last executing test programs: 53m8.253742132s ago: executing program 1 (id=280): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0) (async) r4 = eventfd2(0x0, 0x0) close(r4) r5 = eventfd2(0x0, 0x0) close(r5) (async) openat$kvm(0x0, 0xfffffffffffffffe, 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) r9 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x81}], 0x1) (async) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92) (async) syz_kvm_add_vcpu$arm64(r9, 0x0, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r7, 0x3, 0xa0) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x109272, 0x1f01) write$eventfd(r5, &(0x7f0000000180)=0x6, 0x8) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_IRQFD(r12, 0x4020ae76, 0xffffffffffffffff) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) write$eventfd(r4, &(0x7f0000000100)=0xfffffffffffffffe, 0xfdef) 52m56.630553049s ago: executing program 1 (id=282): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100016, &(0x7f0000000200)=0x81}) ioctl$KVM_ASSIGN_SET_MSIX_NR(r1, 0x4008ae73, &(0x7f0000000000)={0x8, 0x2}) 52m52.633007473s ago: executing program 0 (id=283): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r3 = eventfd2(0xffff10c0, 0x801) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0xf0b, 0x8080000, 0x8, r3}) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}], 0x28}, 0x0, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x228002, 0x0) 52m47.96618834s ago: executing program 1 (id=284): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r2 = mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r4, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r6 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, r5, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x5000, 0x12000, 0x81}) openat$kvm(0x0, 0x0, 0x0, 0x0) r7 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000040)=@riscv64_core={0x8030000000200012, 0x0}) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x9, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x808}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff}) write$eventfd(r11, &(0x7f00000001c0)=0x3, 0xfdef) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r12, 0xae04) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, r13, 0x3000002, 0x8a031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r14 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2b) ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x5) 52m44.785264778s ago: executing program 0 (id=285): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x16) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000000)={0x10001, 0x1, 0x3000, 0x1000, &(0x7f0000ffe000/0x1000)=nil, 0xb094}) (async) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f00000000c0)={0x0, 0x4, 0x61b}) (async) r1 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000100)={0x100, 0x9}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000140)={0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x10201, 0x2, 0xdddd0000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x1) (async) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) (async) r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f00000001c0)={0x2, 0x2}) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, r3, 0xc, 0x8010, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_GET_STATS_FD_vm(r0, 0xaece) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000000200)={0x1, 0x0, [{0x4, 0x1, 0x0, 0x0, @msi={0x1, 0x2, 0x7, 0x9}}]}) (async) ioctl$KVM_SET_USER_MEMORY_REGION2(r0, 0x40a0ae49, &(0x7f0000000240)={0x10003, 0x3, 0x782a8d393294539, 0x2000, &(0x7f0000ffc000/0x2000)=nil, 0x6, r2}) (async) write$eventfd(r4, &(0x7f0000000300), 0x8) (async) ioctl$KVM_CAP_ARM_USER_IRQ(r4, 0x4068aea3, &(0x7f0000000340)) (async) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x14) ioctl$KVM_SET_USER_MEMORY_REGION2(r5, 0x40a0ae49, &(0x7f00000003c0)={0x5, 0x2, 0x200000, 0x1000, &(0x7f0000ffc000/0x1000)=nil, 0x8, r1}) (async) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async) write$eventfd(r4, &(0x7f0000000480)=0x4, 0x8) (async) r6 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, r3, 0x4000002, 0x12, r4, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(r6, 0x20, &(0x7f00000004c0)="181796e92fac7f2064aae1d2f9746c8a367c1fd0f489857a", 0x0, 0x18) r7 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000740)={0x0, &(0x7f0000000500)=[@its_setup={0x82, 0x28, {0x4, 0x2, 0x3f}}, @irq_setup={0x46, 0x18, {0x4, 0x243}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x14, 0xcb, 0xa}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x223}}, @msr={0x14, 0x20, {0x603000000013e6c2, 0x1}}, @eret={0xe6, 0x18, 0xe8}, @hvc={0x32, 0x40, {0x84000003, [0x101, 0x2, 0xc, 0x2, 0x3]}}, @smc={0x1e, 0x40, {0x1, [0xb7, 0x3, 0x2, 0x3, 0x7]}}, @svc={0x122, 0x40, {0x80000001, [0x200, 0x6, 0x9, 0x10001, 0x8]}}, @uexit={0x0, 0x18, 0xfff}, @irq_setup={0x46, 0x18, {0x4, 0x37b}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x371}}, @hvc={0x32, 0x40, {0x80000000, [0x7, 0xf, 0x4, 0xffffffff80000000, 0x8]}}, @eret={0xe6, 0x18, 0x48d0}], 0x240}, &(0x7f0000000780)=[@featur2={0x1, 0x9}], 0x1) (async) ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f00000007c0)={r4, 0x6, 0x3, r4}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000800), 0x404202, 0x0) (async) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r4, 0x4018aee3, &(0x7f0000000880)=@attr_irq_timer={0x0, 0x1, 0x0, &(0x7f0000000840)=0x16}) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f00000008c0)={r4, 0x9, 0x0, r4}) (async) mmap$KVM_VCPU(&(0x7f0000d82000/0x3000)=nil, 0x0, 0x2, 0x10, r8, 0x0) (async) ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) 52m39.823076598s ago: executing program 0 (id=286): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x68}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000000000)={0xdf, 0x0, 0x10000}) ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000000000)={0xe1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) r7 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000040)=@attr_riscv64=@attr_imsic={0x0, 0x1, 0xb, &(0x7f0000000000)=0x1}) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r7, 0x3, 0x11, r3, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r8, 0xfffffffffffffffe) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r3, r8, 0xffffffffffffffff) 52m38.965189944s ago: executing program 1 (id=287): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x1}}) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000040)={0x0, &(0x7f0000000200)}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x5452, 0x2000fdfd) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0) (async) r4 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2b) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x80000, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vm(r7, 0x4018aee3, 0xffffffffffffffff) (async) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2c) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) (async) r11 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, &(0x7f0000000540)}, 0x0, 0xf4) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) ioctl$KVM_GET_REG_LIST(r11, 0xc008aeb0, &(0x7f00000000c0)={0x3, [0x675, 0x3, 0x4]}) r12 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x5) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r13, 0x100000a, 0x12, r12, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000180)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x48) (async) r14 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xa) ioctl$KVM_IRQ_LINE(r14, 0x4008ae61, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) 52m29.904224908s ago: executing program 1 (id=288): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000180)={0x5000}) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_vgic_v3_setup(r5, 0x4, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000100)=0x18000000000001}) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}], 0x28}, 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@code={0xa, 0x18, {"7f2003d5"}}], 0x18}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x8) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r15, 0x3, 0x11, r14, 0x0) syz_kvm_vgic_v3_setup(r8, 0x2, 0x200) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 52m25.852686728s ago: executing program 0 (id=289): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x820000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) (async) r7 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r9, 0x300000f, 0x2010, r8, 0x6000) (async) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) r10 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) openat$kvm(0x0, 0x0, 0x0, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7, 0x9b, 0xf, 0x0, 0x5, 0x48, 0x82, 0x42, 0x48, 0x86, 0xdd, 0x5, 0x0, 0x100000, 0x132, 0x9, 0x3, 0xa, 0x8, '\x00', 0x5, 0x80000008}) (async) write$eventfd(r13, &(0x7f00000001c0)=0x3, 0x8e80) 52m16.673350653s ago: executing program 0 (id=290): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x40) mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x0, 0x2, 0x12, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x141000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x29) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_REG_LIST(r3, 0x4000ae8d, 0x0) (async) mmap$KVM_VCPU(&(0x7f000081f000/0x3000)=nil, 0x0, 0x0, 0x10010, r3, 0x0) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0xfffffffffffffffd) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x7, 0x0, &(0x7f0000000140)=0x3ff}) (async) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x6, 0x1, 0x0}) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000000)={0xa, 0xffffffffffffffff, 0x1}) (async) ioctl$KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x3, 0x4, &(0x7f0000000040)=0x7f}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x26) (async) r8 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f00000002c0)) ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000000200)) (async) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000280)=[@msr={0x14, 0x20, {0x6030000000138067, 0x6}}], 0x20}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) (async) ioctl$KVM_RUN(r9, 0xae80, 0x0) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3b) ioctl$KVM_RESET_DIRTY_RINGS(r10, 0xaec7) 52m15.602389224s ago: executing program 1 (id=291): syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1) r11 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r10, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000280)="d6011813013c368000000070fa63b9da345309cbd98762c7795582ba3948ecff09003ddbd9f400010000000000000000000000000000df007a00", 