last executing test programs:

1h10m40.372591685s ago: executing program 1 (id=573):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0)
r5 = syz_kvm_vgic_v3_setup(r2, 0x2, 0x100)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000200)=@attr_arm64={0x0, 0x5, 0x0, 0x0})
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20000, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r9, 0x400454de, 0x110f22fffb)
r10 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, <r13=>0xffffffffffffffff, 0x1})
write$eventfd(r13, &(0x7f00000001c0)=0x3, 0xfdef)
r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r15 = ioctl$KVM_CREATE_VM(r14, 0x80111500, 0x20000000)
write$eventfd(r15, &(0x7f0000000040), 0x8)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04)
syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_send_cmd={0xaa, 0x28, {0x6, 0x1, 0x1, 0xb, 0x0, 0x3d}}], 0x28}, 0x0, 0x0)
r16 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r16, 0x80811501, 0x20000000)
syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r6, 0x2, 0x100)
ioctl$KVM_GET_DEVICE_ATTR_vm(r6, 0x4018aee2, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000040)={0x10000, 0xff, 0x2}})

1h10m26.271497254s ago: executing program 1 (id=576):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r3, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5}) (async)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5})
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c807, &(0x7f0000000240)=0x2}) (async)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c807, &(0x7f0000000240)=0x2})
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000)
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000500)={0x0, &(0x7f00000009c0)=[@smc={0x1e, 0x40, {0xc4000012, [0x10005, 0xffe, 0x7, 0x1, 0x10000]}}, @eret={0xe6, 0x18, 0x2f63}, @svc={0x122, 0x40, {0x4000000, [0x1438100000000000, 0x71b, 0x80000000, 0xfffffffffffffffe, 0x1000]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x8, 0xa5, 0x7}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x80, 0x6, 0x8}}, @smc={0x1e, 0x40, {0x8600ff01, [0x40, 0xee00000000000004, 0xb2, 0x10001, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013dea7}}, @svc={0x122, 0x40, {0x80000002, [0x8, 0x1, 0x7, 0x80000009]}}, @smc={0x1e, 0x40, {0x80000000, [0x7, 0x9, 0xd, 0x4, 0x1]}}], 0x1d0}, &(0x7f0000000540)=[@featur2={0x1, 0x3e}], 0x1)
ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000005c0)=@arm64_fw={0x6030000000140001, &(0x7f0000000580)=0x4})
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000)
openat$kvm(0x0, &(0x7f00000001c0), 0xc03, 0x0) (async)
r6 = openat$kvm(0x0, &(0x7f00000001c0), 0xc03, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x48}], 0x1)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x0) (async)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r9, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0})
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
munmap(&(0x7f000075a000/0xb000)=nil, 0xb000)
munmap$KVM_VCPU(0x0, 0x1000000000)
r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
close(r10) (async)
close(r10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x600802, 0x0) (async)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x600802, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r1, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000}) (async)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r1, 0x4068aea3, &(0x7f0000000040)={0xe4, 0x0, 0x1000})
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a89000/0x400000)=nil)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1h10m19.283042975s ago: executing program 0 (id=577):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x8)
ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000000)={0x4, 0x54000, 0x1, 0xffffffffffffffff, 0xa})
r1 = syz_kvm_vgic_v3_setup(r0, 0x4, 0x200)
ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x3, 0x0, &(0x7f0000000040)})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000600)={0x0, &(0x7f00000000c0)=[@hvc={0x32, 0x40, {0x10, [0x973f, 0x8, 0x80000000, 0x7595, 0xfff]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x280, 0x2, 0xa}}, @irq_setup={0x46, 0x18, {0x1, 0x34d}}, @mrs={0xbe, 0x18, {0x603000000013c4f2}}, @hvc={0x32, 0x40, {0x30000000, [0x8, 0x9, 0xfffffffffffffff7, 0xffffffffffffff6e, 0x4]}}, @smc={0x1e, 0x40, {0x2000000, [0x21a, 0xfffffffffffffffc, 0x3, 0xc8, 0x7]}}, @svc={0x122, 0x40, {0x84000005, [0xffffffffffffffff, 0x8, 0x3, 0xffff, 0x9]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x1, 0x4, 0xbe, 0xc, 0x3}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x80, 0x9, 0x21ddd1764698bc14}}, @code={0xa, 0x9c, {"007008d5007008d5002c004e208086d20040b0f2e10080d2620180d2c30080d2040180d2020000d4000008d5202081d20080b0f2210080d2e20080d2830180d2440180d2020000d480158bd200a0b0f2610080d2c20080d2430080d2e40080d2020000d4003c9cd20080b0f2210180d2020080d2830080d2640080d2020000d40820601e000028d5"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x48, 0x6}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x3, 0x8, 0xf, 0xc307, 0x4}}, @irq_setup={0x46, 0x18, {0x1, 0x306}}, @hvc={0x32, 0x40, {0xc5000021, [0x7, 0x0, 0xb125, 0x1af2, 0xffffffff]}}, @mrs={0xbe, 0x18, {0x603000000013f600}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x0, 0x2, 0x374, 0x400}}, @svc={0x122, 0x40, {0x84000003, [0x9, 0x57f1c50d, 0x2, 0x4, 0x9]}}, @irq_setup={0x46, 0x18, {0x0, 0x117}}, @msr={0x14, 0x20, {0x603000000013f510, 0x290}}, @eret={0xe6, 0x18, 0x3}, @eret={0xe6, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013df60, 0x3}}, @msr={0x14, 0x20, {0x6030000000138002, 0x7}}, @msr={0x14, 0x20, {0x0, 0x4}}, @eret={0xe6, 0x18}, @hvc={0x32, 0x40, {0x800, [0x6, 0x4, 0x8, 0x242, 0xbc0000000000000]}}, @memwrite={0x6e, 0x30, @generic={0x41000, 0x4bf, 0x4}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x23b}}, @smc={0x1e, 0x40, {0xc4000012, [0x40, 0x0, 0x81, 0x0, 0x1]}}], 0x53c}, &(0x7f0000000640)=[@featur1={0x1, 0x80}], 0x1)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, r2, 0x1f1e43bb5dfde8a, 0x10, r3, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f00000006c0)=@attr_riscv64=@attr_aplic={0x0, 0x1, @any=0x95, &(0x7f0000000680)=0x5})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000700)=@arm64)
r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000007c0)={0x0, &(0x7f0000000740)=[@hvc={0x32, 0x40, {0x5000000, [0x3ff, 0x8000000000000000, 0x8, 0x5, 0x3]}}, @msr={0x14, 0x20, {0x603000000013c03a, 0xfffffffffffffff9}}, @msr={0x14, 0x20, {0x6030000000138006, 0xf083}}], 0x80}, &(0x7f0000000800)=[@featur1={0x1, 0x80}], 0x1)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x80000001)
syz_kvm_setup_cpu$arm64(r0, r3, &(0x7f0000bca000/0x400000)=nil, &(0x7f0000000a00)=[{0x0, &(0x7f0000000840)=[@eret={0xe6, 0x18, 0x9}, @msr={0x14, 0x20, {0x603000000013dce1, 0x8a80}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x151}}, @its_setup={0x82, 0x28, {0x4, 0xa, 0x300}}, @svc={0x122, 0x40, {0x40000000, [0x6, 0x7, 0x8, 0xe97, 0x7]}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x2, 0x10, 0x0, 0xffffdb5f, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013de93}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0xb8, 0x7ff, 0x8}}, @irq_setup={0x46, 0x18, {0x0, 0xeb}}, @hvc={0x32, 0x40, {0x8600ff01, [0x4, 0x855, 0x9, 0xfffffffffffffbff, 0x7]}}], 0x190}], 0x1, 0x0, &(0x7f0000000a40)=[@featur2={0x1, 0x16}], 0x1)
ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000ac0)=@riscv64_aia_csr={0x8030000003010003, &(0x7f0000000a80)=0x3})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1d)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r6, 0x4010ae68, &(0x7f0000000b00)={0x4, 0x31000})
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x8040ae9f, &(0x7f0000000b40))
ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000b80)={0x4, 0x0, [{0x0, 0x2, 0x0, 0x0, @msi={0xc27, 0x0, 0x10001, 0xf}}, {0xd, 0x3, 0x0, 0x0, @irqchip={0x794, 0x6}}, {0x3, 0x1, 0x1, 0x0, @msi={0x7652, 0x763, 0x2, 0x6}}, {0x3, 0x3, 0x0, 0x0, @adapter={0x5, 0x3, 0x6, 0xfffffc83, 0x6}}]})
r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000001200)={0x0, &(0x7f0000000c80)=[@eret={0xe6, 0x18, 0x800}, @uexit={0x0, 0x18, 0x6}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x4c}}, @eret={0xe6, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013c230}}, @irq_setup={0x46, 0x18, {0x2, 0x29c}}, @smc={0x1e, 0x40, {0x84000004, [0x728e399f, 0x4, 0x8, 0x9, 0x4]}}, @hvc={0x32, 0x40, {0x0, [0x0, 0x3ff, 0x758, 0x7b, 0x8000]}}, @svc={0x122, 0x40, {0x40, [0x4, 0x6, 0x569, 0x2, 0x269c]}}, @smc={0x1e, 0x40, {0x84000008, [0x7ff, 0x3, 0x9, 0x4, 0xda7]}}, @code={0xa, 0x6c, {"000008d50000621e007008d50020df0c007008d50004000f007008d540328fd200a0b0f2a10180d2620080d2c30080d2a40080d2020000d41f4000d5c04683d200e0b0f2210180d2420180d2c30080d2440080d2020000d4"}}, @smc={0x1e, 0x40, {0x84000002, [0x3, 0x7fff, 0x9, 0xb7f, 0x8]}}, @svc={0x122, 0x40, {0x84000013, [0x0, 0xa08b, 0xd, 0x2, 0x1]}}, @msr={0x14, 0x20, {0x603000000013c111, 0xc}}, @mrs={0xbe, 0x18, {0x603000000013f602}}, @code={0xa, 0x6c, {"000008d500809f0d20039cd20080b0f2e10180d2c20080d2a30180d2040180d2020000d400fc205e007008d5e0d296d200a0b0f2210180d2e20180d2230180d2c40180d2020000d40000208a007008d5007008d5007008d5"}}, @svc={0x122, 0x40, {0x2, [0x2, 0x8, 0xcb, 0x8, 0xfffffffffffffffe]}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x4, 0x3, 0x9, 0x1, 0x3}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x8, 0x2}}, @hvc={0x32, 0x40, {0xc4000053, [0x8, 0x9, 0x3ff, 0x7, 0x2]}}, @irq_setup={0x46, 0x18, {0x0, 0x30b}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0x180, 0x4}}, @svc={0x122, 0x40, {0x0, [0x4, 0x0, 0x5, 0x9, 0xf]}}, @code={0xa, 0xb4, {"e00300aa007008d5000008d5804b81d20060b0f2e10080d2420080d2030080d2e40080d2020000d480cc95d20020b8f2e10080d2e20080d2230080d2640080d2020000d4000c8ad20020b0f2e10180d2020180d2030080d2840180d2020000d4801d8ed20040b8f2810180d2a20080d2230180d2c40180d2020000d40058200e000040d380888cd20020b8f2810080d2020080d2430180d2240180d2020000d4"}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x10040, 0x10001, 0x4}}], 0x574}, &(0x7f0000001240)=[@featur1={0x1, 0x1}], 0x1)
ioctl$KVM_REGISTER_COALESCED_MMIO(r6, 0x4010ae67, &(0x7f0000001280)={0xeeef0000, 0x104000})
ioctl$KVM_SET_REGS(r7, 0x4360ae82, &(0x7f00000012c0)={[0x7, 0x9, 0x4, 0xda24, 0x8000, 0xd, 0xbf, 0x10000, 0x0, 0x5, 0x9, 0xffffffffffffffff, 0xfffffffffffffffe, 0xf, 0x9, 0x401], 0x1000, 0x21001})
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000001380)={0x9})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000013c0), 0x101, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x37)
ioctl$KVM_CREATE_IRQCHIP(r9, 0xae60)
ioctl$KVM_SIGNAL_MSI(r0, 0x4020aea5, &(0x7f0000001400)={0xd000, 0x4000, 0x0, 0x231849c1357d8af, 0x3db})
openat$kvm(0xffffffffffffff9c, &(0x7f0000001440), 0xd6200, 0x0)
close(r8)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f00000014c0)=@riscv64_timer={0x8030000004000002, &(0x7f0000001480)=0xe2})
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)

1h10m10.822905444s ago: executing program 0 (id=578):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000913000/0x400000)=nil, &(0x7f0000000400)=[{0x0, &(0x7f0000000100)}], 0x1, 0x0, &(0x7f0000000440)=[@featur2={0x1, 0x8}], 0x1)
r1 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000140), 0x28100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92)
syz_kvm_vgic_v3_setup(r4, 0x3, 0xa0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x70000, 0x1000, &(0x7f0000c70000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000100)={0x5})
mmap$KVM_VCPU(&(0x7f0000f4f000/0x4000)=nil, 0x930, 0x2000000, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
openat$kvm(0x0, 0x0, 0x101282, 0x0)
r9 = ioctl$KVM_GET_STATS_FD_cpu(r7, 0xaece)
ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f0000000040)=0xffffffffffffffff})
r10 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000200))
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xe000)
r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r12, 0x2000003, 0x11, r10, 0x0)
r13 = ioctl$KVM_GET_STATS_FD_cpu(r11, 0xaece)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r12, 0x4, 0x10, r13, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

1h9m42.440333309s ago: executing program 1 (id=579):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000140)=@arm64_fw={0x6030000000140002, &(0x7f0000000280)=0xfffffffffffffffd})
mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r1, 0x2800002, 0x4010, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r1, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000bfe000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000000)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x10003})
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000013000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (rerun: 64)
syz_kvm_vgic_v3_setup(r6, 0x1, 0x3a0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

1h9m41.56115119s ago: executing program 0 (id=580):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r1, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r6, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000})
ioctl$KVM_SET_USER_MEMORY_REGION2(r6, 0x40a0ae49, &(0x7f0000000080)={0x0, 0x4, 0x100000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil, 0x1000010000000, r7})
r8 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000000)=@arm64_fw={0x6030000000140000, 0x0})
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (rerun: 64)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8})
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x6030000000100048, &(0x7f0000000240)=0xd7})
syz_kvm_vgic_v3_setup(r6, 0x1, 0x1a0)

