (unregistering): Released all slaves [ 5647.518398][ T4019] hsr_slave_0: left promiscuous mode [ 5647.684406][ T4019] hsr_slave_1: left promiscuous mode [ 5648.679806][ T4019] veth1_macvtap: left promiscuous mode [ 5648.700001][ T4019] veth0_macvtap: left promiscuous mode [ 5648.737028][ T4019] veth1_vlan: left promiscuous mode [ 5648.770075][ T4019] veth0_vlan: left promiscuous mode [ 5696.426157][ T4550] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5698.599276][ T4550] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5700.777366][ T4550] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5704.396719][ T4550] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5740.830907][ T4550] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5741.856911][ T4550] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5742.432932][ T4550] bond0 (unregistering): Released all slaves [ 5746.586819][ T4550] hsr_slave_0: left promiscuous mode [ 5746.707364][ T4550] hsr_slave_1: left promiscuous mode [ 5747.567069][ T4550] veth1_macvtap: left promiscuous mode [ 5747.595111][ T4550] veth0_macvtap: left promiscuous mode [ 5747.601200][ T4550] veth1_vlan: left promiscuous mode [ 5747.640668][ T4550] veth0_vlan: left promiscuous mode [ 5784.400737][ T6029] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5784.891736][ T6033] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5785.320928][ T6029] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5785.712209][ T6033] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5824.382248][ T6033] hsr_slave_0: entered promiscuous mode [ 5824.449465][ T6033] hsr_slave_1: entered promiscuous mode [ 5827.857726][ T6029] hsr_slave_0: entered promiscuous mode [ 5827.961250][ T6029] hsr_slave_1: entered promiscuous mode [ 5827.992679][ T6029] debugfs: 'hsr0' already exists in 'hsr' [ 5828.094258][ T6029] Cannot create hsr debugfs directory [ 5869.547684][ T6033] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 5870.096409][ T6033] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 5870.597349][ T6033] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 5871.032836][ T6033] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 5876.952776][ T6029] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 5877.410173][ T6029] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 5877.969767][ T6029] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 5878.407491][ T6029] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 5908.756629][ T6033] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5916.011532][ T6029] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6043.490729][ T6033] veth0_vlan: entered promiscuous mode [ 6044.807144][ T6033] veth1_vlan: entered promiscuous mode [ 6049.977443][ T6033] veth0_macvtap: entered promiscuous mode [ 6050.168717][ T6029] veth0_vlan: entered promiscuous mode [ 6050.853958][ T6033] veth1_macvtap: entered promiscuous mode [ 6052.121803][ T6029] veth1_vlan: entered promiscuous mode [ 6055.720655][ T3350] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6055.724425][ T3350] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6055.742669][ T3350] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6055.772371][ T3350] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6058.316857][ T6029] veth0_macvtap: entered promiscuous mode [ 6059.344703][ T6029] veth1_macvtap: entered promiscuous mode [ 6064.341151][ T3843] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6064.348957][ T3843] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6064.418892][ T5187] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6064.496594][ T4654] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6190.858467][ T5164] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6193.142581][ T5164] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6195.257141][ T5164] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6197.456942][ T5164] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6224.294656][ T5164] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6225.290262][ T5164] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6225.837821][ T5164] bond0 (unregistering): Released all slaves [ 6228.676218][ T5164] hsr_slave_0: left promiscuous mode [ 6228.775955][ T5164] hsr_slave_1: left promiscuous mode [ 6229.419536][ T5164] veth1_macvtap: left promiscuous mode [ 6229.439827][ T5164] veth0_macvtap: left promiscuous mode [ 6229.446470][ T5164] veth1_vlan: left promiscuous mode [ 6229.468813][ T5164] veth0_vlan: left promiscuous mode [ 6256.928165][ T21] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6258.700889][ T21] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6260.141205][ T21] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6261.469659][ T21] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6287.088861][ T21] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6287.259458][ T21] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6287.329808][ T21] bond0 (unregistering): Released all slaves [ 6289.066326][ T21] hsr_slave_0: left promiscuous mode [ 6289.127798][ T21] hsr_slave_1: left promiscuous mode [ 6289.608131][ T21] veth1_macvtap: left promiscuous mode [ 6289.611417][ T21] veth0_macvtap: left promiscuous mode [ 6289.645571][ T21] veth1_vlan: left promiscuous mode [ 6289.658088][ T21] veth0_vlan: left promiscuous mode [ 6352.232088][ T6328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6353.106594][ T6328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6354.549336][ T6331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6355.652069][ T6331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6390.140156][ T6328] hsr_slave_0: entered promiscuous mode [ 6390.198215][ T6328] hsr_slave_1: entered promiscuous mode [ 6394.398419][ T6331] hsr_slave_0: entered promiscuous mode [ 6394.468344][ T6331] hsr_slave_1: entered promiscuous mode [ 6394.600075][ T6331] debugfs: 'hsr0' already exists in 'hsr' [ 6394.615673][ T6331] Cannot create hsr debugfs directory [ 6426.899260][ T6328] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 6427.438568][ T6328] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 6427.830886][ T6328] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 6428.302749][ T6328] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 6435.082384][ T6331] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 6435.541962][ T6331] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 6436.071955][ T6331] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 6437.037157][ T6331] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 6465.770350][ T6328] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6471.532746][ T6331] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6607.220965][ T6328] veth0_vlan: entered promiscuous mode [ 6608.086208][ T6328] veth1_vlan: entered promiscuous mode [ 6612.206716][ T6328] veth0_macvtap: entered promiscuous mode [ 6613.689716][ T6328] veth1_macvtap: entered promiscuous mode [ 6614.396492][ T6331] veth0_vlan: entered promiscuous mode [ 6616.415991][ T6331] veth1_vlan: entered promiscuous mode [ 6619.430242][ T5164] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6619.438357][ T5758] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6619.440124][ T5758] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6619.440913][ T5758] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6623.610810][ T6331] veth0_macvtap: entered promiscuous mode [ 6624.790153][ T6331] veth1_macvtap: entered promiscuous mode [ 6629.575203][ T4030] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6629.595433][ T4030] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6629.614778][ T4030] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6629.615822][ T4030] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6691.306523][ T6614] debugfs: 'vgic-its-state@8080000' already exists in '6614-4' [ 7129.918212][ T5166] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7133.610368][ T5166] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7135.661194][ T5166] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7137.338191][ T5166] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7164.126753][ T5166] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7164.861228][ T5166] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7165.775890][ T5166] bond0 (unregistering): Released all slaves [ 7169.161577][ T5166] hsr_slave_0: left promiscuous mode [ 7169.226805][ T5166] hsr_slave_1: left promiscuous mode [ 7170.335656][ T5166] veth1_macvtap: left promiscuous mode [ 7170.336990][ T5166] veth0_macvtap: left promiscuous mode [ 7170.358984][ T5166] veth1_vlan: left promiscuous mode [ 7170.360513][ T5166] veth0_vlan: left promiscuous mode [ 7206.872552][ T5166] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7208.182941][ T5166] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7209.160175][ T5166] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7210.531212][ T5166] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7239.360074][ T5166] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7239.615226][ T5166] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7239.830212][ T5166] bond0 (unregistering): Released all slaves [ 7242.424373][ T5166] hsr_slave_0: left promiscuous mode [ 7242.514635][ T5166] hsr_slave_1: left promiscuous mode [ 7243.027453][ T5166] veth1_macvtap: left promiscuous mode [ 7243.034052][ T5166] veth0_macvtap: left promiscuous mode [ 7243.056610][ T5166] veth1_vlan: left promiscuous mode [ 7243.087071][ T5166] veth0_vlan: left promiscuous mode [ 7292.999563][ T6836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7293.386105][ T6836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7300.575868][ T6844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7300.792725][ T6844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7323.587159][ T6836] hsr_slave_0: entered promiscuous mode [ 7323.649935][ T6836] hsr_slave_1: entered promiscuous mode [ 7329.871843][ T6844] hsr_slave_0: entered promiscuous mode [ 7329.927701][ T6844] hsr_slave_1: entered promiscuous mode [ 7329.995123][ T6844] debugfs: 'hsr0' already exists in 'hsr' [ 7330.007570][ T6844] Cannot create hsr debugfs directory [ 7357.708300][ T6836] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 7359.579273][ T6836] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 7360.976523][ T6836] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 7361.612531][ T6836] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 7369.220232][ T6844] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 7369.792561][ T6844] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 7370.430357][ T6844] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 7370.782798][ T6844] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 7388.621005][ T6836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7397.969803][ T6844] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7512.142011][ T6836] veth0_vlan: entered promiscuous mode [ 7513.067186][ T6836] veth1_vlan: entered promiscuous mode [ 7516.391633][ T6836] veth0_macvtap: entered promiscuous mode [ 7517.065816][ T6836] veth1_macvtap: entered promiscuous mode [ 7521.568836][ T5155] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7521.634949][ T4654] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7521.645108][ T21] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7521.650199][ T21] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7522.208044][ T6844] veth0_vlan: entered promiscuous mode [ 7524.366042][ T6844] veth1_vlan: entered promiscuous mode [ 7529.311489][ T6844] veth0_macvtap: entered promiscuous mode [ 7529.958114][ T6844] veth1_macvtap: entered promiscuous mode [ 7533.834635][ T5187] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7534.017488][ T5187] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7534.021267][ T5187] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7534.050238][ T5187] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7746.091358][ T4550] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7748.169440][ T4550] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7750.182881][ T4550] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7752.020016][ T4550] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7785.749978][ T4550] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7786.395923][ T4550] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7786.768156][ T4550] bond0 (unregistering): Released all slaves [ 7789.865680][ T4550] hsr_slave_0: left promiscuous mode [ 7789.986271][ T4550] hsr_slave_1: left promiscuous mode [ 7790.783896][ T4550] veth1_macvtap: left promiscuous mode [ 7790.790934][ T4550] veth0_macvtap: left promiscuous mode [ 7790.825539][ T4550] veth1_vlan: left promiscuous mode [ 7790.864911][ T4550] veth0_vlan: left promiscuous mode [ 7890.161214][ T7217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7890.630051][ T7217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7931.778660][ T7217] hsr_slave_0: entered promiscuous mode [ 7931.859378][ T7217] hsr_slave_1: entered promiscuous mode [ 7967.749767][ T7217] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 7968.698662][ T7217] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 7969.460345][ T7217] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 7970.201346][ T7217] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 8005.479864][ T7217] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8016.052404][ T6846] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8018.118884][ T6846] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8020.054977][ T6846] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8021.946871][ T6846] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8044.785918][ T6846] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 8045.515106][ T6846] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 8045.858920][ T6846] bond0 (unregistering): Released all slaves [ 8048.335119][ T6846] hsr_slave_0: left promiscuous mode [ 8048.416139][ T6846] hsr_slave_1: left promiscuous mode [ 8049.120269][ T6846] veth1_macvtap: left promiscuous mode [ 8049.121568][ T6846] veth0_macvtap: left promiscuous mode [ 8049.129708][ T6846] veth1_vlan: left promiscuous mode [ 8049.131139][ T6846] veth0_vlan: left promiscuous mode [ 8126.992042][ T7379] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8127.392542][ T7379] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8159.018575][ T7379] hsr_slave_0: entered promiscuous mode [ 8159.077862][ T7379] hsr_slave_1: entered promiscuous mode [ 8159.111017][ T7379] debugfs: 'hsr0' already exists in 'hsr' [ 8159.114759][ T7379] Cannot create hsr debugfs directory [ 8184.955006][ T7379] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 8185.854729][ T7379] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 8186.366344][ T7217] veth0_vlan: entered promiscuous mode [ 