0x0, 0x20) mmap$KVM_VCPU(&(0x7f0000f91000/0x3000)=nil, 0x0, 0x1000004, 0x11, r10, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4030582b, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) r12 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x32) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x3) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e, 0x2}}) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x32) ioctl$KVM_CREATE_GUEST_MEMFD(r15, 0xc040aed4, &(0x7f0000000040)={0x100, 0x4}) r16 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r16, 0x4010ae68, 0x0) 52m5.52254277s ago: executing program 0 (id=292): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000000)={0x35, 0xb000, 0x4, 0xffffffffffffffff, 0x5}) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) 51m28.864146622s ago: executing program 32 (id=291): syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r10 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1) r11 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r10, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000280)="d6011813013c368000000070fa63b9da345309cbd98762c7795582ba3948ecff09003ddbd9f400010000000000000000000000000000df007a00", 0x0, 0x20) mmap$KVM_VCPU(&(0x7f0000f91000/0x3000)=nil, 0x0, 0x1000004, 0x11, r10, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4030582b, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) r12 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x32) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x3) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e, 0x2}}) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x32) ioctl$KVM_CREATE_GUEST_MEMFD(r15, 0xc040aed4, &(0x7f0000000040)={0x100, 0x4}) r16 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r16, 0x4010ae68, 0x0) 51m19.109880765s ago: executing program 33 (id=292): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000000)={0x35, 0xb000, 0x4, 0xffffffffffffffff, 0x5}) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) 42m48.099390042s ago: executing program 2 (id=322): mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) (async) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) eventfd2(0x0, 0x0) (async) r4 = eventfd2(0x0, 0x0) close(r4) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x100000a, 0x28031, r2, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) (async) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) 42m32.903469606s ago: executing program 2 (id=324): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000380)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffe}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r7, 0x4004ae8b, &(0x7f0000000000)={0x8, "a78a3e6b9a32f5b7"}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r10, 0x2, 0x20000013) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) (async) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x6030000000138064, &(0x7f00000000c0)=0x8000}) ioctl$KVM_CREATE_VCPU(r9, 0xb702, 0x0) (async) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@its_setup={0x82, 0x28, {0xfffffffffffffffe, 0x1, 0x246}}], 0x28}, 0x0, 0x0) (async) close(0x4) close(0x5) 42m18.09347353s ago: executing program 2 (id=326): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) close(r2) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r3, 0x4018aee2, &(0x7f0000000180)=@attr_other={0x0, 0x2, 0x7f, 0x0}) (async) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async) r6 = eventfd2(0x9, 0x0) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000000)={0x0, 0xf000, 0x1, r6, 0x20}) 42m15.591585786s ago: executing program 3 (id=327): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x9) ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000180)={0x6000000000, 0x2b}) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000000)={0x0, 0x0}, &(0x7f00000000c0)=[@featur1={0x1, 0x5}], 0x1) r6 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000003, [0x80000000000000, 0x53960c3d, 0xac8, 0x2, 0x7fffffffffffffff]}}], 0x40}, &(0x7f00000001c0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000140)=@arm64_fp={0x604000000010005c, &(0x7f0000000080)=0xe03}) 42m1.573025514s ago: executing program 3 (id=328): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x8000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 64) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 64) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f0000000080)={0x200001fdfffd, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION2(r4, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0xa7000, &(0x7f0000ffc000/0x2000)=nil, 0x1000000, r5}) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f0000000080)={0x4000, 0x110000, 0x1}) (async) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x8080000, 0x8, 0x8, 0xc, 0xe6, 0x40, 0x9, 0x0, 0x81, 0x80}, {0x5000, 0x3000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x6, 0x36, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0x7, 0x6, 0x5, 0x42, 0xb, 0xff, 0x8, 0x3, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x16, 0x88, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xdddd1000, 0xdddd0000, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x2f, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0xc000, 0xa, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x81}, {0x7000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x3000, 0x2024, 0x2, 0x0, 0xfec00000, [0x6800000000000000, 0x4, 0x6, 0x8]}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x9, 0xb, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x88, 0x64, 0x9, 0x0, 0x9, 0x40006, 0xe, 0x3, 0x7, 0x0, '\x00', 0x10, 0x6}) (async) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (rerun: 64) write$eventfd(r10, &(0x7f00000001c0)=0x1, 0x11) (async) r11 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x3, 0x40000000, 0x7, 0x0, 0x105, 0x1}}], 0x50}, 0x0, 0x0) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000100)="3fe926d4db1839c9aaf0636cf3baba326d8a3d37364f83d6fac33aa2b3ca21594c44646e5b7d3d8d28bb14fe5c2dd12e1e652b017a40ec38bde1e5b0109ae3d5a6e6e140d2de7950", 0x0, 0x48) syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r12, 0xae80, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0, 0x5b}, &(0x7f0000000100), 0x1) mmap$KVM_VCPU(&(0x7f0000c4b000/0x4000)=nil, 0x0, 0x100000c, 0x6832, r12, 0x0) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r15, 0xc00caee0, &(0x7f0000000100)={0x4}) 42m1.417860687s ago: executing program 2 (id=329): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000000)={0x1, 0x0, [{0x7, 0x1, 0x0, 0x0, @msi={0x80000000, 0x2, 0xbb6f92e1, 0xd4}}]}) r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_CAP_PTP_KVM(r2, 0x4068aea3, &(0x7f0000000040)) 41m49.027300949s ago: executing program 2 (id=330): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xeeee0000, 0x1000, &(0x7f0000fd1000/0x1000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1ff, 0x0, 0x6000, 0x1000, &(0x7f0000ec2000/0x1000)=nil}) (async) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) (async, rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (rerun: 32) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x0, 0x8, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) (async, rerun: 32) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async, rerun: 32) munmap(&(0x7f0000e05000/0x4000)=nil, 0x4000) (async, rerun: 32) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async, rerun: 32) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) (async) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2f) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000040)={0x0, &(0x7f0000000500)=[@svc={0x122, 0x40, {0x1000000, [0x7, 0x3, 0x7fffffffffffffff, 0x1]}}, @msr={0x14, 0x20, {0x603000000013819e, 0x9}}, @smc={0x1e, 0x40, {0x3f000000, [0x80, 0x6, 0x200000000008, 0xd, 0x4]}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x1c4}}, @code={0xa, 0x84, {"000000bd0094004f000028d500058dd20080b8f2c10080d2220180d2c30080d2640080d2020000d4e0778cd20060b0f2010080d2e20180d2230180d2a40180d2020000d4a0578bd20060b8f2a10080d2820080d2430180d2840180d2020000d4000028d50020c01a000000b100000008"}}], 0x14c}, &(0x7f0000000300)=[@featur2={0x1, 0x3}], 0x1) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000df1000/0x3000)=nil, 0x3000) (async) ioctl$KVM_GET_MP_STATE(r8, 0x8004ae98, &(0x7f0000000000)) (async) mmap$KVM_VCPU(&(0x7f0000fcd000/0x4000)=nil, 0x0, 0x100000a, 0x28031, r4, 0x0) (async, rerun: 64) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) 41m46.533446762s ago: executing program 3 (id=331): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x240041, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r3 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0) r4 = eventfd2(0x0, 0x0) close(r4) r5 = eventfd2(0x0, 0x0) close(r5) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x109272, 0x1f01) write$eventfd(r5, &(0x7f0000000180)=0x6, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) write$eventfd(r4, &(0x7f0000000100)=0xfffffffffffffffe, 0xfdef) 41m35.789332679s ago: executing program 2 (id=332): syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000280)={0xdf, 0x0, 0x2000}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000000)=@arm64_sve={0x60800000001501de, &(0x7f0000000240)=0x6}) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) r5 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x4) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x22) r8 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x34) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x7) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x603000000010001c, &(0x7f0000000000)=0x7}) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100032, &(0x7f0000000100)=0x10}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x3, 0xffffffffffffffff, 0x1}) write$eventfd(r12, &(0x7f00000001c0), 0xe80) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) 41m35.649086211s ago: executing program 3 (id=333): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000002c0)={0x0, &(0x7f0000000000)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf10, 0x575b, 0x1}}, @svc={0x122, 0x40, {0x2000, [0x3, 0xc, 0x8, 0xffffffff, 0xffff]}}, @msr={0x14, 0x20, {0x603000000013de83, 0x8000}}, @irq_setup={0x46, 0x18, {0x0, 0x36f}}, @smc={0x1e, 0x40, {0x84000007, [0x8, 0xf6, 0x2, 0x7, 0x4]}}, @msr={0x14, 0x20, {0x603000000013deed, 0xa5}}, @mrs={0xbe, 0x18, {0x603000000013e2b0}}, @svc={0x122, 0x40, {0x84000008, [0x0, 0x7fffffff, 0x2, 0x800, 0x4]}}, @smc={0x1e, 0x40, {0x44000004, [0x4, 0x1, 0x5, 0x0, 0x5]}}, @code={0xa, 0x84, {"00b0005f000008d5000008d5006892d20040b8f2410180d2a20080d2630080d2040080d2020000d40820201ec0d697d20020b0f2810080d2420180d2830080d2040180d2020000d40000208b00d785d20040b0f2810080d2220180d2e30080d2a40080d2020000d4007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x0, 