1h9m32.050697387s ago: executing program 0 (id=581):
r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000001c0)={0x0, &(0x7f0000000000)=[@its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x4, 0x7, 0xa079, 0x6}}, @irq_setup={0x46, 0x18, {0x4, 0x21a}}, @hvc={0x32, 0x40, {0xc4000001, [0xf, 0x6, 0x1, 0x7, 0x9]}}, @code={0xa, 0xb4, {"0000204e00b0205e0000029ea0fe94d200a0b0f2210080d2c20180d2e30080d2040180d2020000d40034007fc0ae85d20060b8f2610080d2820180d2030080d2840080d2020000d440b39dd20080b0f2810080d2e20080d2c30180d2040080d2020000d4005e8ad200e0b0f2010080d2220080d2830080d2a40080d2020000d40038205e000d9fd20060b8f2a10180d2c20080d2a30180d2640080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x1, 0x1fc}}, @mrs={0xbe, 0x18, {0x603000000013c649}}, @mrs={0xbe, 0x18, {0x603000000013fe19}}, @smc={0x1e, 0x40, {0x80000002, [0xd2, 0x7, 0x100, 0x7f, 0xfff]}}], 0x1bc}, &(0x7f0000000200)=[@featur2={0x1, 0x81}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000240)=0x46)
ioctl$KVM_ARM_VCPU_INIT(r0, 0x4020aeae, &(0x7f0000000280)={0x6, 0x28})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000009c0)={0x0, &(0x7f00000002c0)=[@irq_setup={0x46, 0x18, {0x0, 0x117}}, @mrs={0xbe, 0x18, {0x603000000013c200}}, @smc={0x1e, 0x40, {0x4200001e, [0x7fffffff, 0x8, 0x1, 0xfffffffffffffffa, 0x7ff]}}, @smc={0x1e, 0x40, {0x31000000, [0xf, 0x0, 0x7, 0x7, 0x5]}}, @code={0xa, 0x6c, {"008008d5000028d50040000e1f00206ba0bc9ed200a0b8f2010080d2a20080d2a30080d2240080d2020000d4000c201e0000206b000028d5a02293d20020b8f2c10180d2220180d2430080d2840080d2020000d4000028d5"}}, @eret={0xe6, 0x18, 0x5}, @code={0xa, 0xcc, {"007008d5007008d50000781e0090807fa00195d20060b0f2210180d2e20080d2e30180d2040180d2020000d4a0e893d20020b0f2a10180d2e20080d2230180d2a40080d2020000d420cc8ed200e0b0f2810180d2420080d2230180d2c40180d2020000d4000a93d200c0b0f2610080d2e20080d2630180d2840080d2020000d4c0b388d200c0b0f2a10080d2620080d2630180d2640080d2020000d4004881d200e0b0f2c10080d2a20180d2e30180d2c40180d2020000d4"}}, @mrs={0xbe, 0x18, {0x6030000000138006}}, @uexit={0x0, 0x18, 0x8ff2}, @hvc={0x32, 0x40, {0x0, [0x1, 0x4, 0xc4, 0x6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013dee2, 0x5}}, @eret={0xe6, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x40}}, @memwrite={0x6e, 0x30, @generic={0xb000, 0x826, 0x1af, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1600, 0x800, 0xa}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x17f}}, @uexit={0x0, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013e6d6}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x2, 0x3, 0xa, 0x7f, 0x2}}, @hvc={0x32, 0x40, {0xc5000020, [0x100000000, 0x20bb, 0x3ff, 0xffffffffffffffb7, 0x5]}}, @its_setup={0x82, 0x28, {0x4, 0x101, 0x3da}}, @code={0xa, 0x9c, {"000008d5a04b86d200e0b8f2010180d2020080d2e30180d2a40080d2020000d4007008d5208a83d20080b8f2010180d2620180d2e30180d2840080d2020000d4001988d200a0b0f2810080d2820080d2430080d2640180d2020000d4007008d540779fd20080b8f2010080d2020080d2830080d2440180d2020000d4008c200e008008d5000c003c"}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x2, 0xd, 0x2, 0x14, 0x1}}, @smc={0x1e, 0x40, {0x8000, [0xc, 0x400, 0x6, 0x1, 0x1]}}, @mrs={0xbe, 0x18, {0x6030000000138066}}, @svc={0x122, 0x40, {0xc4000010, [0x0, 0x2, 0x5, 0x80000001, 0x5]}}, @code={0xa, 0xcc, {"601e85d200a0b0f2810180d2420180d2e30180d2240080d2020000d4e0c18ad20080b8f2e10080d2820180d2230180d2e40080d2020000d40094004f00c0251ea0c691d20020b0f2e10080d2620080d2830080d2440080d2020000d4407190d20080b0f2e10180d2220180d2230080d2240180d2020000d440e29fd200a0b0f2c10180d2e20080d2630180d2240180d2020000d4007008d5c00396d20060b0f2e10180d2820080d2230080d2240180d2020000d4000028d5"}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0xca}}, @hvc={0x32, 0x40, {0x86000000, [0x4, 0x5, 0x7, 0x8000000000000000, 0x7]}}, @msr={0x14, 0x20, {0x603000000013c01e, 0xfffffffffffffff4}}], 0x6c8}, &(0x7f0000000a00)=[@featur2={0x1, 0x40}], 0x1)
ioctl$KVM_ARM_VCPU_FINALIZE(r1, 0x4004aec2, &(0x7f0000000a40)=0x6)
ioctl$KVM_ARM_VCPU_INIT(r0, 0x4020aeae, &(0x7f0000000a80)={0x2, 0x10})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000ac0), 0x30481, 0x0)
r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000010c0)={0x0, &(0x7f0000000b00)=[@mrs={0xbe, 0x18, {0x603000000013805d}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x2, 0x3, 0x71b7, 0x3, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x2, 0x0, 0x7, 0xe, 0x4}}, @svc={0x122, 0x40, {0x4000000, [0x4, 0x8000, 0x0, 0x8000000000000001, 0x2]}}, @svc={0x122, 0x40, {0x4000005c, [0x2, 0x8001, 0x8, 0x4, 0x4]}}, @uexit={0x0, 0x18}, @code={0xa, 0x84, {"0040206e00a8a15e602290d20060b8f2810080d2220080d2430180d2440180d2020000d4000040b3007008d5003c200e00e8a05ee0e399d20080b8f2410080d2620080d2c30080d2040180d2020000d4003c200e20279dd20040b0f2010080d2020180d2c30180d2040180d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013de95, 0xbd70}}, @code={0xa, 0x9c, {"e06f86d20000b0f2c10080d2620180d2830080d2440180d2020000d40058000e00d683d200e0b0f2c10080d2620080d2a30180d2240080d2020000d4c09281d20080b8f2a10080d2220080d2830180d2040180d2020000d40000631e0028210e007008d5000c00b820ba82d200e0b0f2c10080d2a20180d2830180d2a40080d2020000d40000c02c"}}, @memwrite={0x6e, 0x30, @generic={0xa000, 0x6c1, 0x9, 0x6}}, @eret={0xe6, 0x18, 0x81}, @code={0xa, 0x9c, {"0040600d80de88d20000b0f2010180d2220080d2430180d2440180d2020000d4606a83d200e0b8f2410180d2420180d2e30080d2040080d2020000d4007008d50094007f40089ed20000b8f2010080d2e20180d2e30180d2a40080d2020000d4007008d5c01b9cd200a0b8f2e10080d2420080d2a30080d2840180d2020000d40060e00d002c207e"}}, @mrs={0xbe, 0x18, {0x36d9}}, @code={0xa, 0x3c, {"0024005f003c205e007008d50000009a007c40930040211e0084800d000028d5000000ea0014200e"}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x3, 0x2, 0x3, 0xe, 0x1}}, @msr={0x14, 0x20, {0x603000000013c299, 0x91d}}, @mrs={0xbe, 0x18, {0x603000000013e728}}, @irq_setup={0x46, 0x18, {0x0, 0x238}}, @eret={0xe6, 0x18, 0x4f1b}, @hvc={0x32, 0x40, {0xc5000021, [0x7, 0x9, 0xffffffffffffffff, 0x5, 0x3]}}, @irq_setup={0x46, 0x18, {0x1, 0x2d9}}, @hvc={0x32, 0x40, {0xc4000014, [0x8000000000000000, 0x6a, 0xa483, 0x2, 0x6]}}, @msr={0x14, 0x20, {0x603000000013d000, 0x81}}, @svc={0x122, 0x40, {0x8000, [0x7, 0x9, 0x9, 0x793, 0xfffffffffffffff3]}}, @mrs={0xbe, 0x18, {0x603000000013c802}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x2e0}}, @svc={0x122, 0x40, {0x84000051, [0xffffffffffff8050, 0xa000, 0xfffffffffffffff8, 0x401, 0x5]}}, @msr={0x14, 0x20, {0x603000000013df58, 0xfffffffffffffff9}}, @irq_setup={0x46, 0x18, {0x2, 0x1eb}}], 0x5b8}, &(0x7f0000001100)=[@featur1={0x1, 0xb3}], 0x1)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r3, 0x4018aee3, &(0x7f0000001140)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x4})
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000001180)={0x10002, 0x6, 0x1000, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000011c0)={0x5, 0xffffffffffffffff, 0x1})
write$eventfd(r2, &(0x7f0000001200)=0x8000000000000001, 0x8)
r5 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece)
ioctl$KVM_INTERRUPT(r5, 0x4004ae86, &(0x7f0000001240)=0x4)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
ioctl$KVM_CLEAR_DIRTY_LOG(r5, 0xc018aec0, &(0x7f0000001680)={0x10004, 0x1c0, 0x1c0, &(0x7f0000001280)=[0x7, 0x100000000, 0xfffffffffffffffb, 0x7, 0x400, 0x10, 0xd, 0x0, 0xba, 0x9, 0x4ed7030000, 0x7, 0x1, 0xffffffffffffff31, 0x3, 0x2, 0xdbb, 0x2, 0xffffffffffffc821, 0x4, 0x8000000000000000, 0x4, 0x5, 0x47, 0x7, 0x2, 0x8001, 0x0, 0x5, 0x80000001, 0x4, 0x5, 0x10, 0xfffffffffffffffa, 0x9, 0x4, 0x2, 0xfc, 0x3, 0x5, 0x7, 0xaf3c, 0xff, 0x800, 0x8, 0x3, 0xff, 0x9, 0x5, 0x86b6, 0x8, 0x2, 0x7, 0x4, 0x4, 0x20b, 0xffffffffffffffff, 0x401, 0x2, 0x3, 0x2, 0x5, 0xfff, 0x5, 0x59b, 0x0, 0x100000000, 0x7, 0x7fff, 0x4, 0xb407, 0x3, 0x6, 0xe1, 0x80000000, 0x10001, 0x100000001, 0x9, 0x6b0, 0xd28, 0x9, 0x8, 0x0, 0x7, 0x9, 0x100, 0xfffffffffffffffa, 0x8, 0x7f, 0x7, 0x6aefce94, 0x0, 0xffffffff, 0xffffffff, 0x8, 0x9, 0x6, 0x1, 0x100, 0xffffffffffffffff, 0x6, 0x3, 0x23, 0xe7fd, 0x2, 0x9, 0x4, 0x4, 0x3, 0xa7, 0x8, 0x8, 0x5, 0x1, 0x0, 0x100000001, 0x9, 0x7ff, 0x8000000000000001, 0x3, 0x71, 0xd52, 0xfffffffffffffffb, 0x3, 0x2, 0x9, 0xc5a, 0x4dfe]})
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, r6, 0x0, 0x12, r1, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_kvm_setup_cpu$arm64(r4, r0, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001700)=[{0x0, &(0x7f00000016c0)=[@its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x4, 0xf, 0x3, 0x3}}, @uexit={0x0, 0x18, 0x4}], 0x40}], 0x1, 0x0, &(0x7f0000001740)=[@featur1={0x1, 0x40}], 0x1)
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f00000017c0)=@riscv64_core={0x8030000000200011, &(0x7f0000001780)=0x325})
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000001800)={0x7, 0x4000, 0x2, r5, 0x2})
ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000001840)={0x3, 0x8})
r7 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000001880)={0x1, 0x8000000, 0x4, r5, 0x6})
mmap$KVM_VCPU(&(0x7f0000cff000/0x3000)=nil, r6, 0x6, 0x67240de7ee303670, r7, 0x0)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000001900)=@riscv64_sbi_fwft={0x803000000a010004, &(0x7f00000018c0)=0x8})
ioctl$KVM_HAS_DEVICE_ATTR_vm(0xffffffffffffffff, 0x4018aee3, &(0x7f0000001980)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000001940)={0x7f, 0x7, 0x728a2b75c0ed84eb}})

1h9m30.131574556s ago: executing program 1 (id=582):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x7, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_riscv64=@attr_config={0x0, 0x1, 0x0, &(0x7f0000000000)=0x3}) (async, rerun: 64)
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000180)=@attr_other={0x0, 0x9, 0x2, &(0x7f0000000300)=0x1}) (async, rerun: 64)
ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f0000000080)={0xb6, 0x0, 0x200})

1h9m25.832662193s ago: executing program 0 (id=583):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x480, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xdf)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x2, 0x1}}], 0x28}, 0x0, 0x0)
r5 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x1, <r6=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_SREGS(r4, 0x4000ae84, &(0x7f0000000300)={{0x8080000, 0xeeee8000, 0xa, 0x8, 0x9, 0x8, 0x9, 0x9, 0x2, 0x8, 0x6, 0xfb}, {0xb000, 0x50000, 0x4, 0x9, 0x1, 0x5, 0x5c, 0x40, 0xf8, 0x7, 0x8, 0x6}, {0x70000, 0xc000, 0x8, 0x5, 0x1b, 0xd, 0x1, 0x80, 0x5, 0x6, 0x6, 0xc0}, {0x25000, 0x9000, 0x0, 0x8, 0x8, 0x81, 0x8, 0x4, 0x1, 0x7, 0x7, 0x9}, {0x50000, 0x41000, 0x8, 0x6, 0xe, 0x6, 0x0, 0xfb, 0x2, 0x2, 0x2, 0x6}, {0x6000, 0x1000, 0x10, 0x5, 0x0, 0x10, 0x81, 0x5, 0x7, 0x80, 0x7f}, {0x1, 0x40000, 0xe, 0x0, 0x0, 0xf, 0x7, 0x8, 0x7, 0xc, 0x2}, {0xc000, 0xa000, 0x4, 0x6, 0x3, 0x1, 0x2, 0x3, 0xf8, 0x85, 0x5, 0xff}, {0xb000, 0x100}, {0x9000, 0x2c}, 0x50000, 0x0, 0x30000, 0x202000, 0x8, 0x2000, 0xc000, [0x80, 0x8000000000000000, 0x9, 0x9]})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x2, 0x0, &(0x7f0000000000)=0x8})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x5, 0x0, &(0x7f0000000280)=0x1})

1h9m23.004456803s ago: executing program 1 (id=584):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0xae4e1b416e9ace83, 0x0, 0x1000, 0x1000, &(0x7f0000fa6000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r4, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r4, 0x0)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000240)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x2})
r10 = eventfd2(0x0, 0x0)
close(r10)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
write$eventfd(r10, &(0x7f0000000100)=0xfffffffffffffffe, 0x8)
r11 = eventfd2(0x0, 0x0)
close(r11)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r11, 0x0)

1h9m16.200120717s ago: executing program 0 (id=585):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27)
syz_kvm_vgic_v3_setup(r1, 0x4, 0x1a0)
r2 = eventfd2(0x2, 0x80000)
r3 = eventfd2(0xf, 0x80001)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r3, 0x0, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x8, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r3, 0x0, 0x1})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x88201, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@mrs={0xbe, 0x18, {0x603000000013c520}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x7, 0x5, 0x0, 0x4}}, @irq_setup={0x46, 0x18, {0x3, 0x28}}, @uexit={0x0, 0x18, 0x5}], 0x70}, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) (async)
syz_kvm_vgic_v3_setup(r1, 0x4, 0x1a0) (async)
eventfd2(0x2, 0x80000) (async)
eventfd2(0xf, 0x80001) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r3, 0x0, 0x2, r2}) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x8, 0x2, r2}) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r3, 0x0, 0x1}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x88201, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) (async)
syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@mrs={0xbe, 0x18, {0x603000000013c520}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x7, 0x5, 0x0, 0x4}}, @irq_setup={0x46, 0x18, {0x3, 0x28}}, @uexit={0x0, 0x18, 0x5}], 0x70}, 0x0, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)

1h9m8.284842841s ago: executing program 1 (id=586):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x1, 0x6000, 0x9fff, 0xffffffffffffffff, 0x8})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r3, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000})
ioctl$KVM_CREATE_DEVICE(r6, 0xc018aec0, &(0x7f00000000c0)={0x1})
r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x603000000013c006}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)

1h8m29.460971227s ago: executing program 32 (id=585):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27)
syz_kvm_vgic_v3_setup(r1, 0x4, 0x1a0)
r2 = eventfd2(0x2, 0x80000)
r3 = eventfd2(0xf, 0x80001)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r3, 0x0, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x8, 0x2, r2})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r3, 0x0, 0x1})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x88201, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@mrs={0xbe, 0x18, {0x603000000013c520}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x7, 0x5, 0x0, 0x4}}, @irq_setup={0x46, 0x18, {0x3, 0x28}}, @uexit={0x0, 0x18, 0x5}], 0x70}, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0xa8200, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) (async)
syz_kvm_vgic_v3_setup(r1, 0x4, 0x1a0) (async)
eventfd2(0x2, 0x80000) (async)
eventfd2(0xf, 0x80001) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r3, 0x0, 0x2, r2}) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r2, 0x8, 0x2, r2}) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r3, 0x0, 0x1}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x88201, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) (async)
syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@mrs={0xbe, 0x18, {0x603000000013c520}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x7, 0x5, 0x0, 0x4}}, @irq_setup={0x46, 0x18, {0x3, 0x28}}, @uexit={0x0, 0x18, 0x5}], 0x70}, 0x0, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)

1h8m19.634597999s ago: executing program 33 (id=586):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x1, 0x6000, 0x9fff, 0xffffffffffffffff, 0x8})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r3, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000})
ioctl$KVM_CREATE_DEVICE(r6, 0xc018aec0, &(0x7f00000000c0)={0x1})
r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x603000000013c006}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)

33m17.580180575s ago: executing program 2 (id=832):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f0000000280)=@attr_other={0x0, 0x1, 0xb4, 0x0})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100016, &(0x7f0000000200)=0x81})
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
r9 = eventfd2(0x1, 0x1)
r10 = openat$kvm(0x0, &(0x7f0000000080), 0x40000, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0xa0000, 0x0)
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x140)
ioctl$KVM_IRQFD(r11, 0x4020ae76, &(0x7f0000000100)={r9, 0x3, 0x2, r9})
ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0x3, 0x2, 0x1, 0x0, @msi={0x7, 0x9ca0, 0x0, 0xffffff5e}}]})
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000040)={0x8})
write$eventfd(r9, &(0x7f0000000000)=0x1000007, 0x8)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x100a83, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r13, 0xae60)
ioctl$KVM_SET_GSI_ROUTING(r13, 0x4008ae6a, &(0x7f00000002c0)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @adapter={0x0, 0x0, 0x8, 0x5, 0x3}}, {0x3, 0x4, 0x0, 0x0, @msi={0x1, 0x5, 0x2, 0xcfb}}]})
syz_kvm_vgic_v3_setup(r8, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000000)={0x8, 0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000280)={0x4})