8186.542589][ T7379] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 8187.195553][ T7379] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 8189.388623][ T7217] veth1_vlan: entered promiscuous mode [ 8193.575677][ T7217] veth0_macvtap: entered promiscuous mode [ 8194.041281][ T7217] veth1_macvtap: entered promiscuous mode [ 8197.416047][ T21] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 8197.422409][ T21] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 8197.619583][ T21] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 8197.626459][ T21] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 8221.990041][ T7379] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8280.597906][ T6790] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8282.170936][ T6790] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8283.789067][ T6790] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8285.010283][ T6790] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8307.817837][ T6790] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 8308.161177][ T6790] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 8308.507620][ T6790] bond0 (unregistering): Released all slaves [ 8311.244798][ T6790] hsr_slave_0: left promiscuous mode [ 8311.345246][ T6790] hsr_slave_1: left promiscuous mode [ 8312.127346][ T6790] veth1_macvtap: left promiscuous mode [ 8312.145200][ T6790] veth0_macvtap: left promiscuous mode [ 8312.167546][ T6790] veth1_vlan: left promiscuous mode [ 8312.171339][ T6790] veth0_vlan: left promiscuous mode [ 8383.401135][ T7543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8383.652851][ T7543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8389.707242][ T7379] veth0_vlan: entered promiscuous mode [ 8390.488206][ T7379] veth1_vlan: entered promiscuous mode [ 8392.992060][ T7379] veth0_macvtap: entered promiscuous mode [ 8393.407940][ T7379] veth1_macvtap: entered promiscuous mode [ 8396.060134][ T7389] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 8396.076691][ T7389] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 8396.105954][ T7389] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 8396.124689][ T7389] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 8417.022736][ T7543] hsr_slave_0: entered promiscuous mode [ 8417.168722][ T7543] hsr_slave_1: entered promiscuous mode [ 8449.432982][ T7543] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 8449.799955][ T7543] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 8450.112253][ T7543] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 8450.541536][ T7543] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 8478.856059][ T7543] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8596.989369][ T7543] veth0_vlan: entered promiscuous mode [ 8598.046279][ T7543] veth1_vlan: entered promiscuous mode [ 8601.456302][ T7543] veth0_macvtap: entered promiscuous mode [ 8602.057122][ T7543] veth1_macvtap: entered promiscuous mode [ 8606.036207][ T7389] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 8606.037572][ T7389] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 8606.057410][ T7389] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 8606.074889][ T7389] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 8857.560715][ T7888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8858.028581][ T7888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8869.851282][ T7897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8870.168697][ T7897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8895.812608][ T7888] hsr_slave_0: entered promiscuous mode [ 8895.952663][ T7888] hsr_slave_1: entered promiscuous mode [ 8896.075848][ T7888] debugfs: 'hsr0' already exists in 'hsr' [ 8896.111940][ T7888] Cannot create hsr debugfs directory [ 8910.159172][ T7897] hsr_slave_0: entered promiscuous mode [ 8910.236759][ T7897] hsr_slave_1: entered promiscuous mode [ 8910.251648][ T7897] debugfs: 'hsr0' already exists in 'hsr' [ 8910.314445][ T7897] Cannot create hsr debugfs directory [ 8937.046363][ T7888] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 8938.567987][ T7888] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 8939.311197][ T7888] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 8940.556679][ T7888] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 8950.992782][ T7897] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 8951.512710][ T7897] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 8951.978548][ T7897] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 8952.608804][ T7897] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 8979.091788][ T7888] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8989.726399][ T7897] 8021q: adding VLAN 0 to HW filter on device bond0 [ 9114.141257][ T7888] veth0_vlan: entered promiscuous mode [ 9115.338485][ T7888] veth1_vlan: entered promiscuous mode [ 9119.146773][ T7888] veth0_macvtap: entered promiscuous mode [ 9119.747087][ T7888] veth1_macvtap: entered promiscuous