0x11f}}, @hvc={0x32, 0x40, {0xa25693e95a27aee8, [0xe, 0x3, 0x80000000, 0x401, 0x1000]}}, @hvc={0x32, 0x40, {0x1000000, [0x1800000000, 0xffff, 0x1, 0x1, 0xe48]}}], 0x2bc}, &(0x7f0000000300)=[@featur2={0x1, 0x84}], 0x1) r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) syz_kvm_setup_cpu$arm64(r1, r0, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000400)=[{0x0, &(0x7f0000000340)=[@code={0xa, 0x84, {"0080000f007008d5000008d5000008d50048601ec04b8fd200c0b8f2810180d2820180d2c30180d2a40180d2020000d4008008d5c0e782d20020b8f2410080d2620080d2630180d2240180d2020000d4a09b9bd20040b0f2a10080d2020080d2c30080d2a40080d2020000d4000008d5"}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x2, 0x26f, 0x3, 0x5, 0x4}}], 0xac}], 0x1, 0x0, &(0x7f0000000440), 0x1) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x23) mmap$KVM_VCPU(&(0x7f0000ed5000/0x1000)=nil, r2, 0x2, 0x10, r0, 0x0) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0xe) syz_kvm_setup_cpu$arm64(r4, r0, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000ac0)=[{0x0, &(0x7f0000000480)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x90, 0x6, 0x1}}, @code={0xa, 0x6c, {"0088601e0000399e007008d540708ad20020b8f2e10180d2220180d2230180d2440080d2020000d4e0279ed200a0b0f2c10180d2e20180d2a30180d2e40080d2020000d40070206e00f8a15e008008d5000440f8008008d5"}}, @hvc={0x32, 0x40, {0xc4000001, [0x9, 0x8000000000000001, 0x8, 0x7, 0x9]}}, @eret={0xe6, 0x18, 0x7}, @code={0xa, 0x9c, {"a0ce88d200e0b8f2a10180d2820180d2430080d2a40080d2020000d40000403900000013003c0053e0bf8fd20020b8f2810080d2220180d2c30180d2a40080d2020000d40058202e00c0271ea0908bd20020b0f2a10180d2a20080d2030180d2c40080d2020000d40030202e80458bd20040b0f2a10080d2c20080d2630180d2840080d2020000d4"}}, @mrs={0xbe, 0x18, {0x603000000013defa}}, @smc={0x1e, 0x40, {0x8, [0x380000000, 0x4, 0xe, 0xe9, 0xffffffffffffff12]}}, @memwrite={0x6e, 0x30, @generic={0x26000, 0x636, 0x63, 0xa}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x4}}, @svc={0x122, 0x40, {0xffff, [0x0, 0xbe, 0x6, 0x5, 0x1000]}}, @uexit={0x0, 0x18, 0x3}, @hvc={0x32, 0x40, {0x86000001, [0xc, 0x2, 0x8000000000000000, 0xffffffffffffffff, 0xd47]}}, @irq_setup={0x46, 0x18, {0x1, 0x9c}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x261}}, @msr={0x14, 0x20, {0x603000000013e728, 0xfb04}}, @uexit={0x0, 0x18, 0x100000001}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x80, 0xff, 0x8}}, @smc={0x1e, 0x40, {0x0, [0x0, 0x10000, 0x7, 0x0, 0x5]}}, @eret={0xe6, 0x18, 0x5}, @hvc={0x32, 0x40, {0x8400000c, [0x5, 0x3, 0x8, 0x3ff, 0xe1087de]}}, @code={0xa, 0x84, {"0024002f20a198d20060b8f2c10180d2e20080d2430080d2440180d2020000d4c04b80d200a0b8f2410180d2020180d2a30180d2440080d2020000d4000008d500b0205e000008d5a05b92d200a0b8f2810180d2420180d2430080d2e40180d2020000d4000008d500a0000f0000c00c"}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0x5, 0x7, 0x3, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x3, 0x0, 0x800, 0xc}}, @uexit={0x0, 0x18, 0x101}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x7b88}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x2f5}}, @memwrite={0x6e, 0x30, @generic={0x100000, 0x87d, 0xfff, 0x8}}, @memwrite={0x6e, 0x30, @generic={0x8080000, 0x620, 0x9, 0x4}}, @eret={0xe6, 0x18, 0xffffffff}, @svc={0x122, 0x40, {0x84000010, [0x6, 0x20e, 0x1, 0x7, 0x7]}}], 0x63c}], 0x1, 0x0, &(0x7f0000000b00)=[@featur1={0x1, 0xe0}], 0x1) ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f0000000b40)=0x9) ioctl$KVM_GET_SREGS(r0, 0x8000ae83, &(0x7f0000000b80)) ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f0000000cc0)={0x8000000, 0x182000}) ioctl$KVM_GET_MP_STATE(r1, 0x8004ae98, &(0x7f0000000d00)) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000d40)=@x86={0x5, 0x6, 0x2, 0x0, 0xfc76, 0x0, 0x5, 0x14, 0x81, 0x1, 0xb, 0x5, 0x0, 0x7fff, 0x54, 0x7, 0x6, 0x2, 0x9, '\x00', 0x5, 0x5}) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r3, 0x4010aeb5, &(0x7f0000000d80)={0xfffffffffffffffc, 0x9}) mmap$KVM_VCPU(&(0x7f0000f01000/0x2000)=nil, r2, 0x3000007, 0x20010, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000dc0)=@x86={0x6, 0x1, 0x2, 0x0, 0xdfae, 0x8, 0x0, 0x80, 0x81, 0x2, 0x4, 0x3, 0x0, 0xfff, 0x3, 0x8, 0x3, 0x9, 0x6, '\x00', 0x2, 0xff}) ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000e40)=@attr_arm64={0x0, 0x7, 0xb845cdf77059a48b, &(0x7f0000000e00)=0x7f}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000e80)={0xffff1000, 0x8000}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000ec0)={0xf, 0xfffffff9}) ioctl$KVM_GET_SREGS(r4, 0x8000ae83, &(0x7f0000000f00)) mmap$KVM_VCPU(&(0x7f0000db3000/0x1000)=nil, r2, 0x1000000, 0x12, r5, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001040), 0x27bc777527ae020, 0x0) ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0x2) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f00000010c0)=@riscv64_smstateen_csr={0x0, &(0x7f0000001080)=0x5}) ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f0000001100)={0xa000, 0x8000}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000001180)=@attr_arm64={0x0, 0x4, 0x1, &(0x7f0000001140)=0x8a}) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000001200)=@attr_other={0x0, 0x6, 0x2b, &(0x7f00000011c0)=0x2}) ioctl$KVM_GET_STATS_FD_cpu(r5, 0xaece) 41m25.132998105s ago: executing program 3 (id=334): ioctl$KVM_S390_VCPU_FAULT(0xffffffffffffffff, 0x4008ae52, &(0x7f0000000000)=0x9) (async) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, &(0x7f0000000040)) (async) r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, &(0x7f0000000080)=[@uexit={0x0, 0x18, 0xfff}, @hvc={0x32, 0x40, {0x4000000, [0xfffffffffffff1c0, 0x7fff, 0x9, 0x8, 0x5]}}, @uexit={0x0, 0x18, 0x101}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0x8400000b, [0xf7d6, 0x4, 0x5ab, 0x20000, 0x6d239975]}}, @irq_setup={0x46, 0x18, {0x0, 0x2c1}}], 0xe0}, &(0x7f00000001c0)=[@featur2={0x1, 0x11d}], 0x1) ioctl$KVM_INTERRUPT(r0, 0x4004ae86, &(0x7f0000000200)=0x3) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f0000000280)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000240)={0x1adf, 0x6}}) ioctl$KVM_RUN(r0, 0xae80, 0x0) (async) r1 = ioctl$KVM_GET_STATS_FD_vm(r0, 0xaece) ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f00000002c0)=0x1) (async) ioctl$KVM_GET_REGS(r0, 0x8360ae81, &(0x7f0000000300)) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r1, 0x4018aee1, &(0x7f0000000400)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f00000003c0)={0xfff1, 0x7, 0x1}}) (async, rerun: 64) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000440)={0xf0, "e1f9fd610d12ab25c05b0dfada73d1f28954cc3f7415aacee0a5b1b9b95850fa6238f4139b5a6e7797d21a46955541f3513d7b060fc7ed15fef87fd776a6b62cc5f672d2a324f72e401bcc4e84eb3153baa753a174572f837f80cf6f57054407420beb623a9b4944c4b353b6e11ee70d3cadac59dacfc5ba0dd3bfd5d7e7537a499dead328cecf3615ec0ccfa49ef59f5c5c865c9818ba15cf63711f439445cf45398a94e0e2d0fd069a5d0675972ab850598a306d09ec7c886d1f90e6035b526c5642d17c5ce8ab00c6bb42641be59719f6d32a18be07a3716161fd63a9c4b2792b15526fbe4de1e56678709bf2e7dc"}) (async, rerun: 64) r2 = ioctl$KVM_GET_STATS_FD_cpu(r1, 0xaece) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000540)=0x9) ioctl$KVM_DIRTY_TLB(r2, 0x4010aeaa, &(0x7f0000000580)={0xf, 0x20}) (async, rerun: 64) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000600)=@riscv64_core={0x8030000000200016, &(0x7f00000005c0)=0xffffffffffffffff}) (rerun: 64) ioctl$KVM_RESET_DIRTY_RINGS(r2, 0xaec7) ioctl$KVM_SET_REGS(r2, 0x4360ae82, &(0x7f0000000640)={[0x10000, 0x9, 0x9, 0x8000000000000001, 0x0, 0xfffffffffffffff9, 0x6, 0x4, 0x5, 0x389, 0x6, 0xfffffffffffffffe, 0x1, 0x7ab8, 0x2, 0x7fffffffffffffff], 0x1, 0x11000}) (async) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000740)=@arm64_core={0x6030000000100050, &(0x7f0000000700)=0x9}) (async) ioctl$KVM_GET_VCPU_EVENTS(r0, 0x8040ae9f, &(0x7f0000000780)=@arm64) (async) ioctl$KVM_CREATE_GUEST_MEMFD(0xffffffffffffffff, 0xc040aed4, &(0x7f00000007c0)={0x3, 0x1}) (async, rerun: 64) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (rerun: 64) ioctl$KVM_DIRTY_TLB(r3, 0x4010aeaa, &(0x7f0000000800)={0x8000000000000000, 0x8}) (async) ioctl$KVM_ASSIGN_SET_MSIX_NR(r2, 0x4008ae73, &(0x7f0000000840)={0x0, 0x5}) (async) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f0000000880)=0x10) (async) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) (async, rerun: 32) ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f00000008c0)={0x10000, 0x1000}) (rerun: 32) r4 = ioctl$KVM_GET_STATS_FD_cpu(r1, 0xaece) ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f0000000900)={0xa000}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000940), 0x2082, 0x0) ioctl$KVM_S390_VCPU_FAULT(0xffffffffffffffff, 0x4008ae52, &(0x7f0000000980)=0x9) 41m16.21747874s ago: executing program 3 (id=335): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) (async) munmap$KVM_VCPU(0x0, 0x1000000000) (async) r1 = mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000e, 0x24132, 0xffffffffffffffff, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) (async) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000640)={0x0, &(0x7f00000003c0)=[@smc={0x1e, 0x40, {0x40000000, [0x3, 0x9, 0x0, 0x1, 0x2]}}, @eret={0xe6, 0x18, 0xa}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0x7ff, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013f089}}, @eret={0xe6, 0x18, 0x2}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffd0, 0x3, 0xa}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x3ef}}, @uexit={0x0, 0x18, 0x9}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x250}}, @code={0xa, 0x84, {"600197d200a0b0f2010080d2820180d2030180d2840080d2020000d4008008d5000028d5000c601e0080df0d40cf84d20040b8f2e10180d2420180d2830180d2c40180d2020000d40000601f00eca02e009e96d200a0b8f2010080d2a20180d2e30180d2c40180d2020000d4000060c8"}}, @eret={0xe6, 0x18, 0x80000001}, @mrs={0xbe, 0x18, {0x6030000000139808}}, @irq_setup={0x46, 0x18, {0x4, 0x1cd}}, @smc={0x1e, 0x40, {0xc4000007, [0x8, 0x3, 0x101, 0x9]}}], 0x25c}, &(0x7f0000000680)=[@featur1={0x1, 0xcc}], 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r5, 0x8, 0x4010, r6, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x26000, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="caf9d6ac7953c5a4571996b36c0135c684c5c0d4fad93b80dd7cb2b66d542f6173f233a6e1606154cf719c2550e01ad56fce42d3686e6f9b00a64f3728849edd28e62dda6398ff0f", 0x0, 0x48) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 40m48.832793167s ago: executing program 34 (id=332): syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x300, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000280)={0xdf, 0x0, 