33m15.440045307s ago: executing program 3 (id=833):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x6, 0x30000, 0x1000, &(0x7f0000e5c000/0x1000)=nil})
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x20e4586c})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x28)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x7f)
ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000000)=@arm64={0x3, 0xe0, 0xb4, '\x00', 0x1})
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, r5, 0x1, 0x16831, 0xffffffffffffffff, 0x0)

32m59.371019882s ago: executing program 3 (id=834):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0)
ioctl$KVM_CHECK_EXTENSION(r3, 0x5421, 0x6)
r4 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f00000001c0)={0x8, <r6=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x4, &(0x7f0000000080)=0x9})
r7 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, 0xfffffffffffffffe, 0x0, 0xfffffffffffffee9)
r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, &(0x7f0000000800)=[@mrs={0xbe, 0x18, {0x603000000013dce9}}, @hvc={0x32, 0x40, {0x84000006, [0x7fffffff, 0x0, 0x5e9b, 0x7, 0x4]}}], 0x58}, 0x0, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r11 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x2, 0x100)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010024, 0x1})
r12 = eventfd2(0x1, 0x801)
r13 = eventfd2(0xff, 0x80000)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f00000001c0)={r12, 0x3, 0x2, r13})
ioctl$KVM_RUN(r11, 0xae80, 0x0)

32m56.306181808s ago: executing program 2 (id=835):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x8000000000000002, 0x0, 0x2, 0xffffffffffffffff, 0x2})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000240)={0x1fe, 0x3, 0xdddd0000, 0x1000, &(0x7f0000007000/0x1000)=nil})
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r6, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0)
r8 = eventfd2(0x1, 0x80801)
close(r8)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_GUEST_MEMFD(r11, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3})
r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r13, 0x2000003, 0x12, r12, 0x0)
close(r12)
openat$kvm(0x0, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xf, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
write$eventfd(r8, &(0x7f00000001c0)=0x1000006, 0x8)
munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x1f9, 0x3, 0x100000, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xeeee8000, 0x1000, &(0x7f0000f15000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x1fd, 0x3, 0x6000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})

32m41.961793638s ago: executing program 3 (id=836):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}})
r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000480)={0x0, &(0x7f0000000300)=[@irq_setup={0x46, 0x18, {0x1, 0x32}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xff60, 0x0, 0xd}}, @irq_setup={0x46, 0x18, {0x4, 0x37a}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1600, 0x3, 0x1}}, @msr={0x14, 0x20, {0x603000000013c608}}, @code={0xa, 0x6c, {"005e95d20060b8f2210180d2c20080d2830080d2a40180d2020000d4008008d50080001b0024200e000840b8008008d5007008d5007008d5e0749cd20000b8f2e10180d2a20080d2030080d2a40080d2020000d400c8a05e"}}, @eret={0xe6, 0x18, 0x843}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x12}}], 0x15c}, &(0x7f00000004c0)=[@featur2={0x1, 0x80}], 0x1)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000500)={0x0, 0x6a})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x386}}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x192}}, @smc={0x1e, 0x40, {0x8400000e, [0x6, 0x2, 0x8000, 0xbd, 0x100000000]}}, @svc={0x122, 0x40, {0x84000013, [0x100, 0x101, 0x5, 0x17a, 0x400000000000]}}, @mrs={0xbe, 0x18, {0x603000000013c00c}}, @eret={0xe6, 0x18, 0xffffffffffffffff}, @code={0xa, 0x9c, {"008008d580a888d20060b0f2c10080d2c20180d2030180d2e40180d2020000d400d8a00e409180d20040b0f2e10080d2220180d2430180d2240080d2020000d40058c01a000c0078000008d560e19ad20040b8f2610180d2220180d2e30180d2040180d2020000d4008008d5804482d200a0b8f2e10080d2c20180d2030080d2c40180d2020000d4"}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x3a}}, @uexit={0x0, 0x18, 0x7}], 0x1dc}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

32m39.720378697s ago: executing program 2 (id=837):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r2, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1f)
ioctl$KVM_CAP_DIRTY_LOG_RING(r5, 0x4068aea3, &(0x7f0000000000)={0xc0, 0x0, 0x6000})

32m32.258368573s ago: executing program 3 (id=838):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) (async)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0) (async)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f00003af000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x2}}], 0x28}, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000280)={0x9, 0xffffffffffffffff, 0x1})
syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) (async)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000240)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) (async, rerun: 64)
r10 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) (rerun: 64)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
eventfd2(0x0, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) (async)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000000c0)=@arm64_core={0x6030000000100024, &(0x7f0000000080)=0x6}) (async, rerun: 32)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (rerun: 32)

32m28.740394534s ago: executing program 2 (id=839):
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000)
munmap(&(0x7f0000584000/0x800000)=nil, 0x800000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000})
ioctl$KVM_SET_USER_MEMORY_REGION2(r3, 0x40a0ae49, &(0x7f0000000080)={0x0, 0x4, 0x100000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil, 0x1000010000000, r4})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = eventfd2(0xfffffffa, 0x80001)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r10, 0x4068aea3, &(0x7f0000000040)={0xdf, 0x0, 0x8000})
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f00000000c0)={0xb, 0xffffffffffffffff, 0x1})
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000140)={0x80, 0x4, 0x0, r7})
ioctl$KVM_REGISTER_COALESCED_MMIO(r6, 0x4010ae67, &(0x7f0000000080)={0x7001, 0x37d03030d7a92616})
ioctl$KVM_REGISTER_COALESCED_MMIO(r6, 0x4010ae67, &(0x7f0000000180)={0x5000})
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bc2000/0x400000)=nil)
ioctl$KVM_SET_GUEST_DEBUG_arm64(0xffffffffffffffff, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0x1, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x80000000, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c8, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x9]}})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040))
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4000ae84, &(0x7f0000000400)={{0xeeef0000, 0x9000, 0xb, 0x3, 0x81, 0x51, 0x1, 0x9, 0xfd, 0x2, 0x8, 0x6}, {0x25000, 0x1, 0x3, 0x5, 0x0, 0x5, 0x8, 0x71, 0x2, 0x32, 0x6, 0xf6}, {0x2, 0xa000, 0x8, 0x3, 0x3, 0xf5, 0x1d, 0x2, 0x4, 0xe, 0x9, 0x2}, {0x1000, 0x200000, 0xe, 0xd, 0x6d, 0x3, 0x7, 0xe, 0x8, 0x8, 0x24, 0x2}, {0x80a0000, 0x8000000, 0x4, 0x9, 0x4, 0x10, 0x2, 0x6, 0x2, 0x3, 0x6, 0x1}, {0x70000, 0x54000, 0x10, 0x9, 0x80, 0x2, 0x8, 0x4, 0x5, 0x3, 0x6}, {0xfec00000, 0x0, 0xa, 0x57, 0x0, 0x4, 0x2, 0x5, 0x3, 0x4, 0x9b, 0x1b}, {0x4, 0xd000, 0xd, 0x0, 0x7, 0xe, 0x0, 0x3, 0xb, 0x95, 0x22, 0x9}, {0xf000, 0x55}, {0x1}, 0x10008, 0x0, 0x10000, 0x50288, 0x1, 0x5400, 0x40000, [0x4, 0x1, 0xfffffffffffff000, 0x8]})
r12 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x3c)
ioctl$KVM_SET_DEVICE_ATTR_vm(r12, 0x4018aee1, &(0x7f0000000580)=@attr_other={0x0, 0x3, 0x3, &(0x7f0000000540)})

32m19.25464109s ago: executing program 3 (id=840):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, <r2=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x1000009, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0x41000, 0xc000, 0x1}) (async)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000040)={0x41000, 0xc000, 0x1})
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000600)={0x0, &(0x7f0000000200)=[@msr={0x14, 0x20, {0x603000000013c2a4, 0x2}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x201}}, @code={0xa, 0x6c, {"008008d5007008d5007008d5008008d5000028d50000ae9e007008d50060000d20d791d20080b8f2210080d2620180d2230080d2040080d2020000d4008f92d20040b0f2610180d2a20180d2630180d2840080d2020000d4"}}, @code={0xa, 0x9c, {"0000249e0000a00d0014c05a000040b900e09dd200c0b8f2410180d2a20080d2230180d2e40080d2020000d4c04a9cd20000b0f2e10080d2a20080d2430180d2840080d2020000d400989cd200e0b8f2e10180d2e20080d2230180d2240080d2020000d480cc8dd20040b0f2010080d2420180d2030180d2e40080d2020000d400a8205e007008d5"}}, @uexit={0x0, 0x18, 0xf9}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x38}}, @msr={0x14, 0x20, {0x603000000013df46, 0xfffffffffffffffd}}, @hvc={0x32, 0x40, {0x80007fff, [0x400, 0x2, 0x5, 0x9, 0x6]}}, @uexit={0x0, 0x18, 0x100}, @eret={0xe6, 0x18, 0xfffffffffffffffc}, @msr={0x14, 0x20, {0x603000000013c109, 0x1000}}, @code={0xa, 0x84, {"007008d5007008d500cc200e40be9ad200e0b0f2010080d2a20180d2030080d2c40080d2020000d4000028d5000040b840fc95d20080b0f2610080d2a20080d2430180d2440080d2020000d4008020c8400d99d20060b8f2a10080d2420180d2e30180d2840180d2020000d4008008d5"}}, @smc={0x1e, 0x40, {0x4, [0x8, 0x8000000000000000, 0xf, 0x5, 0x77d94107]}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x236}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x303}}, @irq_setup={0x46, 0x18, {0x0, 0x2f7}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x363}}, @mrs={0xbe, 0x18, {0x603000000013dea8}}, @mrs={0xbe, 0x18, {0x603000000013c102}}], 0x3c4}, &(0x7f0000000640)=[@featur2={0x1, 0x2}], 0x1) (async)
r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000600)={0x0, &(0x7f0000000200)=[@msr={0x14, 0x20, {0x603000000013c2a4, 0x2}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x201}}, @code={0xa, 0x6c, {"008008d5007008d5007008d5008008d5000028d50000ae9e007008d50060000d20d791d20080b8f2210080d2620180d2230080d2040080d2020000d4008f92d20040b0f2610180d2a20180d2630180d2840080d2020000d4"}}, @code={0xa, 0x9c, {"0000249e0000a00d0014c05a000040b900e09dd200c0b8f2410180d2a20080d2230180d2e40080d2020000d4c04a9cd20000b0f2e10080d2a20080d2430180d2840080d2020000d400989cd200e0b8f2e10180d2e20080d2230180d2240080d2020000d480cc8dd20040b0f2010080d2420180d2030180d2e40080d2020000d400a8205e007008d5"}}, @uexit={0x0, 0x18, 0xf9}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x38}}, @msr={0x14, 0x20, {0x603000000013df46, 0xfffffffffffffffd}}, @hvc={0x32, 0x40, {0x80007fff, [0x400, 0x2, 0x5, 0x9, 0x6]}}, @uexit={0x0, 0x18, 0x100}, @eret={0xe6, 0x18, 0xfffffffffffffffc}, @msr={0x14, 0x20, {0x603000000013c109, 0x1000}}, @code={0xa, 0x84, {"007008d5007008d500cc200e40be9ad200e0b0f2010080d2a20180d2030080d2c40080d2020000d4000028d5000040b840fc95d20080b0f2610080d2a20080d2430180d2440080d2020000d4008020c8400d99d20060b8f2a10080d2420180d2e30180d2840180d2020000d4008008d5"}}, @smc={0x1e, 0x40, {0x4, [0x8, 0x8000000000000000, 0xf, 0x5, 0x77d94107]}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x236}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x303}}, @irq_setup={0x46, 0x18, {0x0, 0x2f7}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x363}}, @mrs={0xbe, 0x18, {0x603000000013dea8}}, @mrs={0xbe, 0x18, {0x603000000013c102}}], 0x3c4}, &(0x7f0000000640)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f00000001c0)=@arm64={0x2, 0x5, 0x66, '\x00', 0x3})
write$eventfd(r5, &(0x7f00000001c0)=0x3, 0xfdef)
ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) (async)
r7 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x2, 0x81, '\x00', 0x7})
write$eventfd(r2, &(0x7f00000001c0)=0x3, 0x50)

32m13.59089146s ago: executing program 2 (id=841):
munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x400000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4000ae84, 0xffffffffffffffff)
munmap(&(0x7f0000ec0000/0x4000)=nil, 0x4000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f00000001c0)={0x8, <r6=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
syz_kvm_setup_cpu$arm64(r5, 0xffffffffffffffff, &(0x7f0000001000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8000000000000000})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0xd)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8})
ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, 0xfffffffffffffffe)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, 0x0, 0x8, 0x13, 0xffffffffffffffff, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x74, 0x86, 0xdd, 0x68, 0x0, 0x209, 0x0, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x400000000002})
write$eventfd(r11, &(0x7f00000001c0)=0x3, 0x50)

32m8.263869723s ago: executing program 3 (id=842):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000015, 0x7, 0xaca, 0x2, 0x10]}}], 0x40}, &(0x7f00000000c0)=[@featur1={0x1, 0x4}], 0x1)
openat$kvm(0x0, 0x0, 0x0, 0x0)
r7 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2b)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x5)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04)
r11 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r10, 0x2, 0x12, r9, 0x0)
mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r10, 0x100000a, 0x12, r9, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000001c0)="fb016b03002e5ee42ec6a29ea6ab8000000004ef0000c20cecf80a97ab78000000040000000000000000409700000000ffffffff00000000a0eb00df00", 0x0, 0xffffffffffffff69)
mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r12 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2e)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r12, r13, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000300)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x12})
r14 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_REGISTER_COALESCED_MMIO(r14, 0x4010ae67, &(0x7f0000000180)={0x5000})
r15 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)

31m58.441357781s ago: executing program 2 (id=843):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200))
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, 0x0) (async, rerun: 32)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 32)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r9, 0x0, 0x0, 0xfffffdb9) (async)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000100)={0x7, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000000740)=0xf59}) (async, rerun: 64)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) (rerun: 64)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000bfd000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f00000002c0)=[@featur1={0x1, 0x42}], 0x1)
ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000080)=@riscv64_f={0x8020000005000001, &(0x7f0000000300)=0x1})
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000180)={0x8}) (async)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0x8, 0x8})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) (async, rerun: 32)
r15 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000340)=[@code={0xa, 0xb4, {"a0a99dd200e0b8f2210180d2c20080d2630180d2040180d2020000d40000791e80b887d200c0b8f2410180d2a20080d2030180d2640180d2020000d4007481d20000b0f2810080d2e20080d2430180d2c40080d2020000d4000008d50004201e00d992d200a0b0f2a10180d2220180d2430080d2040080d2020000d4008008d5a0bd89d200a0b8f2c10080d2a20080d2830180d2640080d2020000d400a0204e"}}, @eret={0xe6, 0x18, 0x4}, @smc={0x1e, 0x40, {0x8400000a, [0x3, 0x500000, 0x1, 0xc666, 0x6]}}, @code={0xa, 0x9c, {"0000000d000008d5207c8fd20000b8f2210080d2220080d2430080d2440180d2020000d4408b91d20060b8f2e10180d2c20180d2e30180d2c40080d2020000d4007008d50084200e0000403d80d58ed20020b8f2610180d2220080d2230180d2040180d2020000d4a09e9bd20040b8f2e10180d2a20180d2830180d2a40180d2020000d4007008d5"}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1b2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x48, 0x800}}, @msr={0x14, 0x20, {0x603000000013c009, 0xdc}}, @mrs={0xbe, 0x18, {0x603000000013e6c9}}, @code={0xa, 0x3c, {"000008d5008008d5000008d50000407c0008c05a007008d5008008d500a8310e00d4202e000008d5"}}, @irq_setup={0x46, 0x18, {0x4, 0xc9}}, @irq_setup={0x46, 0x18, {0x1, 0x32b}}, @smc={0x1e, 0x40, {0x8400000b, [0x7fffffff, 0x7ff, 0x138, 0x4, 0x5]}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x8}}, @uexit={0x0, 0x18, 0x7}, @svc={0x122, 0x40, {0xc4000010, [0x80000000, 0x6, 0x4000000000001, 0xfffffffffffffffe, 0x4]}}, @smc={0x1e, 0x40, {0x86000001, [0x3, 0x5, 0x6, 0x3, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013df41}}], 0x3bc}, 0x0, 0x0) (rerun: 32)
ioctl$KVM_RUN(r15, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) (async)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000240)=@riscv64_timer={0x8030000004000001, &(0x7f0000000700)=0x6})