mode [ 9124.866894][ T4030] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 9124.878116][ T4030] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 9124.930650][ T4030] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 9124.949204][ T4030] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 9124.957908][ T7897] veth0_vlan: entered promiscuous mode [ 9127.346895][ T7897] veth1_vlan: entered promiscuous mode [ 9132.889278][ T7897] veth0_macvtap: entered promiscuous mode [ 9133.948494][ T7897] veth1_macvtap: entered promiscuous mode [ 9138.590893][ T5155] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 9138.737277][ T8031] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 9138.769694][ T8031] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 9138.780208][ T8031] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 9176.281742][ T27] INFO: task syz.8.436:7871 blocked for more than 430 seconds. [ 9176.282899][ T27] Not tainted syzkaller #0 [ 9176.284883][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 9176.285410][ T27] task:syz.8.436 state:D stack:0 pid:7871 tgid:7871 ppid:7379 task_flags:0x400040 flags:0x00000019 [ 9176.286847][ T27] Call trace: [ 9176.287328][ T27] __switch_to+0x584/0xb20 (T) [ 9176.289376][ T27] __schedule+0x1eec/0x33a4 [ 9176.289967][ T27] schedule+0xac/0x27c [ 9176.290448][ T27] schedule_timeout+0x5c/0x1e4 [ 9176.290907][ T27] do_wait_for_common+0x28c/0x444 [ 9176.291388][ T27] wait_for_completion+0x44/0x5c [ 9176.291893][ T27] __synchronize_srcu+0x2a4/0x320 [ 9176.292343][ T27] synchronize_srcu+0x3cc/0x4f0 [ 9176.292812][ T27] mmu_notifier_unregister+0x320/0x42c SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 9176.428419][ T27] kvm_put_kvm+0x6a0/0xfa8 [ 9176.429009][ T27] kvm_vm_release+0x58/0x78 [ 9176.429531][ T27] __fput+0x4ac/0x980 [ 9176.429985][ T27] ____fput+0x20/0x58 [ 9176.430415][ T27] task_work_run+0x1bc/0x254 [ 9176.430862][ T27] do_notify_resume+0x1bc/0x270 [ 9176.431297][ T27] el0_svc+0xb8/0x164 [ 9176.431727][ T27] el0t_64_sync_handler+0x84/0x12c [ 9176.432146][ T27] el0t_64_sync+0x198/0x19c [ 9176.489095][ T27] [ 9176.489095][ T27] Showing all locks held in the system: [ 9176.516429][ T27] 1 lock held by khungtaskd/27: [ 9176.524779][ T27] #0: ffff800087806858 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 9176.527515][ T27] 2 locks held by getty/3178: [ 9176.527925][ T27] #0: ccf0000011d828a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 9176.529609][ T27] #1: d9ff80008c54b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x12b8 [ 9176.531206][ T27] 1 lock held by sshd-session/3306: [ 9176.531539][ T27] 2 locks held by syz-executor/3307: [ 9176.531856][ T27] 3 locks held by kworker/u4:3/5155: [ 9176.532229][ T27] 2 locks held by syz.0.434/7862: [ 9176.532588][ T27] 1 lock held by dhcpcd-run-hook/8125: [ 9176.533070][ T27] [ 9176.645818][ T27] ============================================= [ 9176.645818][ T27] [ 9176.646770][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 9176.651075][ T27] CPU: 0 UID: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 9176.652422][ T27] Hardware name: linux,dummy-virt (DT) [ 9176.653387][ T27] Call trace: [ 9176.654169][ T27] show_stack+0x2c/0x3c (C) [ 9176.655105][ T27] __dump_stack+0x30/0x40 [ 9176.655892][ T27] dump_stack_lvl+0x30/0x12c [ 9176.656691][ T27] dump_stack+0x1c/0x28 [ 9176.657500][ T27] vpanic+0x22c/0x59c [ 9176.658259][ T27] vpanic+0x0/0x59c [ 9176.659034][ T27] hung_task_panic+0x0/0x2c [ 9176.659750][ T27] kthread+0x794/0x9a0 [ 9176.660565][ T27] ret_from_fork+0x10/0x20 [ 9176.662363][ T27] Kernel Offset: disabled [ 9176.663050][ T27] CPU features: 0x000000,0001a300,5f7c67c1,057ffe1f [ 9176.664072][ T27] Memory Limit: none [ 9176.666368][ T27] Rebooting in 86400 seconds.. VM DIAGNOSIS: 00:29:01 Registers: info registers vcpu 0 CPU#0 PC=ffff800082f2e8b8 X00=0000000000000000 X01=a1f00000146db628 X02=0000000000000000 X03=0000000000000000 X04=00000000ffffffff X05=0000000000000001 X06=0000000000000000 X07=ffff800080caffec X08=66f000000d9b9d80 X09=0000000000000000 X10=0000000000ff0100 X11=00000000000000a1 X12=0000000000ff0100 X13=00000000f8000000 X14=0000000000000000 X15=ffff800080007680 X16=ffff800080010e20 X17=00000000000000da X18=00000000000000ff X19=efff800000000000 X20=00000000000000a1 X21=a1f00000146db6ba X22=0000000000000040 X23=59f00000145722c0 X24=f6f0000010dec000 X25=a1f00000146db600 X26=a1f00000146db6d8 X27=00000000000000a1 X28=a1f00000146db670 X29=ffff8000800079d0 X30=ffff800085590f30 SP=ffff800080007990 PSTATE=40402009 -Z-- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=2018181818181810:20003b7c2629280a Z02=0000000000000000:00cc000000000033 Z03=0000000000000000:00000000000000ff Z04=3333333333333333:3333333333333333 Z05=0000000000000000:000000000c000003 Z06=0000ffffbed82a98:0000000000000000 Z07=0000000000000000:0000000000000000 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000 Z17=0000000000000000:0000000000000000 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000