0x2000}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000000)=@arm64_sve={0x60800000001501de, &(0x7f0000000240)=0x6}) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) r5 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x4) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x22) r8 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x34) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x7) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x603000000010001c, &(0x7f0000000000)=0x7}) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100032, &(0x7f0000000100)=0x10}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7}) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x3, 0xffffffffffffffff, 0x1}) write$eventfd(r12, &(0x7f00000001c0), 0xe80) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) 40m29.259058284s ago: executing program 35 (id=335): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) (async) munmap$KVM_VCPU(0x0, 0x1000000000) (async) r1 = mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000e, 0x24132, 0xffffffffffffffff, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) (async) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000640)={0x0, &(0x7f00000003c0)=[@smc={0x1e, 0x40, {0x40000000, [0x3, 0x9, 0x0, 0x1, 0x2]}}, @eret={0xe6, 0x18, 0xa}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0x7ff, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013f089}}, @eret={0xe6, 0x18, 0x2}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffd0, 0x3, 0xa}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x3ef}}, @uexit={0x0, 0x18, 0x9}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x250}}, @code={0xa, 0x84, {"600197d200a0b0f2010080d2820180d2030180d2840080d2020000d4008008d5000028d5000c601e0080df0d40cf84d20040b8f2e10180d2420180d2830180d2c40180d2020000d40000601f00eca02e009e96d200a0b8f2010080d2a20180d2e30180d2c40180d2020000d4000060c8"}}, @eret={0xe6, 0x18, 0x80000001}, @mrs={0xbe, 0x18, {0x6030000000139808}}, @irq_setup={0x46, 0x18, {0x4, 0x1cd}}, @smc={0x1e, 0x40, {0xc4000007, [0x8, 0x3, 0x101, 0x9]}}], 0x25c}, &(0x7f0000000680)=[@featur1={0x1, 0xcc}], 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r5, 0x8, 0x4010, r6, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x26000, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000000)="caf9d6ac7953c5a4571996b36c0135c684c5c0d4fad93b80dd7cb2b66d542f6173f233a6e1606154cf719c2550e01ad56fce42d3686e6f9b00a64f3728849edd28e62dda6398ff0f", 0x0, 0x48) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 32m16.007561221s ago: executing program 4 (id=346): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000240)=@arm64_core={0x6030000000100026, &(0x7f0000000000)=0x8001}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r6 = ioctl$KVM_CREATE_VM(r5, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xb701, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000) r7 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000040)=[@its_setup={0x82, 0x28, {0x4, 0x3, 0x3ac}}], 0x28}, 0x0, 0x0) r12 = syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_GET_DEVICE_ATTR(r12, 0x4018aee2, &(0x7f0000000280)=@attr_riscv64=@attr_aplic={0x0, 0x1, @any=0x9, &(0x7f0000000180)=0x5}) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) r14 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r14, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) r15 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0) 32m0.903778158s ago: executing program 5 (id=348): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) mmap$KVM_VCPU(&(0x7f000052f000/0x4000)=nil, 0x930, 0xe, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000d8f000/0x4000)=nil, 0x4000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x4d832, 0xffffffffffffffff, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) syz_kvm_vgic_v3_setup(r1, 0x1, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r3, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0}) 31m53.641182343s ago: executing program 4 (id=349): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x30) openat$kvm(0x0, &(0x7f0000000040), 0x22200, 0x0) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, r2, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @adapter={0x8000000000000001, 0x8, 0x2, 0xb, 0x10}}, {0x9, 0x3, 0x0, 0x0, @adapter={0x4d4ff, 0xffffffffffffffff}}, {0x0, 0x4, 0x1, 0x0, @sint={0x7fffffff, 0x6}}, {0x0, 0x6, 0x0, 0x0, @adapter={0x8000, 0x7fffffff, 0x20000000401, 0x7f, 0xb2d}}]}) write$eventfd(r5, &(0x7f00000001c0)=0x3, 0x50) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000002000/0x400000)=nil) 31m44.88960348s ago: executing program 5 (id=350): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000240)=@arm64_sve={0x608000000015016a, 0x0}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x26) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000a76000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000a76000/0x400000)=nil) openat$kvm(0x0, &(0x7f0000000240), 0x80b42, 0x0) (async) r6 = openat$kvm(0x0, &(0x7f0000000240), 0x80b42, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x25) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x25) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x2, 0x1, 0x0, @msi={0x5, 0x4ec6, 0x0, 0x40}}, {0x9, 0x3, 0x1, 0x0, @adapter={0xd4ff}}, {0x0, 0x0, 0x0, 0x0, @msi={0x200}}, {0x0, 0x0, 0x0, 0x0, @adapter={0x3, 0xfffffffffffffffa, 0x10000, 0x0, 0x9}}]}) write$eventfd(r9, &(0x7f00000001c0)=0x3, 0x50) r10 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r12 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r12, 0x0, 0x0, 0x0) (async) syz_kvm_add_vcpu$arm64(r12, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x12) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, 0x0}, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x44080, 0x0) 31m14.403225843s ago: executing program 4 (id=351): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) eventfd2(0x3, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x80800) close(r4) r5 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000200)=@attr_arm64={0x0, 0x7, 0x5, &(0x7f0000000140)=0x3}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x2, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000300)=@attr_other={0x0, 0x4, 0x1, 0x0}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x88, 0x47, 0x9, 0x0, 0x8, 0x6, 0xe2, 0x3, 0x6, 0x0, '\x00', 0x6, 0x6}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r10, &(0x7f00000001c0)=0x3, 0x10) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r11, 0x40086602, 0x110ca32000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 31m13.823315646s ago: executing program 5 (id=352): r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000040)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x139}}, @eret={0xe6, 0x18, 0xffffffff}], 0x40}, &(0x7f0000000080)=[@featur1={0x1, 0x40}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f0000000100)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f00000000c0)={0x5, 0x269f, 0x1}}) ioctl$KVM_RUN(r0, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r0, 0x4010aeab, &(0x7f0000000180)=@riscv64_timer={0x8030000004000003, &(0x7f0000000140)=0x2}) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000001c0)={0x5, [0x20d1, 0x38fc, 0x200, 0x7fff, 0x7ff]}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x6) syz_kvm_setup_cpu$arm64(r1, r0, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000280)=[{0x0, &(0x7f0000000200)=[@svc={0x122, 0x40, {0x4000, [0x0, 0x6, 0x9, 0x9, 0x1]}}, @uexit={0x0, 0x18, 0x2}], 0x58}], 0x1, 0x0, &(0x7f00000002c0)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000340)=@arm64_sys={0x603000000013c016, &(0x7f0000000300)=0x200}) syz_kvm_vgic_v3_setup(r1, 0x2, 0x1e0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r0, 0x4018aee1, &(0x7f00000003c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000380)={0x2, 0x7}}) ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, &(0x7f0000000400)=0x8) ioctl$KVM_RUN(r0, 0xae80, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000740)={0x0, &(0x7f0000000440)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x5, 0x3, 0x7, 0xc, 0x9, 0x1}}, @irq_setup={0x46, 0x18, {0x2, 0x254}}, @svc={0x122, 0x40, {0x31000000, [0x80000000, 0x1000, 0x5, 0x6, 0x3eb3]}}, @uexit={0x0, 0x18, 0x101}, @eret={0xe6, 0x18}, @mrs={0xbe, 0x18, {0x603000000013803e}}, @eret={0xe6, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x3, 0x6, 0xfff, 0x68e, 0x3}}, @eret={0xe6, 0x18, 0x5}, @smc={0x1e, 0x40, {0x8000, [0x50, 0x2, 0x1000, 0x400, 0xffffffffffffffff]}}, @hvc={0x32, 0x40, {0x84000010, [0x6, 0x401, 0x100000000, 0x1, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x1, 0xb, 0x9, 0x2, 0x3}}, @smc={0x1e, 0x40, {0x84000006, [0x1, 0x8, 0x4, 0x3, 0x10000]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x200, 0x9, 0x4}}, @code={0xa, 0x6c, {"000010d50080001b0024005f007008d5c0a998d200a0b0f2410080d2420080d2630180d2e40080d2020000d4007008d50020000d000040ba00c0202e80cc8dd20060b8f2010080d2620180d2830180d2240080d2020000d4"}}], 0x2d4}, &(0x7f0000000780)=[@featur2={0x1, 0x88}], 0x1) syz_kvm_setup_cpu$arm64(r1, r0, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000e40)=[{0x0, &(0x7f00000007c0)=[@msr={0x14, 0x20, {0x603000000013e08f}}, @msr={0x14, 0x20, {0x6030000000138037, 0x1}}, @smc={0x1e, 0x40, {0x84000005, [0x26c, 0x1ff, 0x80000001, 0x1, 0x8]}}, @mrs={0xbe, 0x18, {0x603000000013c4c9}}, @msr={0x14, 0x20, {0x603000000013c019, 0x5}}, @smc={0x1e, 0x40, {0x84000052, [0x8000, 0x4, 0x5, 0x3, 0x80000001]}}, @code={0xa, 0x84, {"00d8215e007008d5007008d500a09f0d40939dd20080b0f2810180d2c20180d2230180d2440180d2020000d4000c4078007008d500008038003394d200a0b0f2010080d2e20080d2e30080d2e40180d2020000d4e03985d20060b8f2610080d2420080d2a30080d2c40180d2020000d4"}}, @mrs={0xbe, 0x18, {0x6030000000138044}}, @irq_setup={0x46, 0x18, {0x4, 0x57}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x2, 0x0, 0x10, 0x1, 0x1}}, @eret={0xe6, 0x18, 0x7fffffffffffffff}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x280, 0x1ff}}, @mrs={0xbe, 0x18, {0x603000000013c019}}, @msr={0x14, 0x20, {0x603000000013e6de, 0x9}}, @irq_setup={0x46, 0x18, {0x4, 0x2d5}}, @irq_setup={0x46, 0x18, {0x2, 0x11e}}, @code={0xa, 0x84, {"20fc91d200e0b0f2810080d2620180d2c30180d2040180d2020000d4000381d20080b0f2810180d2a20080d2830180d2240180d2020000d40070005f000008d5007008d5007008d50000003d0078284e002c000ea0798ed20020b0f2610080d2420080d2e30180d2040180d2020000d4"}}, @smc={0x1e, 0x40, {0x80007fff, [0x8, 0x3, 0x7, 0x8]}}, @code={0xa, 0x84, {"c03080d20060b8f2410180d2c20080d2830080d2e40080d2020000d40000009a000008d50000189e408284d20040b0f2810180d2620080d2830080d2440180d2020000d40068214e007008d5000008d500088078803682d200e0b0f2e10080d2020180d2c30180d2240080d2020000d4"}}, @hvc={0x32, 