31m21.241040274s ago: executing program 34 (id=842):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000015, 0x7, 0xaca, 0x2, 0x10]}}], 0x40}, &(0x7f00000000c0)=[@featur1={0x1, 0x4}], 0x1)
openat$kvm(0x0, 0x0, 0x0, 0x0)
r7 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2b)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x5)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04)
r11 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r10, 0x2, 0x12, r9, 0x0)
mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r10, 0x100000a, 0x12, r9, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000001c0)="fb016b03002e5ee42ec6a29ea6ab8000000004ef0000c20cecf80a97ab78000000040000000000000000409700000000ffffffff00000000a0eb00df00", 0x0, 0xffffffffffffff69)
mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r12 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2e)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r12, r13, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000300)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x12})
r14 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_REGISTER_COALESCED_MMIO(r14, 0x4010ae67, &(0x7f0000000180)={0x5000})
r15 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)

31m10.032250352s ago: executing program 35 (id=843):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200))
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, 0x0) (async, rerun: 32)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 32)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r9, 0x0, 0x0, 0xfffffdb9) (async)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000100)={0x7, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000000740)=0xf59}) (async, rerun: 64)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) (rerun: 64)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000bfd000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f00000002c0)=[@featur1={0x1, 0x42}], 0x1)
ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000080)=@riscv64_f={0x8020000005000001, &(0x7f0000000300)=0x1})
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000180)={0x8}) (async)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0x8, 0x8})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) (async, rerun: 32)
r15 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000340)=[@code={0xa, 0xb4, {"a0a99dd200e0b8f2210180d2c20080d2630180d2040180d2020000d40000791e80b887d200c0b8f2410180d2a20080d2030180d2640180d2020000d4007481d20000b0f2810080d2e20080d2430180d2c40080d2020000d4000008d50004201e00d992d200a0b0f2a10180d2220180d2430080d2040080d2020000d4008008d5a0bd89d200a0b8f2c10080d2a20080d2830180d2640080d2020000d400a0204e"}}, @eret={0xe6, 0x18, 0x4}, @smc={0x1e, 0x40, {0x8400000a, [0x3, 0x500000, 0x1, 0xc666, 0x6]}}, @code={0xa, 0x9c, {"0000000d000008d5207c8fd20000b8f2210080d2220080d2430080d2440180d2020000d4408b91d20060b8f2e10180d2c20180d2e30180d2c40080d2020000d4007008d50084200e0000403d80d58ed20020b8f2610180d2220080d2230180d2040180d2020000d4a09e9bd20040b8f2e10180d2a20180d2830180d2a40180d2020000d4007008d5"}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1b2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x48, 0x800}}, @msr={0x14, 0x20, {0x603000000013c009, 0xdc}}, @mrs={0xbe, 0x18, {0x603000000013e6c9}}, @code={0xa, 0x3c, {"000008d5008008d5000008d50000407c0008c05a007008d5008008d500a8310e00d4202e000008d5"}}, @irq_setup={0x46, 0x18, {0x4, 0xc9}}, @irq_setup={0x46, 0x18, {0x1, 0x32b}}, @smc={0x1e, 0x40, {0x8400000b, [0x7fffffff, 0x7ff, 0x138, 0x4, 0x5]}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x8}}, @uexit={0x0, 0x18, 0x7}, @svc={0x122, 0x40, {0xc4000010, [0x80000000, 0x6, 0x4000000000001, 0xfffffffffffffffe, 0x4]}}, @smc={0x1e, 0x40, {0x86000001, [0x3, 0x5, 0x6, 0x3, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013df41}}], 0x3bc}, 0x0, 0x0) (rerun: 32)
ioctl$KVM_RUN(r15, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) (async)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000240)=@riscv64_timer={0x8030000004000001, &(0x7f0000000700)=0x6})

25m26.745235818s ago: executing program 4 (id=844):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r4 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0x5)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, <r6=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r6, 0x8927, 0x10000000000000)
r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x80000, 0x10000, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r8=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r7, 0xae80, 0x0)

25m15.689937796s ago: executing program 5 (id=845):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
munmap$KVM_VCPU(0x0, 0x1000000000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x12, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000040)={0x5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, 0x0, 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000200)={0xf3, "6f5632ac1505bd62648876182fd824602bd4406eb4670d998899b1508f7c6cdbd3c2209916136b4ed1ce9ee88c9aeb1b0bebdf58719d64733dcecf5cd942231deaccfb283d182661823c7102397caf1913ab46e9ff3bee442e98b0f96c60d255a82a2fdb295f811b01fa37cc013cbc00dae2dfdf9f618f8eb1510f4005fb646b144d60bf279b49800a03559bd18d4ac689af695d20895dda3682db33d713a325b6043c450a2219684f6828e692c4d69e3ac21938649d0b51f55c5a8b6d5d64fcfc18a49b5c3a2075792f7585323545da5f0e65b6098cca6a0ecac2733cf20cd150f90a508dbcbf767b5644abcc24711a2310d8"})
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f0000000740)=[@svc={0x122, 0x40, {0x0, [0xd, 0x8, 0x7a, 0x5, 0xde7f]}}, @mrs={0xbe, 0x18, {0x603000000013c03a}}, @msr={0x14, 0x20, {0x603000000013df6d, 0x7}}, @eret={0xe6, 0x18, 0xffffffff}, @msr={0x14, 0x20, {0x603000000013e687, 0x2}}, @smc={0x1e, 0x40, {0xc5000021, [0x4, 0x6, 0x4, 0x2622]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2a2}}, @mrs={0xbe, 0x18, {0x6030000000138066}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x3e5}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x2df}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0x401, 0x6}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0xcb}}, @code={0xa, 0x6c, {"008008d50068603c007008d500f087d20060b8f2e10180d2620080d2e30180d2c40080d2020000d4000028d5e0f289d20020b0f2e10080d2220080d2030080d2e40080d2020000d400a4002f000028d50040641e008008d5"}}, @irq_setup={0x46, 0x18, {0x4, 0x158}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x2, 0x6, 0x2, 0x40}}, @svc={0x122, 0x40, {0x8400000b, [0x9, 0x2, 0x2, 0x2]}}, @irq_setup={0x46, 0x18, {0x1, 0x17a}}, @hvc={0x32, 0x40, {0xc4000010, [0xa, 0x7, 0xcdba, 0x40, 0x6]}}, @its_setup={0x82, 0x28, {0x2, 0x1000000, 0x302}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @mrs={0xbe, 0x18, {0x603000000013801d}}, @mrs={0xbe, 0x18, {0x6030000000138012}}, @memwrite={0x6e, 0x30, @generic={0x30000, 0xaf1, 0x4, 0x7}}, @svc={0x122, 0x40, {0x84000002, [0x9, 0x5, 0x5dec, 0x6, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013e293}}, @irq_setup={0x46, 0x18, {0x0, 0x278}}], 0x42c}, 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x20000000003)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r13 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
r14 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x32)
ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f00000000c0)={0x10001, 0x1, 0x8180000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x4, 0x1000, 0x1000, &(0x7f0000fa2000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000100)={0x1, 0x0, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})

25m3.740524759s ago: executing program 4 (id=846):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x26000, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0})
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x3, &(0x7f0000000240)=0xf})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000bc2000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0})

24m26.711206288s ago: executing program 36 (id=845):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
munmap$KVM_VCPU(0x0, 0x1000000000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x12, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000040)={0x5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, 0x0, 0x0, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r2, 0x4004ae8b, &(0x7f0000000200)={0xf3, "6f5632ac1505bd62648876182fd824602bd4406eb4670d998899b1508f7c6cdbd3c2209916136b4ed1ce9ee88c9aeb1b0bebdf58719d64733dcecf5cd942231deaccfb283d182661823c7102397caf1913ab46e9ff3bee442e98b0f96c60d255a82a2fdb295f811b01fa37cc013cbc00dae2dfdf9f618f8eb1510f4005fb646b144d60bf279b49800a03559bd18d4ac689af695d20895dda3682db33d713a325b6043c450a2219684f6828e692c4d69e3ac21938649d0b51f55c5a8b6d5d64fcfc18a49b5c3a2075792f7585323545da5f0e65b6098cca6a0ecac2733cf20cd150f90a508dbcbf767b5644abcc24711a2310d8"})
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f0000000740)=[@svc={0x122, 0x40, {0x0, [0xd, 0x8, 0x7a, 0x5, 0xde7f]}}, @mrs={0xbe, 0x18, {0x603000000013c03a}}, @msr={0x14, 0x20, {0x603000000013df6d, 0x7}}, @eret={0xe6, 0x18, 0xffffffff}, @msr={0x14, 0x20, {0x603000000013e687, 0x2}}, @smc={0x1e, 0x40, {0xc5000021, [0x4, 0x6, 0x4, 0x2622]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2a2}}, @mrs={0xbe, 0x18, {0x6030000000138066}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x3e5}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x2df}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0x401, 0x6}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0xcb}}, @code={0xa, 0x6c, {"008008d50068603c007008d500f087d20060b8f2e10180d2620080d2e30180d2c40080d2020000d4000028d5e0f289d20020b0f2e10080d2220080d2030080d2e40080d2020000d400a4002f000028d50040641e008008d5"}}, @irq_setup={0x46, 0x18, {0x4, 0x158}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x2, 0x6, 0x2, 0x40}}, @svc={0x122, 0x40, {0x8400000b, [0x9, 0x2, 0x2, 0x2]}}, @irq_setup={0x46, 0x18, {0x1, 0x17a}}, @hvc={0x32, 0x40, {0xc4000010, [0xa, 0x7, 0xcdba, 0x40, 0x6]}}, @its_setup={0x82, 0x28, {0x2, 0x1000000, 0x302}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @mrs={0xbe, 0x18, {0x603000000013801d}}, @mrs={0xbe, 0x18, {0x6030000000138012}}, @memwrite={0x6e, 0x30, @generic={0x30000, 0xaf1, 0x4, 0x7}}, @svc={0x122, 0x40, {0x84000002, [0x9, 0x5, 0x5dec, 0x6, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013e293}}, @irq_setup={0x46, 0x18, {0x0, 0x278}}], 0x42c}, 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x20000000003)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_RUN(r11, 0xae80, 0x0)
r13 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
r14 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x32)
ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f00000000c0)={0x10001, 0x1, 0x8180000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x4, 0x1000, 0x1000, &(0x7f0000fa2000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000100)={0x1, 0x0, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})

24m12.831816548s ago: executing program 37 (id=846):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x26000, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0})
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x3, &(0x7f0000000240)=0xf})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000bc2000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0})

15m5.252217509s ago: executing program 6 (id=855):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) (async)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x80000, 0x10000, 0x0, 0x2, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async, rerun: 32)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32)

14m58.619773409s ago: executing program 7 (id=856):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000000)={0x4, 0x9})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x10200, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bc2000/0x400000)=nil) (async)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
mmap$KVM_VCPU(&(0x7f0000e8f000/0x2000)=nil, r6, 0x4, 0x10, 0xffffffffffffffff, 0x0) (async)
r7 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
r8 = openat$kvm(0x0, &(0x7f0000000300), 0x20002, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0) (async)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71c9d70236fc0448424234d6baffffffffff4c24501958da2e2c18b875c2357c6ed600", 0x0, 0x48)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
write$eventfd(r11, &(0x7f00000001c0)=0xffffff7f, 0xff25) (async)
r12 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000240)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x2}) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x27)
r17 = syz_kvm_setup_syzos_vm$arm64(r16, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r17, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x3, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x3, 0x0, 0x6, 0x2, 0x9}}], 0x50}, 0x0, 0x0) (async)
syz_kvm_vgic_v3_setup(r16, 0x1, 0x100) (async)
ioctl$KVM_CREATE_DEVICE(r16, 0xc00caee0, &(0x7f0000000180)={0x8})

14m43.542315034s ago: executing program 6 (id=857):
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r3, 0x800454cf, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d)
r5 = openat$kvm(0x0, &(0x7f00000001c0), 0x0, 0x0)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
r9 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000180)=@attr_other={0x0, 0x1, 0x304, &(0x7f0000000200)})
r10 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r11 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000300)=[@svc={0x122, 0x40, {0x80000000, [0x7, 0x9, 0x10, 0x3, 0xffffffffffffff42]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0x2, 0xb}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x3f0}}, @irq_setup={0x46, 0x18, {0x4, 0x336}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x80, 0xfff}}, @svc={0x122, 0x40, {0x86000000, [0x0, 0x7fffffffffffffff, 0x81, 0xfffffffffffffff7, 0x4]}}, @msr={0x14, 0x20, {0x603000000013c4c8, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x3000, 0x3, 0x4}}, @msr={0x14, 0x20, {0x6030000000138047, 0x401}}], 0x190}, &(0x7f0000000500)=[@featur1={0x1, 0x8a}], 0x1)
ioctl$KVM_KVMCLOCK_CTRL(r11, 0xaead)
r12 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x9)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r10, 0x4018aee1, &(0x7f0000000600)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000005c0)={0x1, 0x8, 0x1}})
r14 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r14, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0xfd, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x0, 0x1, 0x4, 0x9, 0x3}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x379}}], 0x80}, 0x0, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7})
r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r16, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1})

14m28.278483149s ago: executing program 7 (id=858):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r5, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x603000000013c006}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
syz_kvm_setup_cpu$arm64(r3, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000840)=[{0x0, 0x0, 0x248}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r8 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000004}}], 0x50}, 0x0, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xc0189436, 0x20003fff)
munmap(&(0x7f0000293000/0x1000)=nil, 0x1000)
openat$kvm(0x0, 0x0, 0x0, 0x0)
syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x2000, 0x1000, &(0x7f0000fa2000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000100)={0x1, 0x0, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r12=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)

14m8.902514872s ago: executing program 6 (id=859):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
r6 = syz_kvm_vgic_v3_setup(r3, 0x1, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000180)=@attr_other={0x0, 0x1, 0x304, &(0x7f00000000c0)=0x83})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r5, 0x4018aee3, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0x87a, 0x1, 0x1}})
r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r1, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x13, r1, 0x0)
r8 = eventfd2(0x70, 0x0)
close(r8)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8)
eventfd2(0x0, 0x0)
close(r2)
r9 = eventfd2(0x0, 0x0)
close(r9)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r9, 0x0)
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_GET_SREGS(r1, 0x8000ae83, &(0x7f0000000380))
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
r13 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r12, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r13, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)

13m58.089880061s ago: executing program 7 (id=860):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04)
mmap$KVM_VCPU(&(0x7f0000f8e000/0x1000)=nil, r2, 0x3000002, 0x16831, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000200)="f301181301d136000000000000f4ff0000802346cbd987000001000200ecff0900010200250000000000000000000000000001000000000040000000000000000000000100", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r11, 0x4068aea3, &(0x7f0000000080)={0xa8, 0x0, 0x3})
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$arm64(r11, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305829, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
ioctl$KVM_CREATE_VM(r0, 0xae03, 0xaa)

13m42.328113845s ago: executing program 6 (id=861):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x181b03, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async)
r3 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x40)
ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000000)=@attr_arm64={0x0, 0x5, 0x0, &(0x7f0000000240)=0x7}) (async)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_DEVICE_ATTR_vm(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) (async)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0xc400000e, [0x0, 0x1, 0x2, 0x3, 0x4]}}], 0x40}, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xa)
ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, 0x0) (async, rerun: 32)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 32)
syz_kvm_setup_cpu$arm64(r7, r6, &(0x7f0000c00000/0x400000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

13m30.39107916s ago: executing program 7 (id=862):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0xb, 0x30d2a4fbfbfad6b8, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x7, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async)
r6 = eventfd2(0x8801, 0x800)
r7 = eventfd2(0x3ff, 0x0)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000000)={r7, 0x5, 0x2, r7}) (async)
r8 = eventfd2(0x8, 0x801)
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000180)={r8, 0x100, 0x2, r7})
ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f0000000140)={r7, 0x5, 0x2, r6}) (async, rerun: 64)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000040)={0x5}) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) (rerun: 64)

13m18.910611516s ago: executing program 6 (id=863):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x2, <r1=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x0, 0x1, &(0x7f0000000080)=0x8})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r3, 0x4020940d, 0xfffffffffffff4c2)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000700)={0x7, <r4=>0xffffffffffffffff})
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x3, 0x0, 0x0})
openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x2}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x0, 0x1, &(0x7f0000000080)=0x8}) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
ioctl$KVM_CHECK_EXTENSION(r3, 0x4020940d, 0xfffffffffffff4c2) (async)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000700)={0x7}) (async)
ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x3, 0x0, 0x0}) (async)

13m5.118484654s ago: executing program 7 (id=864):
openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8000000, 0x0, 0x0, 0x1})
munmap(&(0x7f0000647000/0x1000)=nil, 0x1000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000a, 0x53033, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0)