0x40, {0x0, [0xde, 0x1, 0x8, 0x1, 0x3]}}, @msr={0x14, 0x20, {0x603000000013c2a5, 0xfffffffffffffffd}}, @msr={0x14, 0x20, {0x2102, 0x1d7c}}, @code={0xa, 0x84, {"a03f9bd20000b0f2410180d2220180d2230180d2a40180d2020000d4e08589d200c0b0f2e10180d2220180d2030080d2840180d2020000d4000008d5007008d500d8a00e007008d5007008d50048216ec02d9cd20060b8f2810080d2820080d2430080d2a40080d2020000d4000008d5"}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x3, 0x10, 0xff, 0x3, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013e728}}, @smc={0x1e, 0x40, {0x1000000, [0x9, 0x4, 0x4, 0xffffffff, 0x7]}}, @eret={0xe6, 0x18, 0xb7c6}, @eret={0xe6, 0x18, 0x1}, @code={0xa, 0x9c, {"0000805aa0ff8ed20020b8f2a10080d2e20180d2830080d2840080d2020000d4007008d500800008e0e397d200a0b8f2010180d2620080d2430180d2840180d2020000d4a00d92d200c0b0f2810080d2a20080d2e30180d2c40180d2020000d4008008d5007008d5005c205e606487d20040b8f2810080d2020180d2030180d2840180d2020000d4"}}, @its_setup={0x82, 0x28, {0x0, 0x0, 0xbc}}], 0x644}], 0x1, 0x0, &(0x7f0000000e80)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r0, 0xae80, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000ec0), 0x4000, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0xae03, 0xffffffffffffffff) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f000096e000/0x400000)=nil) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000f00)={0xc0, 0x0, 0x6000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000fc0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000f80)=0x100}) r5 = ioctl$KVM_GET_STATS_FD_cpu(r3, 0xaece) ioctl$KVM_GET_SREGS(r5, 0x8000ae83, &(0x7f0000001000)) ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000001140)=0x5) eventfd2(0xfffffffa, 0x40800) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f0000001180)={0xeeee0000, 0x34000, 0x1}) r6 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece) syz_kvm_setup_cpu$arm64(r6, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001840)=[{0x0, &(0x7f00000011c0)=[@code={0xa, 0xcc, {"000000b9a0279fd200a0b0f2610080d2420080d2a30180d2a40180d2020000d4a0068bd20020b0f2010180d2220180d2e30180d2e40080d2020000d40070005f000028d5007008d580d981d200c0b0f2410080d2220180d2230180d2840180d2020000d4e01b97d20060b8f2810080d2420080d2630180d2040180d2020000d480519fd200c0b0f2410180d2020180d2230080d2240080d2020000d4808f88d20060b0f2810180d2220180d2e30180d2640080d2020000d4"}}, @smc={0x1e, 0x40, {0x6000000, [0xa, 0x1, 0x0, 0x7fffffff, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x9, 0x1, 0x3ff, 0x1}}, @svc={0x122, 0x40, {0x80000000, [0x23, 0x8, 0x3ff, 0x1]}}, @memwrite={0x6e, 0x30, @generic={0x9000, 0xbde, 0x9, 0x3}}, @eret={0xe6, 0x18, 0x40}, @irq_setup={0x46, 0x18, {0x4, 0x38d}}, @irq_setup={0x46, 0x18, {0x2, 0x4a}}, @svc={0x122, 0x40, {0x5d80000b, [0x2, 0x2, 0x47, 0x7, 0x1]}}, @svc={0x122, 0x40, {0x84000053, [0x6, 0x7ff, 0x5, 0x2]}}, @mrs={0xbe, 0x18, {0x603000000013e669}}, @smc={0x1e, 0x40, {0xc5000020, [0x9, 0x86, 0x8c05]}}, @svc={0x122, 0x40, {0x32000000, [0x9, 0x9, 0x9, 0x1, 0xf]}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x0, 0x0, 0x7, 0x6, 0x7, 0x3}}, @mrs={0xbe, 0x18, {0x4161}}, @uexit={0x0, 0x18, 0xc}, @code={0xa, 0x9c, {"007008d5007008d500cd88d200e0b8f2e10080d2620180d2c30080d2840080d2020000d4007008d5008008d560159dd20000b8f2410080d2a20080d2430180d2440180d2020000d4209982d20000b8f2810180d2620080d2c30080d2a40180d2020000d40068000e0000629e00769dd200c0b8f2e10080d2a20080d2630180d2240080d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013c4f6, 0x8001}}, @eret={0xe6, 0x18, 0x68e}, @msr={0x14, 0x20, {0x603000000013806c, 0x3}}, @smc={0x1e, 0x40, {0xc4000011, [0x5000000000000, 0x1, 0x8, 0x3, 0xa76c41c]}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x255}}, @hvc={0x32, 0x40, {0x8400000e, [0x0, 0x0, 0x3, 0x4, 0x7]}}, @svc={0x122, 0x40, {0x84000053, [0x1, 0xffffffffffffffff, 0x8, 0x401, 0xa87d]}}, @uexit={0x0, 0x18, 0x10}, @hvc={0x32, 0x40, {0x4000, [0x3, 0x8, 0x3, 0x6, 0x1000]}}, @eret={0xe6, 0x18, 0x401}, @eret={0xe6, 0x18, 0x2f5d013b}, @uexit={0x0, 0x18, 0x4}, @svc={0x122, 0x40, {0x31000000, [0xf9, 0x20000000000, 0x8, 0xa03, 0x5]}}, @svc={0x122, 0x40, {0x80000001, [0xe6, 0x1, 0x4, 0x7, 0x8001]}}, @msr={0x14, 0x20, {0x603000000013801f, 0x5843}}], 0x678}], 0x1, 0x0, &(0x7f0000001880)=[@featur2={0x1, 0x8a}], 0x1) 31m2.271962709s ago: executing program 5 (id=353): openat$kvm(0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000400)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x100, 0x7, 0xd}}, @smc={0x1e, 0x40, {0x40, [0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffff8, 0x0, 0x3]}}], 0x70}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f00000000c0)=@arm64_core={0x6030000000100050, &(0x7f0000000000)=0x1}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000240)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 30m47.081382322s ago: executing program 4 (id=354): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f00003af000/0x400000)=nil) eventfd2(0x0, 0x0) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_GUEST_DEBUG_arm64(r3, 0x4208ae9b, &(0x7f0000000280)={0x1, 0x0, {[0x8, 0x7, 0x5, 0x1, 0x9, 0x3, 0x0, 0x8000000000000001, 0x4, 0x0, 0x38, 0x7, 0x7, 0x7fff, 0xf90, 0x3], [0x2, 0x8, 0x5, 0x0, 0x9, 0x7, 0x9, 0xfff, 0x8, 0x8000000000000001, 0x8, 0x3, 0x65, 0x101, 0x1a, 0xc3], [0x6, 0xa31, 0xffffffffffffff01, 0x7, 0x36, 0x2, 0x5, 0x5, 0x285d, 0x7, 0xfa4, 0x4, 0x2, 0x1, 0x3ff, 0x6], [0x8, 0xfffffffffffffffc, 0x0, 0x7fffffff, 0x1000, 0xffffffffffffff01, 0xddea, 0x6, 0x4, 0xa3, 0x80000001, 0x4, 0x8, 0xf6, 0xf70]}}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) 30m46.735302108s ago: executing program 5 (id=355): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async, rerun: 64) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (rerun: 64) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x4000000008080000}) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) (async) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async) r8 = openat$kvm(0x0, &(0x7f00000001c0), 0x20600, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async, rerun: 32) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x8) (async, rerun: 32) r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f0000000340)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1800, 0x3, 0x1}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x3, 0xa0) (async) ioctl$KVM_RUN(r9, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r1, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) (async, rerun: 64) r10 = openat$kvm(0x0, &(0x7f0000000000), 0x80, 0x0) (rerun: 64) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x2e) ioctl$KVM_CAP_ARM_USER_IRQ(r11, 0x4068aea3, &(0x7f00000000c0)) (async) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r13, 0x4010ae67, &(0x7f0000000000)={0x4000, 0x13000, 0x1}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r13, 0x4010ae67, &(0x7f0000000380)={0x2, 0x25000, 0x1}) (async, rerun: 32) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r13, 0x4010ae68, &(0x7f00000003c0)={0x4, 0xa7e9ea20e9018807, 0x1}) (async, rerun: 32) syz_kvm_add_vcpu$arm64(r7, &(0x7f00000002c0)={0x0, &(0x7f0000000240)=[@mrs={0xbe, 0x18, {0x50280000001a26ca}}, @mrs={0xbe, 0x18, {0x603000000013e532}}, @irq_setup={0x46, 0x18, {0x0, 0x3c1}}], 0x48}, &(0x7f0000000300)=[@featur2], 0x1) (async) ioctl$KVM_GET_STATS_FD_vm(r11, 0xaece) r14 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x2) syz_kvm_setup_cpu$arm64(r11, r14, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_ARM_VCPU_FINALIZE(r14, 0x4004aec2, &(0x7f0000000040)=0x5) 30m29.360181122s ago: executing program 5 (id=356): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) 30m28.829820361s ago: executing program 4 (id=357): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x39) ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x100000000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x2401, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x42, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x22d) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_ARM_VCPU_FINALIZE(r4, 0x4004aec2, &(0x7f0000000180)=0x4) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000300)={0x200000000000026a, [0x20000000000000, 0x1]}) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x20) ioctl$KVM_HAS_DEVICE_ATTR_vm(r5, 0x4018aee3, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000080)={0x5, 0x71}}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, &(0x7f00000001c0)={0x72, "29e6fe4ad3b0b52ad837cc1d7ee49769490959b38adb3d1e376773ffbd8f22c5d2f4b6fd15417cf6ea11716d263fa29c442385b4ddb5eeb577323aaef7561891b16d3b692943b51d76ea5cefb541f382aebef5f436dd8ce7c22781f306635b6fab1a0cc58e84ee9eae7ad57355b9687027d9"}) 30m16.492870238s ago: executing program 4 (id=358): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r5 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r4, 0x0) r6 = eventfd2(0x70, 0x0) close(r6) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r6, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r7 = eventfd2(0x0, 0x0) close(r7) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r7, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r9, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f0000000080)="fb0149dd033be3ac4e37c4005a9614fbff67521ce16f8f09449a7a836b73312954000000000000000000000000000000000000000000000000000000dc6900", 0x0, 0x2e) r11 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x3000005, 0x11, r11, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x103201, 0x0) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r12, 0x1, 0x100) ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100002, &(0x7f0000000340)}) 29m41.359849203s ago: executing program 36 (id=356): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) 29m24.642867959s ago: executing program 37 (id=358): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r5 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r4, 0x0) r6 = eventfd2(0x70, 0x0) close(r6) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r6, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r7 = eventfd2(0x0, 0x0) close(r7) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r7, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r9, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f0000000080)="fb0149dd033be3ac4e37c4005a9614fbff67521ce16f8f09449a7a836b73312954000000000000000000000000000000000000000000000000000000dc6900", 0x0, 0x2e) r11 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x3000005, 0x11, r11, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x103201, 0x0) r12 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r12, 0x1, 0x100) ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100002, &(0x7f0000000340)}) 14m25.704622613s ago: executing program 7 (id=390): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x31) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) r6 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000000000/0x400000)=nil, &(0x7f00000003c0)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0x401c5820, 0x20000007) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x401c5820, 0x20000007) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r11, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) r16 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r14, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r16, 0x8, 0x13, r15, 0x0) 14m2.807981193s ago: executing program 7 (id=392): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x10200, 0x28dec5d9eba4a3e0, 0x70000, 0x1000, &(0x7f0000f30000/0x1000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) 13m44.479141041s ago: executing program 7 (id=394): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x2}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x181b03, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0x7}) r3 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x0, r3}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000002c0)={0x0, 0x10000}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000000c0)={0x8}) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x6000}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r5, 0x400454d8, 0x110c230005) 13m23.910064358s ago: executing program 7 (id=396): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0xeeee0000, 0x1000, &(0x7f0000fd1000/0x1000)=nil}) (async) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1ff, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) 13m5.390519442s ago: executing program 7 (id=397): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffe) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x16, 0x4, 0x1}}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000b74000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=[@smc={0x1e, 0x40, {0xc5000020, [0x6, 0x5f9, 0x3, 0x401, 0x1000]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2b) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x5) r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) r9 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r8, 0x2, 0x12, r7, 0x0) mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r8, 0x100000a, 0x12, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f00000001c0)="fb016b03002e5ee42ec6a29ea6ab8000000004ef0000c20cecf80a97ab78000000040000000000000000409700000000ffffffff00000000a0eb00df00", 0x0, 0xffffffffffffff69) mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 12m39.561494542s ago: executing program 7 (id=399): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x21) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe0a01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6}) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r9, &(0x7f00000001c0)=0xffffffffffffffff, 0xfdef) r10 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r10, 0x2, 0x100) close(r10) r11 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) close(r11) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x30) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r14, &(0x7f00000001c0)=0xffffffffffffffff, 0xfdef) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000000)=0x7) r15 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r15, 0x0) 11m48.681974134s ago: executing program 38 (id=399): r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x21) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe0a01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6}) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r9, &(0x7f00000001c0)=0xffffffffffffffff, 0xfdef) r10 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r10, 0x2, 0x100) close(r10) r11 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) close(r11) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x30) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r14, &(0x7f00000001c0)=0xffffffffffffffff, 0xfdef) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f0000000000)=0x7) r15 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r15, 0x0) 3m10.302176282s ago: executing program 6 (id=429): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae03, 0xaa) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@msr={0x14, 0x20, {0x603000000013df40, 0x8c7}}], 0x20}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$arm64(r6, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000840)=[{0x0, 0x0, 0x248}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000500)={0x1fd, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000140)=@attr_pmu_init) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_vgic_v3_setup(r8, 0x3, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0x7, 0xffffffffffffffff, 0x1}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2m45.503921319s ago: executing program 6 (id=430): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x4000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r4, 0x400454de, 0x110e22fffb) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000200)={0xb, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000000)=0x7}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = eventfd2(0xeffffffd, 0x801) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000000000)={0x200, 0x4000, 0x4, r10, 0x1}) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x2, r10, 0x3}) ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r10, 0xf}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r11 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df65}}], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r14, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) ioctl$KVM_RUN(r14, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000bff000/0x400000)=nil) close(0x4) 2m17.134725006s ago: executing program 6 (id=431): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r3, 0xc018aec0, &(0x7f00000000c0)={0x1}) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc018aec0, &(0x7f00000000c0)={0x1}) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r3, 0x4068aea3, &(0x7f0000000180)) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r5, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r10, 0x54e3, 0x110c230008) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x7, 0x6, &(0x7f0000000000)=0x9}) (async) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x7, 0x6, &(0x7f0000000000)=0x9}) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) (async) r12 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2) ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) (async) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r13, 0x8, 0x13, r12, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r13, 0x1000001, 0x12, r12, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r13, 0x1000001, 0x12, r12, 0x0) mmap$KVM_VCPU(&(0x7f0000e04000/0x2000)=nil, 0x930, 0x1, 0x11, r5, 0x0) r14 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r14, 0x8, 0x13, r5, 0x0) 1m56.567414016s ago: executing program 6 (id=432): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) eventfd2(0x3, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) close(r4) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r4, 0x40086602, 0x110ca32000) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 1m55.570620953s ago: executing program 8 (id=402): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bc2000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3c4) ioctl$KVM_SET_GUEST_DEBUG_arm64(r3, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0x1, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x80000000, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c8, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x9]}}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1m37.387392791s ago: executing program 6 (id=433): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x900, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x26) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_SIGNAL_MSI(r4, 0x4020aea5, &(0x7f0000000280)={0x100000, 0x6000, 0x0, 0x2000000}) r5 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(r6, 0xc008aeb0, &(0x7f0000000180)) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0xcb3993e4c7433bb8, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$arm64(r7, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000040)={0x1fe, 0x1, 0x8000000, 0x2000, &(0x7f0000000000/0x2000)=nil}) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) 1m33.994485265s ago: executing program 8 (id=434): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xf) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x31) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x0, 0x0, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x480e82, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r4, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) 1m10.298297983s ago: executing program 8 (id=435): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = syz_kvm_vgic_v3_setup(r0, 0x1, 0x100) (async) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0xdddd1000}) (async) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000700)}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x2, 0x0}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r7, 0x8030aeb4, 0xfffffffffffffffe) 1m9.867223448s ago: executing program 6 (id=436): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r6 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async) r10 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x7ab, 0x0, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_ASSIGN_SET_MSIX_NR(r3, 0x4008ae73, 0x0) r11 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x39d}}], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r3, 0xffffffffffbffffc, 0x120) (async) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000100)={0x4, 0x1, 0x0, 0x1000, &(0x7f0000ee6000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) (async) r13 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000380)}, 0x0, 0x0) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(0xffffffffffffffff, 0x4068aea3, &(0x7f00000002c0)={0xa8, 0x0, 0x2}) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000340)=@attr_riscv64=@attr_aplic={0x0, 0x1, @any=0x9, &(0x7f00000001c0)=0xbb8}) (async) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) 50.423818366s ago: executing program 8 (id=437): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = syz_kvm_vgic_v3_setup(r2, 0x2, 0x80) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f0000000000)=0x81}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x26) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r9 