12m56.921123985s ago: executing program 6 (id=865):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) (async)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x80)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x6) (async)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x6)
ioctl$KVM_CREATE_VM(r8, 0x400454cc, 0x110c230020)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x1000000000)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) (async)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r10, 0x2000003, 0x4000010, 0xffffffffffffffff, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2c) (async)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2c)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, 0x0)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0xfffffffb, 0x5}) (async)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0xfffffffb, 0x5})
ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000000)=@arm64_fp_extra={0x60200000081000d4, &(0x7f0000000100)=0x800})
r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04)

12m40.002918966s ago: executing program 7 (id=866):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000000)={0x40000, 0x0, 0xd, 0x0, 0xffff8000})
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

12m7.26282419s ago: executing program 38 (id=865):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) (async)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (async)
openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x80)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x6) (async)
ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x6)
ioctl$KVM_CREATE_VM(r8, 0x400454cc, 0x110c230020)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x1000000000)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) (async)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r10, 0x2000003, 0x4000010, 0xffffffffffffffff, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2c) (async)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2c)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, 0x0)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0xfffffffb, 0x5}) (async)
ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000140)={0xfffffffb, 0x5})
ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000000)=@arm64_fp_extra={0x60200000081000d4, &(0x7f0000000100)=0x800})
r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r15, 0xae04)

11m43.723300439s ago: executing program 39 (id=866):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000000)={0x40000, 0x0, 0xd, 0x0, 0xffff8000})
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

2m51.880663692s ago: executing program 9 (id=868):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8004, 0x55e}})
r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffd}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04)
r10 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r9, 0x1000002, 0x13, r8, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, <r13=>0xffffffffffffffff, 0x1})
close(r13)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r8, 0x0)
r14 = openat$kvm(0x0, &(0x7f0000000040), 0x535402, 0x0)
ioctl$KVM_CREATE_VM(r14, 0x40049409, 0x0)
r15 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r15, 0xc00caee0, &(0x7f00000001c0)={0x8, <r16=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r16, 0x4018aee1, &(0x7f0000000180)=@attr_riscv64=@attr_addr={0x0, 0x1, @imsic, &(0x7f00000002c0)=0x7})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000140)=@arm64_sys={0x603000000013df66, &(0x7f0000000000)=0x80000001})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r15, 0x4010ae68, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})

2m42.771083448s ago: executing program 8 (id=867):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bc5000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
r4 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140002, &(0x7f0000000000)=0xfffffffffffffff5})
ioctl$KVM_CREATE_VM(r4, 0x401c5820, 0x20000000)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0x1}})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0)

2m14.954459512s ago: executing program 9 (id=869):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@code={0xa, 0x6c, {"a0119ed20040b8f2210080d2c20080d2030080d2640180d2020000d400d8a05e0058c01a00c0601e007008d5007008d5407382d20000b0f2e10180d2220080d2c30080d2640180d2020000d4000028d50008e03c008008d5"}}, @eret={0xe6, 0x18, 0x401}, @smc={0x1e, 0x40, {0xc4000007, [0x3, 0x6, 0x5, 0x931, 0x1]}}, @hvc={0x32, 0x40, {0x84000011, [0x9, 0xf, 0x5, 0x6, 0x1]}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @msr={0x14, 0x20, {0x603000000013c4d0, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c021}}, @code={0xa, 0x84, {"20a290d200e0b0f2810080d2a20080d2230180d2040080d2020000d4007008d50068284e409380d20020b0f2810080d2420180d2e30180d2a40180d2020000d4007008d5000028d5208998d20080b0f2410180d2220180d2a30180d2e40180d2020000d4007008d500d4200e0084004f"}}, @svc={0x122, 0x40, {0x30000000, [0x2, 0x0, 0x5, 0x9, 0x7fffffffffffffff]}}, @msr={0x14, 0x20, {0x603000000013c011, 0xf}}, @msr={0x14, 0x20, {0x603000000013c64a, 0x5}}, @uexit={0x0, 0x18, 0x7fffffff}, @uexit={0x0, 0x18, 0x4}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x282}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x0, 0x3, 0x4, 0x3, 0x7ff}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x4, 0x4, 0x7, 0x80000001, 0x3}}, @code={0xa, 0xcc, {"000592d20000b8f2610180d2a20180d2a30180d2a40180d2020000d420b781d200a0b8f2e10080d2820080d2430080d2c40180d2020000d4000cc0da40b69cd200a0b0f2e10080d2620180d2a30180d2e40080d2020000d400599cd20000b0f2010180d2820180d2430180d2040180d2020000d40058000ea01d9fd200a0b0f2c10080d2020180d2a30180d2040080d2020000d460ae85d200c0b0f2010080d2420080d2c30180d2440180d2020000d400e0c00d007008d5"}}, @hvc={0x32, 0x40, {0xc2000117, [0xeee, 0x100000000, 0x9, 0x2, 0x84fe]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0xe6}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x3fb}}, @svc={0x122, 0x40, {0x80000000, [0x4dc4, 0x1, 0x5, 0xff, 0xf]}}, @svc={0x122, 0x40, {0x400, [0xfffffffffffffffc, 0x1, 0xfffffffffffffffb, 0x6, 0xc60e]}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x2, 0x9, 0x9, 0x8, 0x4}}, @svc={0x122, 0x40, {0x80008000, [0x5, 0x7, 0x9, 0x100000000, 0x2]}}, @eret={0xe6, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x199}}, @uexit={0x0, 0x18, 0x2}, @hvc={0x32, 0x40, {0xc5000020, [0x0, 0x9, 0x7fff, 0x4, 0x1]}}, @code={0xa, 0x9c, {"007008d5e0ff9dd20020b8f2410180d2020180d2030180d2c40080d2020000d4e0eb85d20000b8f2410080d2c20180d2e30080d2240080d2020000d4007008d500fc205e007c001b20c198d20000b0f2a10180d2e20080d2230180d2640180d2020000d440178cd200c0b8f2a10080d2a20080d2430080d2040080d2020000d40074002f008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0xa, 0x6, 0x2, 0x4}}], 0x690}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1})
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x2000000)
r9 = eventfd2(0x8, 0x80000)
r10 = eventfd2(0x9, 0x800)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r9, 0xfffffffb, 0x3, r10})

2m14.953188472s ago: executing program 8 (id=870):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async)
eventfd2(0x3ff, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x8000000000000)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
r4 = ioctl$KVM_CREATE_VM(r3, 0x400454d0, 0x1) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VM(r7, 0x401054d5, 0x16)

1m52.920322704s ago: executing program 8 (id=871):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7f, 0x4, 0x3, 0x0, 0x8, 0x9, 0x8, 0x8b, 0x4, 0x0, 0xf, 0x0, 0x0, 0xebf, 0x6, 0x0, 0xd, 0xfe, 0x3, '\x00', 0x3, 0x8})
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0)=0x9, 0x1d)
r6 = syz_kvm_vgic_v3_setup(r1, 0x2, 0x100)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000380)={r6, 0x7f, 0x2})
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x9, <r9=>0xffffffffffffffff})
r10 = ioctl$KVM_CREATE_VM(r9, 0x400454e2, 0x110c230f00)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)

1m48.92448804s ago: executing program 9 (id=872):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x68}, 0x0, 0x0) (async)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000bc2000/0x400000)=nil)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0) (async)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r8=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x0, 0x0})
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r9, 0x3, 0x11, r3, 0x0) (async)
r11 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f00000001c0)=0x2}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_assert_syzos_uexit$arm64(r3, r10, 0xfffffffffffffffe)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_assert_syzos_uexit$arm64(r3, r10, 0xffffffffffffffff)

1m15.910599881s ago: executing program 8 (id=873):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r2 = syz_kvm_add_vcpu$arm64(r1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000280)={0x14, 0xff}})
ioctl$KVM_GET_STATS_FD_cpu(r2, 0xaece) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000000)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000009, [0x11, 0xc, 0x8000, 0x10, 0x200]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1m15.910264041s ago: executing program 9 (id=874):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xd7)
openat$kvm(0x0, &(0x7f0000000240), 0x402, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000240), 0x402, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0) (async)
r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) (async)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r7, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0x0, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xdf, 0x10, 0xaa, 0x2, '\x00', 0x2, 0x100000000000000}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0x0, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xdf, 0x10, 0xaa, 0x2, '\x00', 0x2, 0x100000000000000})
write$eventfd(r11, &(0x7f00000001c0)=0x9, 0x1d) (async)
write$eventfd(r11, &(0x7f00000001c0)=0x9, 0x1d)
r12 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x1ffffffffffffff)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r15, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})

54.824300158s ago: executing program 8 (id=875):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x800, [0xffffffeffffffff8, 0x8, 0x8000000005, 0x5, 0x400]}}], 0x40}, 0x0, 0x0)
r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x163800, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04)
r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) (async)
mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x1000002, 0x80031, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r13, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r8, 0x3, 0x40b2811, r7, 0x0) (async, rerun: 64)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async, rerun: 64)
syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r16 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
ioctl$KVM_RUN(r16, 0xae80, 0x0)

26.780589107s ago: executing program 40 (id=874):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xd7)
openat$kvm(0x0, &(0x7f0000000240), 0x402, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000240), 0x402, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0) (async)
r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) (async)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r7, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0x0, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xdf, 0x10, 0xaa, 0x2, '\x00', 0x2, 0x100000000000000}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0x0, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xdf, 0x10, 0xaa, 0x2, '\x00', 0x2, 0x100000000000000})
write$eventfd(r11, &(0x7f00000001c0)=0x9, 0x1d) (async)
write$eventfd(r11, &(0x7f00000001c0)=0x9, 0x1d)
r12 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x1ffffffffffffff)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r15, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})

0s ago: executing program 41 (id=875):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0xc2881, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x800, [0xffffffeffffffff8, 0x8, 0x8000000005, 0x5, 0x400]}}], 0x40}, 0x0, 0x0)
r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x163800, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04)
r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r15, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) (async)
mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x1000002, 0x80031, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r13, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r8, 0x3, 0x40b2811, r7, 0x0) (async, rerun: 64)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async, rerun: 64)
syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r16 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0)
ioctl$KVM_RUN(r16, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

[  368.323371][ T3205] 8021q: adding VLAN 0 to HW filter on device bond0
[  377.157285][   T24] audit: type=1400 audit(376.370:77): avc:  denied  { write } for  pid=3270 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  381.221366][   T24] audit: type=1400 audit(380.400:78): avc:  denied  { write } for  pid=3274 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  394.191657][   T24] audit: type=1400 audit(393.360:79): avc:  denied  { write } for  pid=3278 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  398.780994][   T24] audit: type=1400 audit(397.960:80): avc:  denied  { write } for  pid=3281 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  410.633846][   T24] audit: type=1400 audit(409.820:81): avc:  denied  { write } for  pid=3286 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  414.497722][   T24] audit: type=1400 audit(413.710:82): avc:  denied  { write } for  pid=3289 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  416.876278][ T3205] eql: remember to turn off Van-Jacobson compression on your slave devices
[  424.730506][   T24] audit: type=1400 audit(423.940:83): avc:  denied  { write } for  pid=3294 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  428.430433][   T24] audit: type=1400 audit(427.640:84): avc:  denied  { write } for  pid=3297 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  440.470992][   T24] audit: type=1400 audit(439.670:85): avc:  denied  { write } for  pid=3303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  444.344354][   T24] audit: type=1400 audit(443.560:86): avc:  denied  { write } for  pid=3306 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  451.693777][   T24] audit: type=1400 audit(450.870:87): avc:  denied  { write } for  pid=3308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  456.698045][   T24] audit: type=1400 audit(455.880:88): avc:  denied  { write } for  pid=3311 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  466.336149][   T24] audit: type=1400 audit(465.520:89): avc:  denied  { write } for  pid=3315 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  470.100870][   T24] audit: type=1400 audit(469.280:90): avc:  denied  { write } for  pid=3318 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  475.434592][   T24] audit: type=1400 audit(474.630:91): avc:  denied  { write } for  pid=3320 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  479.295117][   T24] audit: type=1400 audit(478.510:92): avc:  denied  { write } for  pid=3323 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  488.770321][   T24] audit: type=1400 audit(487.980:93): avc:  denied  { write } for  pid=3328 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  492.680616][   T24] audit: type=1400 audit(491.850:94): avc:  denied  { write } for  pid=3331 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  512.382474][   T24] audit: type=1400 audit(511.580:95): avc:  denied  { write } for  pid=3340 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  517.388581][   T24] audit: type=1400 audit(516.600:96): avc:  denied  { write } for  pid=3343 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  531.808276][   T24] audit: type=1400 audit(531.020:97): avc:  denied  { write } for  pid=3349 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  535.631336][   T24] audit: type=1400 audit(534.820:98): avc:  denied  { write } for  pid=3352 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  546.706729][   T24] audit: type=1400 audit(545.920:99): avc:  denied  { write } for  pid=3356 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  550.361406][   T24] audit: type=1400 audit(549.560:100): avc:  denied  { write } for  pid=3359 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
Warning: Permanently added '[localhost]:11432' (ED25519) to the list of known hosts.
[  582.175813][   T24] audit: type=1400 audit(581.380:101): avc:  denied  { name_bind } for  pid=3364 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  582.988326][   T24] audit: type=1400 audit(582.200:102): avc:  denied  { execute } for  pid=3365 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  583.017269][   T24] audit: type=1400 audit(582.220:103): avc:  denied  { execute_no_trans } for  pid=3365 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  607.515933][   T24] audit: type=1400 audit(606.730:104): avc:  denied  { mounton } for  pid=3365 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  607.563059][   T24] audit: type=1400 audit(606.780:105): avc:  denied  { mount } for  pid=3365 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  607.648066][ T3365] cgroup: Unknown subsys name 'net'
[  607.706160][   T24] audit: type=1400 audit(606.920:106): avc:  denied  { unmount } for  pid=3365 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  608.121284][ T3365] cgroup: Unknown subsys name 'cpuset'
[  608.238531][ T3365] cgroup: Unknown subsys name 'rlimit'
[  608.625846][   T24] audit: type=1400 audit(607.840:107): avc:  denied  { setattr } for  pid=3365 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  608.644896][   T24] audit: type=1400 audit(607.860:108): avc:  denied  { mounton } for  pid=3365 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  608.671837][   T24] audit: type=1400 audit(607.880:109): avc:  denied  { mount } for  pid=3365 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  609.704264][ T3368] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  609.725493][   T24] audit: type=1400 audit(608.930:110): avc:  denied  { relabelto } for  pid=3368 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  609.745876][   T24] audit: type=1400 audit(608.960:111): avc:  denied  { write } for  pid=3368 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  609.945915][   T24] audit: type=1400 audit(609.160:112): avc:  denied  { read } for  pid=3365 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  609.965331][   T24] audit: type=1400 audit(609.170:113): avc:  denied  { open } for  pid=3365 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  610.015368][ T3365] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  669.063827][   T24] audit: type=1400 audit(668.280:114): avc:  denied  { execmem } for  pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  673.565149][   T24] audit: type=1400 audit(672.780:115): avc:  denied  { read } for  pid=3372 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  673.576302][   T24] audit: type=1400 audit(672.790:116): avc:  denied  { read } for  pid=3371 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  673.602207][   T24] audit: type=1400 audit(672.810:117): avc:  denied  { open } for  pid=3371 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  673.672827][   T24] audit: type=1400 audit(672.870:118): avc:  denied  { mounton } for  pid=3372 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  673.892625][   T24] audit: type=1400 audit(673.100:119): avc:  denied  { module_request } for  pid=3372 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  673.922920][   T24] audit: type=1400 audit(673.130:120): avc:  denied  { module_request } for  pid=3371 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  674.907384][   T24] audit: type=1400 audit(674.120:121): avc:  denied  { sys_module } for  pid=3372 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  699.775986][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  700.015748][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  700.434586][ T3372] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  700.888550][ T3372] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  711.796595][ T3371] hsr_slave_0: entered promiscuous mode
[  711.823656][ T3371] hsr_slave_1: entered promiscuous mode
[  712.917970][ T3372] hsr_slave_0: entered promiscuous mode
[  712.993702][ T3372] hsr_slave_1: entered promiscuous mode
[  713.024139][ T3372] debugfs: 'hsr0' already exists in 'hsr'
[  713.031447][ T3372] Cannot create hsr debugfs directory
[  718.421584][   T24] audit: type=1400 audit(717.630:122): avc:  denied  { create } for  pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  718.453812][   T24] audit: type=1400 audit(717.660:123): avc:  denied  { write } for  pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  718.501294][   T24] audit: type=1400 audit(717.710:124): avc:  denied  { read } for  pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  718.628543][ T3371] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  718.892751][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  718.928175][ T3371] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  719.245021][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  719.335597][ T3371] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  719.558033][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  719.734614][ T3371] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  719.841710][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  721.298088][ T3372] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  721.404034][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  721.473133][ T3372] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  721.573834][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  721.617160][ T3372] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  721.745469][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  721.798009][ T3372] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  721.961540][ T3372] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  733.404275][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0
[  735.634825][ T3372] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.014283][ T3371] veth0_vlan: entered promiscuous mode
[  786.433673][ T3371] veth1_vlan: entered promiscuous mode
[  788.550821][ T3371] veth0_macvtap: entered promiscuous mode
[  789.038806][ T3372] veth0_vlan: entered promiscuous mode
[  789.190066][ T3371] veth1_macvtap: entered promiscuous mode
[  789.712838][ T3372] veth1_vlan: entered promiscuous mode
[  791.261675][ T3444] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  791.334600][ T3465] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  791.338791][ T3465] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  791.468800][ T3465] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  792.764683][ T3372] veth0_macvtap: entered promiscuous mode
[  793.336341][ T3372] veth1_macvtap: entered promiscuous mode
[  794.128574][   T24] audit: type=1400 audit(793.340:125): avc:  denied  { mount } for  pid=3371 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  794.338654][   T24] audit: type=1400 audit(793.550:126): avc:  denied  { mounton } for  pid=3371 comm="syz-executor" path="/syzkaller.W92fhx/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  794.483212][   T24] audit: type=1400 audit(793.700:127): avc:  denied  { mount } for  pid=3371 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  794.701570][   T24] audit: type=1400 audit(793.910:128): avc:  denied  { mounton } for  pid=3371 comm="syz-executor" path="/syzkaller.W92fhx/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  794.883095][   T24] audit: type=1400 audit(794.060:129): avc:  denied  { mounton } for  pid=3371 comm="syz-executor" path="/syzkaller.W92fhx/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  795.612089][   T24] audit: type=1400 audit(794.830:130): avc:  denied  { unmount } for  pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  795.746146][ T3411] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  795.758460][ T3411] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  795.780139][ T3411] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  795.784042][ T3411] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  795.877686][   T24] audit: type=1400 audit(795.090:131): avc:  denied  { mounton } for  pid=3371 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  795.947266][   T24] audit: type=1400 audit(795.160:132): avc:  denied  { mount } for  pid=3371 comm="syz-executor" name="/" dev="gadgetfs" ino=3757 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  796.192387][   T24] audit: type=1400 audit(795.400:133): avc:  denied  { mount } for  pid=3371 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  796.267876][   T24] audit: type=1400 audit(795.480:134): avc:  denied  { mounton } for  pid=3371 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  797.891296][ T3371] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  808.041164][   T24] kauditd_printk_skb: 4 callbacks suppressed
[  808.048195][   T24] audit: type=1400 audit(807.250:139): avc:  denied  { read } for  pid=3523 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  808.123458][   T24] audit: type=1400 audit(807.310:140): avc:  denied  { open } for  pid=3523 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  808.434582][   T24] audit: type=1400 audit(807.650:141): avc:  denied  { ioctl } for  pid=3523 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  818.030937][   T24] audit: type=1400 audit(817.150:142): avc:  denied  { execute } for  pid=3531 comm="syz.0.3" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3864 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  819.385162][   T24] audit: type=1400 audit(818.580:143): avc:  denied  { write } for  pid=3533 comm="syz.1.4" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  879.804876][   T24] audit: type=1400 audit(878.990:144): avc:  denied  { append } for  pid=3566 comm="syz.1.15" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  880.512460][   T24] audit: type=1400 audit(879.720:145): avc:  denied  { create } for  pid=3566 comm="syz.1.15" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  880.626340][   T24] audit: type=1400 audit(879.840:146): avc:  denied  { map } for  pid=3566 comm="syz.1.15" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4566 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  880.735034][   T24] audit: type=1400 audit(879.890:147): avc:  denied  { read } for  pid=3566 comm="syz.1.15" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4566 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  881.566689][   T24] audit: type=1400 audit(880.780:148): avc:  denied  { write } for  pid=3566 comm="syz.1.15" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4566 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  987.715125][   T24] audit: type=1400 audit(986.930:149): avc:  denied  { write } for  pid=3624 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  995.722280][   T24] audit: type=1400 audit(994.910:150): avc:  denied  { write } for  pid=3630 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1018.143958][ T3642] kvm [3642]: Failed to find VMA for hva 0x20d8d000
[ 1051.575926][ T3657] kvm [3657]: Failed to find VMA for hva 0x20e15000
[ 1136.745772][   T24] audit: type=1400 audit(1135.960:151): avc:  denied  { ioctl } for  pid=3708 comm="syz.1.58" path="net:[4026532627]" dev="nsfs" ino=4026532627 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 1166.180181][   T24] audit: type=1400 audit(1165.360:152): avc:  denied  { setattr } for  pid=3724 comm="syz.0.65" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1222.276529][   T24] audit: type=1400 audit(1221.440:153): avc:  denied  { execute } for  pid=3764 comm="syz.1.77" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=7911 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1347.571899][   T24] audit: type=1400 audit(1346.780:154): avc:  denied  { write } for  pid=3832 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1355.050245][   T24] audit: type=1400 audit(1354.220:155): avc:  denied  { write } for  pid=3838 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1822.946907][   T24] audit: type=1400 audit(1822.150:156): avc:  denied  { map } for  pid=4102 comm="syz.1.180" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1823.007659][   T24] audit: type=1400 audit(1822.220:157): avc:  denied  { execute } for  pid=4102 comm="syz.1.180" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1870.263316][   T24] audit: type=1400 audit(1869.470:158): avc:  denied  { execute } for  pid=4127 comm="syz.0.189" path="/93/T" dev="tmpfs" ino=485 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1898.396853][ T4147] kvm [4147]: Failed to find VMA for hva 0x20c01000
[ 1914.674893][   T24] audit: type=1400 audit(1913.830:159): avc:  denied  { write } for  pid=4155 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1922.782193][   T24] audit: type=1400 audit(1921.920:160): avc:  denied  { write } for  pid=4158 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2110.116194][ T4276] kvm [4276]: Failed to find VMA for hva 0x21016000
[ 2134.193074][   T24] audit: type=1400 audit(2133.400:161): avc:  denied  { ioctl } for  pid=4295 comm="syz.1.236" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=16506 ioctlcmd=0xae49 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 2145.981690][ T4303] kvm [4303]: Failed to find VMA for hva 0x20dd5000
[ 2308.161401][   T24] audit: type=1400 audit(2307.340:162): avc:  denied  { write } for  pid=4395 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2315.971200][   T24] audit: type=1400 audit(2315.160:163): avc:  denied  { write } for  pid=4403 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2421.047956][   T24] audit: type=1400 audit(2420.230:164): avc:  denied  { map } for  pid=4464 comm="syz.1.287" path="/" dev="tmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 2536.473098][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2536.613949][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2536.655544][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2536.914162][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.037400][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.214857][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.403095][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.596489][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.664702][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2537.805906][ T4523] kvm [4523]: Failed to find VMA for hva 0x20da5000
[ 2571.166238][ T4545] kvm [4545]: Failed to find VMA for hva 0x21016000
[ 2571.316690][ T4545] kvm [4545]: Failed to find VMA for hva 0x21016000
[ 2571.462373][ T4544] kvm [4544]: Failed to find VMA for hva 0x21016000
[ 2571.832542][ T4544] kvm [4544]: Failed to find VMA for hva 0x21016000
[ 2572.051849][ T4545] kvm [4545]: Failed to find VMA for hva 0x21016000
[ 2572.088270][ T4544] kvm [4544]: Failed to find VMA for hva 0x21016000
[ 2572.212200][ T4545] kvm [4545]: Failed to find VMA for hva 0x21016000
[ 2608.397364][   T24] audit: type=1400 audit(2607.580:165): avc:  denied  { map } for  pid=4566 comm="syz.1.319" path="pipe:[2756]" dev="pipefs" ino=2756 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 2635.761743][ T4582] kvm [4582]: Failed to find VMA for hva 0x20c01000
[ 2750.728026][   T24] audit: type=1400 audit(2749.940:166): avc:  denied  { write } for  pid=4645 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2759.471547][   T24] audit: type=1400 audit(2758.630:167): avc:  denied  { write } for  pid=4654 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2841.603537][ T4705] kvm [4705]: Failed to find VMA for hva 0x20dd4000
[ 2869.805243][ T4728] KVM: debugfs: duplicate directory 4728-5
[ 2987.006643][   T24] audit: type=1400 audit(2986.210:168): avc:  denied  { write } for  pid=4790 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2995.282493][   T24] audit: type=1400 audit(2994.470:169): avc:  denied  { write } for  pid=4799 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3101.472327][ T4853] kvm [4853]: Failed to find VMA for hva 0x20c01000
[ 3223.813321][   T24] audit: type=1400 audit(3223.020:170): avc:  denied  { write } for  pid=4917 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3231.820689][   T24] audit: type=1400 audit(3231.030:171): avc:  denied  { write } for  pid=4927 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3481.795999][ T5080] kvm [5080]: Failed to find VMA for hva 0x20c01000
[ 3741.922662][   T24] audit: type=1400 audit(3741.110:172): avc:  denied  { write } for  pid=5217 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3750.664350][   T24] audit: type=1400 audit(3749.870:173): avc:  denied  { write } for  pid=5227 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3989.175565][   T24] audit: type=1400 audit(3988.390:174): avc:  denied  { write } for  pid=5362 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3995.673372][   T24] audit: type=1400 audit(3994.860:175): avc:  denied  { write } for  pid=5367 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4133.366020][ T5441] kvm [5441]: Failed to find VMA for hva 0x20c01000
[ 4223.505210][ T4016] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4224.906844][ T4016] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4226.123781][ T4016] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4227.476832][ T4016] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4239.314539][ T4016] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 4239.414176][ T4016] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 4239.462010][ T4016] bond0 (unregistering): Released all slaves
[ 4240.659990][ T4016] hsr_slave_0: left promiscuous mode
[ 4240.725941][ T4016] hsr_slave_1: left promiscuous mode
[ 4241.031854][ T4016] veth1_macvtap: left promiscuous mode
[ 4241.045179][ T4016] veth0_macvtap: left promiscuous mode
[ 4241.057242][ T4016] veth1_vlan: left promiscuous mode
[ 4241.073154][ T4016] veth0_vlan: left promiscuous mode
[ 4258.843518][ T4016] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4259.562334][ T4016] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4260.837506][ T4016] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4262.137999][ T4016] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4263.124977][   T24] audit: type=1400 audit(4262.340:176): avc:  denied  { write } for  pid=5496 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4268.840279][   T24] audit: type=1400 audit(4268.030:177): avc:  denied  { write } for  pid=5503 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4276.686870][ T4016] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 4276.881142][ T4016] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 4276.992474][ T4016] bond0 (unregistering): Released all slaves
[ 4278.253810][ T3205] 8021q: adding VLAN 0 to HW filter on device eth1
[ 4279.520937][ T4016] hsr_slave_0: left promiscuous mode
[ 4279.801386][ T4016] hsr_slave_1: left promiscuous mode
[ 4280.309985][ T4016] veth1_macvtap: left promiscuous mode
[ 4280.311006][ T4016] veth0_macvtap: left promiscuous mode
[ 4280.317230][ T4016] veth1_vlan: left promiscuous mode
[ 4280.318385][ T4016] veth0_vlan: left promiscuous mode
[ 4300.350515][   T24] audit: type=1400 audit(4299.560:178): avc:  denied  { write } for  pid=5522 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4304.721302][   T24] audit: type=1400 audit(4303.890:179): avc:  denied  { write } for  pid=5533 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4305.483531][ T5465] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 4305.671732][ T5465] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 4307.838747][ T3205] 8021q: adding VLAN 0 to HW filter on device eth2
[ 4312.863098][ T5477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 4313.053389][ T5477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 4316.411190][   T24] audit: type=1400 audit(4315.620:180): avc:  denied  { write } for  pid=5545 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4321.011885][   T24] audit: type=1400 audit(4320.220:181): avc:  denied  { write } for  pid=5554 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4324.426235][ T3205] 8021q: adding VLAN 0 to HW filter on device eth3
[ 4324.707410][ T5465] hsr_slave_0: entered promiscuous mode
[ 4324.757855][ T5465] hsr_slave_1: entered promiscuous mode
[ 4333.274043][   T24] audit: type=1400 audit(4332.490:182): avc:  denied  { write } for  pid=5565 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4333.467695][ T5477] hsr_slave_0: entered promiscuous mode
[ 4333.525133][ T5477] hsr_slave_1: entered promiscuous mode
[ 4333.577214][ T5477] debugfs: 'hsr0' already exists in 'hsr'
[ 4333.620439][ T5477] Cannot create hsr debugfs directory
[ 4339.183187][   T24] audit: type=1400 audit(4338.350:183): avc:  denied  { write } for  pid=5570 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4341.550705][ T5465] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 4341.821727][ T5465] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 4342.755479][ T5465] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 4343.033786][ T5465] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 4343.777259][ T5465] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 4343.917616][ T5465] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 4343.976098][ T3205] 8021q: adding VLAN 0 to HW filter on device eth4
[ 4344.591283][ T5465] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 4344.754612][ T5465] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 4349.177238][   T24] audit: type=1400 audit(4348.340:184): avc:  denied  { write } for  pid=5573 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4350.934295][ T5477] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 4351.203201][ T5477] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 4351.288478][ T5477] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 4351.493690][ T5477] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 4351.613176][ T5477] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 4351.841966][ T5477] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 4351.888732][ T5477] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 4352.202297][ T5477] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 4356.074690][   T24] audit: type=1400 audit(4355.260:185): avc:  denied  { write } for  pid=5592 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4367.071928][ T5465] 8021q: adding VLAN 0 to HW filter on device bond0
[ 4372.901691][   T24] audit: type=1400 audit(4372.040:186): avc:  denied  { write } for  pid=5605 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4373.205580][ T5477] 8021q: adding VLAN 0 to HW filter on device bond0
[ 4379.461465][   T24] audit: type=1400 audit(4378.640:187): avc:  denied  { write } for  pid=5614 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4383.458594][ T3205] 8021q: adding VLAN 0 to HW filter on device eth5
[ 4400.211425][   T24] audit: type=1400 audit(4399.390:188): avc:  denied  { write } for  pid=5626 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4408.410436][   T24] audit: type=1400 audit(4407.450:189): avc:  denied  { write } for  pid=5637 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4413.655884][ T3205] 8021q: adding VLAN 0 to HW filter on device eth6
[ 4426.430118][   T24] audit: type=1400 audit(4425.630:190): avc:  denied  { write } for  pid=5652 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4432.400769][   T24] audit: type=1400 audit(4431.610:191): avc:  denied  { write } for  pid=5663 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4436.801455][ T3205] 8021q: adding VLAN 0 to HW filter on device eth7
[ 4452.766662][ T5465] veth0_vlan: entered promiscuous mode
[ 4453.827841][ T5465] veth1_vlan: entered promiscuous mode
[ 4454.356065][   T24] audit: type=1400 audit(4453.570:192): avc:  denied  { write } for  pid=5681 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4457.262248][ T5465] veth0_macvtap: entered promiscuous mode
[ 4457.872957][ T5465] veth1_macvtap: entered promiscuous mode
[ 4461.441751][ T5477] veth0_vlan: entered promiscuous mode
[ 4462.967853][ T5475] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 4462.981809][ T5475] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 4462.998611][ T5475] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 4463.051409][ T5475] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 4463.700481][   T24] audit: type=1400 audit(4462.910:193): avc:  denied  { write } for  pid=5687 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4463.748151][ T5477] veth1_vlan: entered promiscuous mode
[ 4469.556837][ T3205] 8021q: adding VLAN 0 to HW filter on device eth8
[ 4469.712018][ T5477] veth0_macvtap: entered promiscuous mode
[ 4470.166383][   T24] audit: type=1400 audit(4469.370:194): avc:  denied  { unmount } for  pid=5465 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 4470.718126][ T5477] veth1_macvtap: entered promiscuous mode
[ 4474.378155][ T5016] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 4474.481893][ T4016] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 4474.544631][ T5629] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 4474.552012][ T5629] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 4509.707212][   T24] audit: type=1400 audit(4508.920:195): avc:  denied  { write } for  pid=5712 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4519.811281][   T24] audit: type=1400 audit(4518.950:196): avc:  denied  { write } for  pid=5718 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4550.737874][   T24] audit: type=1400 audit(4549.950:197): avc:  denied  { write } for  pid=5733 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4559.391237][   T24] audit: type=1400 audit(4558.590:198): avc:  denied  { write } for  pid=5742 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4585.835102][   T24] audit: type=1400 audit(4584.930:199): avc:  denied  { write } for  pid=5760 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4596.362090][   T24] audit: type=1400 audit(4595.540:200): avc:  denied  { write } for  pid=5771 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4612.530656][   T24] audit: type=1400 audit(4611.730:201): avc:  denied  { write } for  pid=5781 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4621.312571][   T24] audit: type=1400 audit(4620.430:202): avc:  denied  { write } for  pid=5787 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4643.685275][   T24] audit: type=1400 audit(4642.900:203): avc:  denied  { write } for  pid=5801 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4654.243223][   T24] audit: type=1400 audit(4653.410:204): avc:  denied  { write } for  pid=5810 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4677.418380][   T24] audit: type=1400 audit(4676.630:205): avc:  denied  { write } for  pid=5820 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4686.281637][   T24] audit: type=1400 audit(4685.490:206): avc:  denied  { write } for  pid=5829 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4713.596582][   T24] audit: type=1400 audit(4712.800:207): avc:  denied  { write } for  pid=5844 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4725.163491][   T24] audit: type=1400 audit(4724.370:208): avc:  denied  { write } for  pid=5854 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4748.145275][   T24] audit: type=1400 audit(4747.350:209): avc:  denied  { write } for  pid=5867 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4758.424102][   T24] audit: type=1400 audit(4757.640:210): avc:  denied  { write } for  pid=5876 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4781.942011][   T24] audit: type=1400 audit(4781.150:211): avc:  denied  { write } for  pid=5889 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4791.541792][   T24] audit: type=1400 audit(4790.750:212): avc:  denied  { write } for  pid=5892 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5050.843526][   T24] audit: type=1400 audit(5050.050:213): avc:  denied  { write } for  pid=6028 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5061.453633][   T24] audit: type=1400 audit(5060.600:214): avc:  denied  { write } for  pid=6037 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5152.103156][ T6080] kvm [6080]: Failed to find VMA for hva 0x21016000
[ 5508.808303][ T6250] FAULT_INJECTION: forcing a failure.
[ 5508.808303][ T6250] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 5508.853567][ T6250] CPU: 0 UID: 0 PID: 6250 Comm: syz.3.717 Not tainted syzkaller #0 PREEMPT 
[ 5508.854237][ T6250] Hardware name: linux,dummy-virt (DT)
[ 5508.854743][ T6250] Call trace:
[ 5508.855133][ T6250]  show_stack+0x2c/0x3c (C)
[ 5508.857241][ T6250]  __dump_stack+0x30/0x40
[ 5508.857676][ T6250]  dump_stack_lvl+0xd8/0x12c
[ 5508.857990][ T6250]  dump_stack+0x1c/0x28
[ 5508.858289][ T6250]  should_fail_ex+0x56c/0x6d8
[ 5508.858524][ T6250]  should_fail+0x14/0x24
[ 5508.858733][ T6250]  should_fail_usercopy+0x20/0x30
[ 5508.858954][ T6250]  _inline_copy_from_user+0x44/0x18c
[ 5508.859225][ T6250]  kstrtouint_from_user+0x70/0xf4
[ 5508.859514][ T6250]  proc_fail_nth_write+0x54/0x208
[ 5508.859811][ T6250]  vfs_write+0x2c0/0xb7c
[ 5508.860115][ T6250]  ksys_write+0x108/0x1fc
[ 5508.860431][ T6250]  __arm64_sys_write+0x98/0xcc
[ 5508.860702][ T6250]  invoke_syscall+0x94/0x1ec
[ 5508.861009][ T6250]  el0_svc_common+0x120/0x2f4
[ 5508.861313][ T6250]  do_el0_svc+0x58/0x74
[ 5508.861628][ T6250]  el0_svc+0x60/0x238
[ 5508.861887][ T6250]  el0t_64_sync_handler+0x84/0x12c
[ 5508.862142][ T6250]  el0t_64_sync+0x198/0x19c
[ 5590.201595][   T24] audit: type=1400 audit(5589.400:215): avc:  denied  { write } for  pid=6291 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5599.621415][   T24] audit: type=1400 audit(5598.810:216): avc:  denied  { write } for  pid=6300 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5975.514192][ T6476] kvm [6476]: Failed to find VMA for hva 0x20de7000
[ 6040.971567][   T24] audit: type=1400 audit(6040.150:217): avc:  denied  { write } for  pid=6510 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6050.610185][   T24] audit: type=1400 audit(6049.820:218): avc:  denied  { write } for  pid=6516 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6247.725509][   T24] audit: type=1400 audit(6246.930:219): avc:  denied  { write } for  pid=6621 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6257.452958][   T24] audit: type=1400 audit(6256.590:220): avc:  denied  { write } for  pid=6632 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6321.411678][ T6670] kvm [6670]: Failed to find VMA for hva 0x20d8d000
[ 6493.596131][ T5475] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6495.438589][ T5475] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6496.643626][ T5475] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6497.808432][ T5475] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6514.904657][ T5475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6515.077139][ T5475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6515.304206][ T5475] bond0 (unregistering): Released all slaves
[ 6518.252782][ T5475] hsr_slave_0: left promiscuous mode
[ 6518.284326][ T5475] hsr_slave_1: left promiscuous mode
[ 6518.431869][ T5475] veth1_macvtap: left promiscuous mode
[ 6518.435330][ T5475] veth0_macvtap: left promiscuous mode
[ 6518.446113][ T5475] veth1_vlan: left promiscuous mode
[ 6518.454796][ T5475] veth0_vlan: left promiscuous mode
[ 6532.366936][ T6707] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6532.916796][ T6707] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6536.728472][ T5475] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6538.177213][ T5475] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6539.348106][ T5475] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6540.417229][ T5475] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6549.581484][   T24] audit: type=1400 audit(6548.770:221): avc:  denied  { write } for  pid=6767 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6554.912962][   T24] audit: type=1400 audit(6554.050:222): avc:  denied  { write } for  pid=6774 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6555.462118][ T5475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6555.622340][ T5475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6555.733637][ T5475] bond0 (unregistering): Released all slaves
[ 6557.802157][ T5475] hsr_slave_0: left promiscuous mode
[ 6558.061280][ T5475] hsr_slave_1: left promiscuous mode
[ 6558.638706][ T5475] veth1_macvtap: left promiscuous mode
[ 6558.657485][ T5475] veth0_macvtap: left promiscuous mode
[ 6558.685275][ T5475] veth1_vlan: left promiscuous mode
[ 6558.710637][ T5475] veth0_vlan: left promiscuous mode
[ 6575.895889][ T3205] 8021q: adding VLAN 0 to HW filter on device eth9
[ 6577.220716][ T6715] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6577.547797][ T6715] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6582.158124][   T24] audit: type=1400 audit(6581.370:223): avc:  denied  { write } for  pid=6777 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6587.280124][   T24] audit: type=1400 audit(6586.470:224): avc:  denied  { write } for  pid=6786 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6587.424238][ T6707] hsr_slave_0: entered promiscuous mode
[ 6587.494377][ T6707] hsr_slave_1: entered promiscuous mode
[ 6599.941172][   T24] audit: type=1400 audit(6599.140:225): avc:  denied  { write } for  pid=6796 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6600.386981][ T6715] hsr_slave_0: entered promiscuous mode
[ 6600.424742][ T6715] hsr_slave_1: entered promiscuous mode
[ 6600.486306][ T6715] debugfs: 'hsr0' already exists in 'hsr'
[ 6600.503323][ T6715] Cannot create hsr debugfs directory
[ 6603.363981][ T6707] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 6603.703867][ T6707] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 6604.620753][ T6707] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 6604.773438][ T6707] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 6605.328033][   T24] audit: type=1400 audit(6604.540:226): avc:  denied  { write } for  pid=6801 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6605.552764][ T6707] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 6605.791288][ T6707] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 6606.555184][ T6707] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 6606.727416][ T6707] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 6609.126480][ T3205] 8021q: adding VLAN 0 to HW filter on device eth10
[ 6614.423740][ T6715] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 6614.764994][ T6715] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 6614.958080][ T6715] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 6615.202399][ T6715] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 6615.248401][ T6715] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 6615.495656][ T6715] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 6615.594701][ T6715] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 6615.811288][ T6715] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 6625.896364][   T24] audit: type=1400 audit(6625.110:227): avc:  denied  { write } for  pid=6823 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6635.003177][   T24] audit: type=1400 audit(6634.110:228): avc:  denied  { write } for  pid=6832 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6636.705875][ T6707] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6641.665721][ T3205] 8021q: adding VLAN 0 to HW filter on device eth11
[ 6645.297184][ T6715] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6658.836560][   T24] audit: type=1400 audit(6658.050:229): avc:  denied  { write } for  pid=6846 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6668.032228][   T24] audit: type=1400 audit(6667.240:230): avc:  denied  { write } for  pid=6854 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6673.726925][ T3205] 8021q: adding VLAN 0 to HW filter on device eth12
[ 6690.481536][   T24] audit: type=1400 audit(6689.610:231): avc:  denied  { write } for  pid=6867 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6699.674724][   T24] audit: type=1400 audit(6698.860:232): avc:  denied  { write } for  pid=6878 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6705.698767][ T3205] 8021q: adding VLAN 0 to HW filter on device eth13
[ 6725.525004][   T24] audit: type=1400 audit(6724.740:233): avc:  denied  { write } for  pid=6899 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6732.813946][   T24] audit: type=1400 audit(6732.010:234): avc:  denied  { write } for  pid=6909 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6738.256583][ T3205] 8021q: adding VLAN 0 to HW filter on device eth14
[ 6759.022734][ T6707] veth0_vlan: entered promiscuous mode
[ 6760.176316][ T6707] veth1_vlan: entered promiscuous mode
[ 6760.651133][   T24] audit: type=1400 audit(6759.700:235): avc:  denied  { write } for  pid=6927 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6764.233459][ T6707] veth0_macvtap: entered promiscuous mode
[ 6764.893384][ T6707] veth1_macvtap: entered promiscuous mode
[ 6769.950649][ T6921] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 6770.091101][ T6157] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 6770.095371][ T6157] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 6770.106084][ T6157] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 6771.134460][   T24] audit: type=1400 audit(6770.340:236): avc:  denied  { write } for  pid=6934 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6771.383255][ T6715] veth0_vlan: entered promiscuous mode
[ 6773.718350][ T6715] veth1_vlan: entered promiscuous mode
[ 6777.073794][ T3205] 8021q: adding VLAN 0 to HW filter on device eth15
[ 6778.313649][ T6715] veth0_macvtap: entered promiscuous mode
[ 6779.065596][ T6715] veth1_macvtap: entered promiscuous mode
[ 6783.067212][ T6157] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 6783.103312][ T5470] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 6783.126838][ T5470] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 6783.234705][ T5470] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 6804.868771][   T24] audit: type=1400 audit(6804.080:237): avc:  denied  { write } for  pid=6944 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6817.872301][   T24] audit: type=1400 audit(6817.060:238): avc:  denied  { write } for  pid=6954 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6825.496104][ T3205] 8021q: adding VLAN 0 to HW filter on device eth16
[ 6844.061823][   T24] audit: type=1400 audit(6843.160:239): avc:  denied  { write } for  pid=6960 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6851.841102][   T24] audit: type=1400 audit(6851.040:240): avc:  denied  { write } for  pid=6964 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6899.013445][   T24] audit: type=1400 audit(6898.180:241): avc:  denied  { write } for  pid=6984 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6911.720695][   T24] audit: type=1400 audit(6910.920:242): avc:  denied  { write } for  pid=6995 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6922.762007][ T6642] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6925.934705][ T6642] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6928.575400][ T6642] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6932.134861][ T6642] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6932.643344][   T24] audit: type=1400 audit(6931.820:243): avc:  denied  { write } for  pid=7004 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6943.491192][   T24] audit: type=1400 audit(6942.630:244): avc:  denied  { write } for  pid=7010 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6957.232183][ T6642] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6957.298218][ T6642] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6957.435703][ T6642] bond0 (unregistering): Released all slaves
[ 6959.772257][ T6642] hsr_slave_0: left promiscuous mode
[ 6959.806431][ T6642] hsr_slave_1: left promiscuous mode
[ 6960.354950][ T6642] veth1_macvtap: left promiscuous mode
[ 6960.371456][ T6642] veth0_macvtap: left promiscuous mode
[ 6960.381742][ T6642] veth1_vlan: left promiscuous mode
[ 6960.388547][ T6642] veth0_vlan: left promiscuous mode
[ 6984.832447][ T6642] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6987.015952][ T6642] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6989.124695][ T6642] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6991.138439][ T6642] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7002.694811][   T24] audit: type=1400 audit(7001.870:245): avc:  denied  { write } for  pid=7034 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7009.861614][   T24] audit: type=1400 audit(7009.070:246): avc:  denied  { write } for  pid=7043 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7014.264681][ T6642] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 7014.425414][ T6642] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 7014.492498][ T6642] bond0 (unregistering): Released all slaves
[ 7015.765019][ T3205] 8021q: adding VLAN 0 to HW filter on device eth17
[ 7015.928826][ T6970] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 7016.262519][ T6642] hsr_slave_0: left promiscuous mode
[ 7016.334422][ T6642] hsr_slave_1: left promiscuous mode
[ 7016.722411][ T6642] veth1_macvtap: left promiscuous mode
[ 7016.733617][ T6642] veth0_macvtap: left promiscuous mode
[ 7016.742390][ T6642] veth1_vlan: left promiscuous mode
[ 7016.752179][ T6642] veth0_vlan: left promiscuous mode
[ 7033.853459][ T6970] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 7050.154474][ T6978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 7050.714753][   T24] audit: type=1400 audit(7049.920:247): avc:  denied  { write } for  pid=7056 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7051.473447][ T6978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 7058.932612][   T24] audit: type=1400 audit(7058.080:248): avc:  denied  { write } for  pid=7063 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7064.195649][ T3205] 8021q: adding VLAN 0 to HW filter on device eth18
[ 7067.604032][ T6970] hsr_slave_0: entered promiscuous mode
[ 7067.687449][ T6970] hsr_slave_1: entered promiscuous mode
[ 7082.350632][   T24] audit: type=1400 audit(7081.550:249): avc:  denied  { write } for  pid=7078 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7082.786555][ T6978] hsr_slave_0: entered promiscuous mode
[ 7082.880441][ T6978] hsr_slave_1: entered promiscuous mode
[ 7082.922648][ T6978] debugfs: 'hsr0' already exists in 'hsr'
[ 7082.926448][ T6978] Cannot create hsr debugfs directory
[ 7087.364168][ T6970] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 7087.717039][ T6970] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 7087.863830][ T6970] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 7088.201980][ T6970] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 7089.041230][   T24] audit: type=1400 audit(7088.240:250): avc:  denied  { write } for  pid=7083 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7089.201380][ T6970] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 7089.545322][ T6970] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 7090.155910][ T6970] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 7090.387486][ T6970] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 7093.825215][ T3205] 8021q: adding VLAN 0 to HW filter on device eth19
[ 7101.934261][   T24] audit: type=1400 audit(7101.110:251): avc:  denied  { write } for  pid=7093 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7102.527709][ T6978] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 7103.105084][ T6978] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 7103.257487][ T6978] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 7103.931065][ T6978] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 7104.103447][ T6978] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 7104.616739][ T6978] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 7104.853473][ T6978] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 7105.292794][ T6978] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 7113.720099][   T24] audit: type=1400 audit(7112.920:252): avc:  denied  { write } for  pid=7108 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7130.025001][ T6970] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7133.513054][   T24] audit: type=1400 audit(7132.730:253): avc:  denied  { write } for  pid=7117 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7140.874365][ T6978] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7143.513615][   T24] audit: type=1400 audit(7142.640:254): avc:  denied  { write } for  pid=7125 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7164.870359][   T24] audit: type=1400 audit(7164.040:255): avc:  denied  { write } for  pid=7137 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7177.093159][   T24] audit: type=1400 audit(7176.290:256): avc:  denied  { write } for  pid=7145 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7203.915338][   T24] audit: type=1400 audit(7203.130:257): avc:  denied  { write } for  pid=7161 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7212.392621][   T24] audit: type=1400 audit(7211.570:258): avc:  denied  { write } for  pid=7171 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7218.193565][ T3205] 8021q: adding VLAN 0 to HW filter on device eth20
[ 7244.900688][   T24] audit: type=1400 audit(7244.090:259): avc:  denied  { write } for  pid=7190 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7255.161365][   T24] audit: type=1400 audit(7254.370:260): avc:  denied  { write } for  pid=7200 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7261.868653][ T3205] 8021q: adding VLAN 0 to HW filter on device eth21
[ 7274.072907][ T6970] veth0_vlan: entered promiscuous mode
[ 7275.196980][ T6970] veth1_vlan: entered promiscuous mode
[ 7278.894076][ T6970] veth0_macvtap: entered promiscuous mode
[ 7279.543885][ T6970] veth1_macvtap: entered promiscuous mode
[ 7283.110688][   T24] audit: type=1400 audit(7282.230:261): avc:  denied  { write } for  pid=7215 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7283.823270][ T6463] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7283.824927][ T6463] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7283.852778][ T6463] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7283.876698][ T6463] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7290.044602][ T6978] veth0_vlan: entered promiscuous mode
[ 7292.333663][ T6978] veth1_vlan: entered promiscuous mode
[ 7295.064300][   T24] audit: type=1400 audit(7294.280:262): avc:  denied  { write } for  pid=7220 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7298.044580][ T6978] veth0_macvtap: entered promiscuous mode
[ 7298.992705][ T6978] veth1_macvtap: entered promiscuous mode
[ 7304.741541][ T5470] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7304.742869][ T5470] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7304.820221][ T5470] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7304.821398][ T5470] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7305.402473][ T3205] 8021q: adding VLAN 0 to HW filter on device eth22
[ 7324.982337][   T24] audit: type=1400 audit(7324.160:263): avc:  denied  { write } for  pid=7226 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7337.981538][   T24] audit: type=1400 audit(7337.160:264): avc:  denied  { write } for  pid=7235 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7390.590888][   T24] audit: type=1400 audit(7389.750:265): avc:  denied  { write } for  pid=7256 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7404.181643][   T24] audit: type=1400 audit(7403.370:266): avc:  denied  { write } for  pid=7263 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7414.186582][ T3205] 8021q: adding VLAN 0 to HW filter on device eth23
[ 7452.750754][   T24] audit: type=1400 audit(7451.950:267): avc:  denied  { write } for  pid=7285 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7466.858800][   T24] audit: type=1400 audit(7466.030:268): avc:  denied  { write } for  pid=7292 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7477.577425][ T3205] 8021q: adding VLAN 0 to HW filter on device eth24
[ 7512.481343][   T24] audit: type=1400 audit(7511.530:269): avc:  denied  { write } for  pid=7308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7526.406013][   T24] audit: type=1400 audit(7525.600:270): avc:  denied  { write } for  pid=7321 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7567.560546][   T24] audit: type=1400 audit(7566.770:271): avc:  denied  { write } for  pid=7335 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7576.671602][   T24] audit: type=1400 audit(7575.770:272): avc:  denied  { write } for  pid=7340 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7607.921937][ T5475] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7611.446893][ T5475] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7614.398152][ T5475] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7617.385469][ T5475] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7623.823464][   T24] audit: type=1400 audit(7623.010:273): avc:  denied  { write } for  pid=7350 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7638.442002][   T24] audit: type=1400 audit(7637.630:274): avc:  denied  { write } for  pid=7360 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7653.237424][ T5475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 7653.840762][ T5475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 7654.105934][ T5475] bond0 (unregistering): Released all slaves
[ 7657.742459][ T5475] hsr_slave_0: left promiscuous mode
[ 7657.824259][ T5475] hsr_slave_1: left promiscuous mode
[ 7658.654919][ T5475] veth1_macvtap: left promiscuous mode
[ 7658.701346][ T5475] veth0_macvtap: left promiscuous mode
[ 7658.723433][ T5475] veth1_vlan: left promiscuous mode
[ 7658.756579][ T5475] veth0_vlan: left promiscuous mode
[ 7693.208357][ T5475] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7695.287678][ T5475] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7696.928789][ T5475] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7698.566556][ T5475] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7712.464467][   T24] audit: type=1400 audit(7711.670:275): avc:  denied  { write } for  pid=7383 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7722.807556][   T24] audit: type=1400 audit(7721.940:276): avc:  denied  { write } for  pid=7392 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7724.676377][ T5475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 7725.097344][ T5475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 7725.355610][ T5475] bond0 (unregistering): Released all slaves
[ 7728.982339][ T5475] hsr_slave_0: left promiscuous mode
[ 7729.451805][ T5475] hsr_slave_1: left promiscuous mode
[ 7730.195354][ T5475] veth1_macvtap: left promiscuous mode
[ 7730.222485][ T5475] veth0_macvtap: left promiscuous mode
[ 7730.244373][ T5475] veth1_vlan: left promiscuous mode
[ 7730.251080][ T5475] veth0_vlan: left promiscuous mode
[ 7749.827130][ T3205] 8021q: adding VLAN 0 to HW filter on device eth25
[ 7757.640795][   T24] audit: type=1400 audit(7756.830:277): avc:  denied  { write } for  pid=7394 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7764.486121][   T24] audit: type=1400 audit(7763.700:278): avc:  denied  { write } for  pid=7399 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7792.060627][   T24] audit: type=1400 audit(7791.250:279): avc:  denied  { write } for  pid=7419 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7800.277633][   T24] audit: type=1400 audit(7799.490:280): avc:  denied  { write } for  pid=7430 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7805.386199][ T3205] 8021q: adding VLAN 0 to HW filter on device eth26
[ 7805.577762][ T7362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 7805.753405][ T7352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 7806.085028][ T7352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 7806.323235][ T7362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 7813.632878][   T24] audit: type=1400 audit(7812.830:281): avc:  denied  { write } for  pid=7434 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7821.862181][   T24] audit: type=1400 audit(7821.060:282): avc:  denied  { write } for  pid=7444 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7844.987148][ T7362] hsr_slave_0: entered promiscuous mode
[ 7845.174830][ T7362] hsr_slave_1: entered promiscuous mode
[ 7849.724812][ T7352] hsr_slave_0: entered promiscuous mode
[ 7849.857030][ T7352] hsr_slave_1: entered promiscuous mode
[ 7849.887512][ T7352] debugfs: 'hsr0' already exists in 'hsr'
[ 7849.943322][ T7352] Cannot create hsr debugfs directory
[ 7851.734826][   T24] audit: type=1400 audit(7850.940:283): avc:  denied  { write } for  pid=7459 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7858.743489][   T24] audit: type=1400 audit(7857.900:284): avc:  denied  { write } for  pid=7464 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7863.365169][ T3205] 8021q: adding VLAN 0 to HW filter on device eth27
[ 7871.484246][ T7362] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 7872.247233][ T7362] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 7872.428668][ T7362] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 7872.857983][ T7362] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 7873.128745][ T7362] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 7873.588766][ T7362] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 7873.775304][ T7362] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 7874.216766][ T7362] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 7881.357391][ T7352] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 7881.853980][ T7352] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 7881.976460][ T7352] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 7882.471882][ T7352] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 7882.664458][ T7352] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 7883.048782][ T7352] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 7883.397116][ T7352] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 7883.847871][ T7352] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 7890.555559][   T24] audit: type=1400 audit(7889.770:285): avc:  denied  { write } for  pid=7477 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7902.819669][   T24] audit: type=1400 audit(7902.010:286): avc:  denied  { write } for  pid=7494 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7911.487499][ T3205] 8021q: adding VLAN 0 to HW filter on device eth28
[ 7918.818568][ T7362] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7927.296180][ T7352] 8021q: adding VLAN 0 to HW filter on device bond0
[ 7938.880482][   T24] audit: type=1400 audit(7938.050:287): avc:  denied  { write } for  pid=7505 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7950.465703][   T24] audit: type=1400 audit(7949.630:288): avc:  denied  { write } for  pid=7516 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7960.693046][ T3205] 8021q: adding VLAN 0 to HW filter on device eth29
[ 7975.630757][   T24] audit: type=1400 audit(7974.820:289): avc:  denied  { write } for  pid=7522 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7988.783999][   T24] audit: type=1400 audit(7987.870:290): avc:  denied  { write } for  pid=7533 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8027.572741][   T24] audit: type=1400 audit(8026.770:291): avc:  denied  { write } for  pid=7551 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8039.988200][   T24] audit: type=1400 audit(8039.180:292): avc:  denied  { write } for  pid=7562 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8047.964769][ T3205] 8021q: adding VLAN 0 to HW filter on device eth30
[ 8060.064770][   T24] audit: type=1400 audit(8059.230:293): avc:  denied  { write } for  pid=7570 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8073.211331][   T24] audit: type=1400 audit(8072.390:294): avc:  denied  { write } for  pid=7581 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8100.941800][ T7362] veth0_vlan: entered promiscuous mode
[ 8102.527229][ T7362] veth1_vlan: entered promiscuous mode
[ 8107.993298][ T7362] veth0_macvtap: entered promiscuous mode
[ 8109.268300][   T24] audit: type=1400 audit(8108.310:295): avc:  denied  { write } for  pid=7596 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8109.603255][ T7362] veth1_macvtap: entered promiscuous mode
[ 8110.673233][ T7352] veth0_vlan: entered promiscuous mode
[ 8113.695616][ T7352] veth1_vlan: entered promiscuous mode
[ 8117.615591][ T6718] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 8117.617188][ T6718] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 8117.703839][ T4016] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 8117.765394][ T6157] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 8121.467767][   T24] audit: type=1400 audit(8120.680:296): avc:  denied  { write } for  pid=7600 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8122.239695][ T7352] veth0_macvtap: entered promiscuous mode
[ 8123.985199][ T7352] veth1_macvtap: entered promiscuous mode
[ 8130.524653][ T3205] 8021q: adding VLAN 0 to HW filter on device eth31
[ 8131.684435][ T6463] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 8131.717051][ T6463] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 8131.723005][ T6463] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 8131.723891][ T6463] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 8172.202892][   T24] audit: type=1400 audit(8171.350:297): avc:  denied  { write } for  pid=7612 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8188.591793][   T24] audit: type=1400 audit(8187.640:298): avc:  denied  { write } for  pid=7621 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8199.476109][ T3205] 8021q: adding VLAN 0 to HW filter on device eth32
[ 8275.074844][   T24] audit: type=1400 audit(8274.290:299): avc:  denied  { write } for  pid=7652 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8289.980609][   T24] audit: type=1400 audit(8289.190:300): avc:  denied  { write } for  pid=7662 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8322.501430][   T24] audit: type=1400 audit(8321.670:301): avc:  denied  { write } for  pid=7666 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8338.510570][   T24] audit: type=1400 audit(8337.680:302): avc:  denied  { write } for  pid=7675 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8392.401683][   T24] audit: type=1400 audit(8391.570:303): avc:  denied  { write } for  pid=7692 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8407.738859][   T24] audit: type=1400 audit(8406.940:304): avc:  denied  { write } for  pid=7701 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8454.275021][   T24] audit: type=1400 audit(8453.480:305): avc:  denied  { write } for  pid=7719 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8461.898203][ T7667] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8462.627134][ T7667] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8469.650781][   T24] audit: type=1400 audit(8468.820:306): avc:  denied  { write } for  pid=7730 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8485.586966][ T7677] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8486.198147][ T7677] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8513.681577][   T24] audit: type=1400 audit(8512.890:307): avc:  denied  { write } for  pid=7743 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8527.705930][ T7667] hsr_slave_0: entered promiscuous mode
[ 8527.916776][ T7667] hsr_slave_1: entered promiscuous mode
[ 8528.092189][ T7667] debugfs: 'hsr0' already exists in 'hsr'
[ 8528.142098][ T7667] Cannot create hsr debugfs directory
[ 8529.540303][   T24] audit: type=1400 audit(8528.700:308): avc:  denied  { write } for  pid=7752 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8557.463147][ T7677] hsr_slave_0: entered promiscuous mode
[ 8557.628485][ T7677] hsr_slave_1: entered promiscuous mode
[ 8557.794527][ T7677] debugfs: 'hsr0' already exists in 'hsr'
[ 8557.834595][ T7677] Cannot create hsr debugfs directory
[ 8604.434655][ T7667] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 8605.065581][ T7667] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 8609.403844][ T7667] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 8610.218666][ T7667] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 8610.607295][ T7667] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 8611.282870][ T7667] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 8611.617519][   T24] audit: type=1400 audit(8610.830:309): avc:  denied  { write } for  pid=7771 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8614.811456][ T7667] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 8615.676340][ T7667] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 8628.081926][   T24] audit: type=1400 audit(8627.240:310): avc:  denied  { write } for  pid=7782 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8638.013593][ T7677] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 8638.595492][ T7677] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 8638.877603][ T7677] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 8639.433140][ T7677] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 8639.696414][ T7677] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 8640.317964][ T7677] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 8640.508396][ T7677] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 8641.217699][ T7677] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 8656.774965][   T24] audit: type=1400 audit(8655.900:311): avc:  denied  { write } for  pid=7787 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8672.290664][   T24] audit: type=1400 audit(8671.500:312): avc:  denied  { write } for  pid=7804 comm="rm" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8678.054938][ T7667] 8021q: adding VLAN 0 to HW filter on device bond0
[ 8695.002793][ T7677] 8021q: adding VLAN 0 to HW filter on device bond0
[ 8702.370547][   T24] audit: type=1400 audit(8701.540:313): avc:  denied  { write } for  pid=7809 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=138 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8716.821116][   T26] INFO: task syz.8.875:7653 blocked for more than 430 seconds.
[ 8716.831972][   T26]       Not tainted syzkaller #0
[ 8716.863483][   T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 8716.920963][   T26] task:syz.8.875       state:D stack:0     pid:7653  tgid:7653  ppid:7352   task_flags:0x400040 flags:0x00000011
[ 8716.922531][   T26] Call trace:
[ 8716.922910][   T26]  __switch_to+0x5e0/0xb5c (T)
[ 8716.923576][   T26]  __schedule+0x1f54/0x38a8
[ 8716.923974][   T26]  schedule+0xac/0x27c
[ 8716.924389][   T26]  schedule_timeout+0x68/0x1ec
[ 8716.924873][   T26]  do_wait_for_common+0x28c/0x440
[ 8716.925326][   T26]  wait_for_completion+0x44/0x5c
[ 8716.925732][   T26]  __synchronize_srcu+0x1b4/0x1f4
[ 8716.926243][   T26]  synchronize_srcu+0x668/0x8dc
[ 8716.926726][   T26]  mmu_notifier_unregister+0x320/0x428
[ 8716.927188][   T26]  kvm_put_kvm+0x698/0xbb8
[ 8716.927616][   T26]  kvm_vm_release+0x58/0x78
[ 8716.928054][   T26]  __fput+0x4ac/0x978
[ 8716.928498][   T26]  ____fput+0x20/0x30
[ 8717.143360][   T26]  task_work_run+0x1b8/0x250
[ 8717.162185][   T26]  exit_to_user_mode_loop+0x110/0x188
[ 8717.162944][   T26]  el0_svc+0x184/0x238
[ 8717.163434][   T26]  el0t_64_sync_handler+0x84/0x12c
[ 8717.163886][   T26]  el0t_64_sync+0x198/0x19c
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 8717.320110][   T26] 
[ 8717.320110][   T26] Showing all locks held in the system:
[ 8717.320994][   T26] 1 lock held by khungtaskd/26:
[ 8717.321464][   T26]  #0: ffff800087dc48b8 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44
[ 8717.323974][   T26] 2 locks held by kworker/u4:4/48:
[ 8717.324364][   T26]  #0: 35f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80
[ 8717.326356][   T26]  #1: ffff80008df87ca8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80
[ 8717.328103][   T26] 2 locks held by getty/3234:
[ 8717.328454][   T26]  #0: 51f000001276a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c
[ 8717.563945][   T26]  #1: 61ff80008cb5b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x1284
[ 8717.566157][   T26] 2 locks held by syz-executor/3365:
[ 8717.566540][   T26] 2 locks held by kworker/u4:1/4016:
[ 8717.566876][   T26] 3 locks held by kworker/u4:2/6157:
[ 8717.567179][   T26] 3 locks held by kworker/u4:3/6642:
[ 8717.567514][   T26] 3 locks held by kworker/u4:11/6879:
[ 8717.567857][   T26] 2 locks held by kworker/u4:10/7351:
[ 8717.568151][   T26]  #0: 35f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80
[ 8717.683146][   T26]  #1: ffff80008e9f7ca8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80
[ 8717.684866][   T26] 3 locks held by kworker/u4:15/7602:
[ 8717.685224][   T26] 2 locks held by syz.9.874/7640:
[ 8717.685596][   T26] 4 locks held by rm/7819:
[ 8717.685892][   T26] 2 locks held by modprobe/7820:
[ 8717.801713][   T26] 
[ 8717.802371][   T26] =============================================
[ 8717.802371][   T26] 
[ 8717.803372][   T26] Kernel panic - not syncing: hung_task: blocked tasks
[ 8717.808472][   T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT 
[ 8717.810082][   T26] Hardware name: linux,dummy-virt (DT)
[ 8717.811105][   T26] Call trace:
[ 8717.811866][   T26]  show_stack+0x2c/0x3c (C)
[ 8717.813042][   T26]  __dump_stack+0x30/0x40
[ 8717.814143][   T26]  dump_stack_lvl+0x30/0x12c
[ 8717.815278][   T26]  dump_stack+0x1c/0x28
[ 8717.816338][   T26]  vpanic+0x4d0/0x848
[ 8717.817321][   T26]  vpanic+0x0/0x848
[ 8717.818281][   T26]  hung_task_panic+0x0/0x2c
[ 8717.819401][   T26]  kthread+0x4d4/0x51c
[ 8717.820434][   T26]  ret_from_fork+0x10/0x20
[ 8717.822289][   T26] Kernel Offset: disabled
[ 8717.823163][   T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f
[ 8717.824512][   T26] Memory Limit: none
[ 8717.826893][   T26] Rebooting in 86400 seconds..