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x84000053, [0x0, 0x7, 0x2, 0x3, 0x4]}}], 0x40}, 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x22) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000000)={0x1}) close(r0) ioctl$KVM_RUN(r10, 0xae80, 0x0) 21.150733015s ago: executing program 39 (id=436): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0xeeef0000, 0x37d03030d7a92616, 0xffffffff}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r6 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async) r10 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x7ab, 0x0, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_ASSIGN_SET_MSIX_NR(r3, 0x4008ae73, 0x0) r11 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x39d}}], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r3, 0xffffffffffbffffc, 0x120) (async) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000100)={0x4, 0x1, 0x0, 0x1000, &(0x7f0000ee6000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) (async) r13 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000380)}, 0x0, 0x0) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(0xffffffffffffffff, 0x4068aea3, &(0x7f00000002c0)={0xa8, 0x0, 0x2}) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000340)=@attr_riscv64=@attr_aplic={0x0, 0x1, @any=0x9, &(0x7f00000001c0)=0xbb8}) (async) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) 0s ago: executing program 40 (id=437): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = syz_kvm_vgic_v3_setup(r2, 0x2, 0x80) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f0000000000)=0x81}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x26) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r9 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x84000053, [0x0, 0x7, 0x2, 0x3, 0x4]}}], 0x40}, 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x22) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000000)={0x1}) close(r0) ioctl$KVM_RUN(r10, 0xae80, 0x0) kernel console output (not intermixed with test programs): [ 367.145477][ T24] audit: type=1400 audit(366.360:76): avc: denied { write } for pid=3261 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 369.624308][ T3204] 8021q: adding VLAN 0 to HW filter on device bond0 [ 376.445976][ T24] audit: type=1400 audit(375.670:77): avc: denied { write } for pid=3268 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 380.377777][ T24] audit: type=1400 audit(379.600:78): avc: denied { write } for pid=3272 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 393.108721][ T24] audit: type=1400 audit(392.330:79): avc: denied { write } for pid=3276 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 397.876047][ T24] audit: type=1400 audit(397.090:80): avc: denied { write } for pid=3279 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 409.951046][ T24] audit: type=1400 audit(409.170:81): avc: denied { write } for pid=3284 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 413.734195][ T24] audit: type=1400 audit(412.930:82): avc: denied { write } for pid=3287 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 416.267552][ T3204] eql: remember to turn off Van-Jacobson compression on your slave devices [ 425.729993][ T24] audit: type=1400 audit(424.950:83): avc: denied { write } for pid=3293 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 429.685910][ T24] audit: type=1400 audit(428.910:84): avc: denied { write } for pid=3296 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 443.816782][ T24] audit: type=1400 audit(443.010:85): avc: denied { write } for pid=3303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 448.803158][ T24] audit: type=1400 audit(447.980:86): avc: denied { write } for pid=3306 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 455.986813][ T24] audit: type=1400 audit(455.210:87): avc: denied { write } for pid=3308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 460.401144][ T24] audit: type=1400 audit(459.620:88): avc: denied { write } for pid=3311 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 470.403703][ T24] audit: type=1400 audit(469.580:89): avc: denied { write } for pid=3316 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 474.098124][ T24] audit: type=1400 audit(473.310:90): avc: denied { write } for pid=3319 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 479.447002][ T24] audit: type=1400 audit(478.670:91): avc: denied { write } for pid=3321 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 483.157971][ T24] audit: type=1400 audit(482.380:92): avc: denied { write } for pid=3324 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 506.134081][ T24] audit: type=1400 audit(505.280:93): avc: denied { write } for pid=3336 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 511.064607][ T24] audit: type=1400 audit(510.270:94): avc: denied { write } for pid=3339 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 522.657564][ T24] audit: type=1400 audit(521.880:95): avc: denied { write } for pid=3343 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 526.526878][ T24] audit: type=1400 audit(525.750:96): avc: denied { write } for pid=3346 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 537.607942][ T24] audit: type=1400 audit(536.830:97): avc: denied { write } for pid=3350 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 541.385652][ T24] audit: type=1400 audit(540.580:98): avc: denied { write } for pid=3353 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:6306' (ED25519) to the list of known hosts. [ 580.788795][ T24] audit: type=1400 audit(580.010:99): avc: denied { name_bind } for pid=3358 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 581.625570][ T24] audit: type=1400 audit(580.850:100): avc: denied { execute } for pid=3359 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 581.650010][ T24] audit: type=1400 audit(580.860:101): avc: denied { execute_no_trans } for pid=3359 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 584.173751][ T24] audit: type=1400 audit(583.380:102): avc: denied { write } for pid=3360 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 586.512715][ T24] audit: type=1400 audit(585.730:103): avc: denied { write } for pid=3363 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 609.819016][ T24] audit: type=1400 audit(609.040:104): avc: denied { mounton } for pid=3359 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 609.859594][ T24] audit: type=1400 audit(609.080:105): avc: denied { mount } for pid=3359 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 609.947102][ T3359] cgroup: Unknown subsys name 'net' [ 610.005855][ T24] audit: type=1400 audit(609.230:106): avc: denied { unmount } for pid=3359 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 610.394806][ T3359] cgroup: Unknown subsys name 'cpuset' [ 610.508536][ T3359] cgroup: Unknown subsys name 'rlimit' [ 611.369941][ T24] audit: type=1400 audit(610.590:107): avc: denied { setattr } for pid=3359 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 611.388496][ T24] audit: type=1400 audit(610.610:108): avc: denied { mounton } for pid=3359 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 611.416644][ T24] audit: type=1400 audit(610.640:109): avc: denied { mount } for pid=3359 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 612.420800][ T3367] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 612.443167][ T24] audit: type=1400 audit(611.660:110): avc: denied { relabelto } for pid=3367 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 612.466548][ T24] audit: type=1400 audit(611.690:111): avc: denied { write } for pid=3367 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 612.667053][ T24] audit: type=1400 audit(611.890:112): avc: denied { read } for pid=3359 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 612.684506][ T24] audit: type=1400 audit(611.900:113): avc: denied { open } for pid=3359 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 612.740450][ T3359] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 672.126763][ T24] audit: type=1400 audit(671.350:114): avc: denied { execmem } for pid=3368 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 676.093102][ T24] audit: type=1400 audit(675.310:115): avc: denied { read } for pid=3370 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 676.138361][ T24] audit: type=1400 audit(675.340:116): avc: denied { open } for pid=3371 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 676.203787][ T24] audit: type=1400 audit(675.410:117): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 676.421196][ T24] audit: type=1400 audit(675.640:118): avc: denied { module_request } for pid=3371 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 676.470222][ T24] audit: type=1400 audit(675.660:119): avc: denied { module_request } for pid=3370 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 677.436241][ T24] audit: type=1400 audit(676.640:120): avc: denied { sys_module } for pid=3371 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 702.337661][ T3370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 702.706042][ T3370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 702.786962][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 703.245344][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 714.374965][ T3370] hsr_slave_0: entered promiscuous mode [ 714.403190][ T3370] hsr_slave_1: entered promiscuous mode [ 715.350481][ T3371] hsr_slave_0: entered promiscuous mode [ 715.389119][ T3371] hsr_slave_1: entered promiscuous mode [ 715.434716][ T3371] debugfs: 'hsr0' already exists in 'hsr' [ 715.443236][ T3371] Cannot create hsr debugfs directory [ 720.774079][ T24] audit: type=1400 audit(719.990:121): avc: denied { create } for pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 720.814110][ T24] audit: type=1400 audit(720.030:122): avc: denied { write } for pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 720.883965][ T24] audit: type=1400 audit(720.100:123): avc: denied { read } for pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 721.086497][ T3370] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 721.414662][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 721.506284][ T3370] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 721.687415][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 721.837097][ T3370] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 721.957903][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 722.119311][ T3370] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 722.200757][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 723.615630][ T3371] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 723.747895][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 723.837473][ T3371] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 723.997413][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 724.076109][ T3371] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 724.244459][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 724.319052][ T3371] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 724.486628][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 735.789344][ T3370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 738.057115][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 789.085051][ T3370] veth0_vlan: entered promiscuous mode [ 789.546299][ T3370] veth1_vlan: entered promiscuous mode [ 791.515638][ T3371] veth0_vlan: entered promiscuous mode [ 791.837177][ T3370] veth0_macvtap: entered promiscuous mode [ 792.225722][ T3370] veth1_macvtap: entered promiscuous mode [ 792.549708][ T3371] veth1_vlan: entered promiscuous mode [ 794.696178][ T21] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.720333][ T21] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.828418][ T21] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.833479][ T21] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.454768][ T3371] veth0_macvtap: entered promiscuous mode [ 795.938001][ T3371] veth1_macvtap: entered promiscuous mode [ 797.477011][ T24] audit: type=1400 audit(796.680:124): avc: denied { mount } for pid=3370 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 797.680449][ T24] audit: type=1400 audit(796.900:125): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/syzkaller.RiLmP8/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 797.827795][ T24] audit: type=1400 audit(797.050:126): avc: denied { mount } for pid=3370 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 798.283758][ T24] audit: type=1400 audit(797.500:127): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/syzkaller.RiLmP8/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 798.457723][ T24] audit: type=1400 audit(797.680:128): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/syzkaller.RiLmP8/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3751 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 798.884684][ T3409] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.925389][ T3409] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.955654][ T24] audit: type=1400 audit(798.140:129): avc: denied { unmount } for pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 798.970581][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.984299][ T3465] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 799.146902][ T24] audit: type=1400 audit(798.370:130): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 799.236452][ T24] audit: type=1400 audit(798.460:131): avc: denied { mount } for pid=3370 comm="syz-executor" name="/" dev="gadgetfs" ino=3759 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 799.589336][ T24] audit: type=1400 audit(798.810:132): avc: denied { mount } for pid=3370 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 799.705052][ T24] audit: type=1400 audit(798.880:133): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 801.147273][ T3370] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 811.170543][ T24] kauditd_printk_skb: 4 callbacks suppressed [ 811.197104][ T24] audit: type=1400 audit(810.390:138): avc: denied { read } for pid=3524 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 811.269395][ T24] audit: type=1400 audit(810.490:139): avc: denied { open } for pid=3524 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 811.424916][ T24] audit: type=1400 audit(810.630:140): avc: denied { ioctl } for pid=3524 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 815.969056][ T24] audit: type=1400 audit(815.190:141): avc: denied { write } for pid=3526 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 831.464027][ T24] audit: type=1400 audit(830.680:142): avc: denied { execute } for pid=3535 comm="syz.0.3" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4018 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 850.693548][ T24] audit: type=1400 audit(849.890:143): avc: denied { ioctl } for pid=3555 comm="syz.1.8" path="net:[4026531833]" dev="nsfs" ino=4026531833 ioctlcmd=0xb708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 860.000137][ T24] audit: type=1400 audit(859.220:144): avc: denied { execute } for pid=3559 comm="syz.0.9" path=2F342F10FBFF67525673312B0104 dev="tmpfs" ino=38 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 868.826898][ T24] audit: type=1400 audit(868.040:145): avc: denied { append } for pid=3568 comm="syz.1.12" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 919.216065][ T24] audit: type=1400 audit(918.420:146): avc: denied { create } for pid=3601 comm="syz.0.23" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 919.336900][ T24] audit: type=1400 audit(918.530:147): avc: denied { map } for pid=3601 comm="syz.0.23" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 919.367077][ T24] audit: type=1400 audit(918.580:148): avc: denied { read } for pid=3601 comm="syz.0.23" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 979.653954][ T24] audit: type=1400 audit(978.860:149): avc: denied { write } for pid=3641 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 987.475379][ T24] audit: type=1400 audit(986.690:150): avc: denied { write } for pid=3648 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1083.604888][ T3703] kvm [3703]: Failed to find VMA for hva 0x203b0000 [ 1091.207759][ T24] audit: type=1400 audit(1090.410:151): avc: denied { execute } for pid=3709 comm="syz.1.55" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=6870 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1092.718945][ T3708] kvm [3708]: Failed to find VMA for hva 0x20c01000 [ 1150.485445][ T24] audit: type=1400 audit(1149.700:152): avc: denied { setattr } for pid=3747 comm="syz.1.68" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1366.755164][ T3904] kvm [3904]: Failed to find VMA for hva 0x20de7000 [ 1524.229633][ T4016] kvm [4016]: Failed to find VMA for hva 0x21016000 [ 1538.094803][ T24] audit: type=1400 audit(1537.310:153): avc: denied { write } for pid=4019 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1538.173541][ T24] audit: type=1400 audit(1537.380:154): avc: denied { create } for pid=4019 comm="dhcpcd-run-hook" name="resolv.conf.eth0.ra" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1538.222453][ T24] audit: type=1400 audit(1537.430:155): avc: denied { write open } for pid=4019 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth0.ra" dev="tmpfs" ino=2172 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1538.423253][ T24] audit: type=1400 audit(1537.570:156): avc: denied { append } for pid=4019 comm="dhcpcd-run-hook" name="resolv.conf.eth0.ra" dev="tmpfs" ino=2172 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1538.683020][ T24] audit: type=1400 audit(1537.890:157): avc: denied { getattr } for pid=4019 comm="dhcpcd-run-hook" path="/tmp/resolv.conf" dev="tmpfs" ino=2 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1542.673452][ T24] audit: type=1400 audit(1541.870:158): avc: denied { read } for pid=4027 comm="cmp" name="resolv.conf" dev="tmpfs" ino=2 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1547.525108][ T24] audit: type=1400 audit(1546.690:159): avc: denied { write } for pid=4029 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1547.604680][ T24] audit: type=1400 audit(1546.760:160): avc: denied { unlink } for pid=4029 comm="rm" name="resolv.conf.eth0.ra" dev="tmpfs" ino=2172 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 1632.365536][ T4081] kvm [4081]: Failed to find VMA for hva 0x20dfb000 [ 1632.426198][ T4083] kvm [4083]: Failed to find VMA for hva 0x20dfb000 [ 1775.330326][ T4158] KVM: debugfs: duplicate directory 4158-4 [ 1784.206548][ T4166] kvm [4166]: Failed to find VMA for hva 0x20c01000 [ 1852.148019][ T24] audit: type=1400 audit(1851.350:161): avc: denied { write } for pid=4215 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1855.842556][ T24] audit: type=1400 audit(1855.040:162): avc: denied { map } for pid=4221 comm="syz.1.210" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1855.909032][ T24] audit: type=1400 audit(1855.120:163): avc: denied { execute } for pid=4221 comm="syz.1.210" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1862.338097][ T24] audit: type=1400 audit(1861.520:164): avc: denied { write } for pid=4226 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1895.045118][ T4245] kvm [4245]: Failed to find VMA for hva 0x20d8d000 [ 2328.389308][ T3519] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2330.436772][ T3519] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2332.288581][ T3519] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2333.848888][ T3519] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2334.016998][ T24] audit: type=1400 audit(2333.240:165): avc: denied { write } for pid=4497 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2342.849925][ T24] audit: type=1400 audit(2342.060:166): avc: denied { write } for pid=4506 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2350.585791][ T3519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2350.744614][ T3519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2350.829195][ T3519] bond0 (unregistering): Released all slaves [ 2351.747928][ T3519] hsr_slave_0: left promiscuous mode [ 2351.790921][ T3519] hsr_slave_1: left promiscuous mode [ 2352.103348][ T3519] veth1_macvtap: left promiscuous mode [ 2352.122125][ T3519] veth0_macvtap: left promiscuous mode [ 2352.154617][ T3519] veth1_vlan: left promiscuous mode [ 2352.159504][ T3519] veth0_vlan: left promiscuous mode [ 2369.418785][ T3519] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2370.394437][ T3519] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2371.466087][ T3519] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2372.473367][ T3519] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2374.605348][ T24] audit: type=1400 audit(2373.820:167): avc: denied { write } for pid=4522 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2380.352986][ T24] audit: type=1400 audit(2379.560:168): avc: denied { write } for pid=4532 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2388.274710][ T3519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2388.414630][ T3519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2388.497115][ T3519] bond0 (unregistering): Released all slaves [ 2389.060525][ T3204] 8021q: adding VLAN 0 to HW filter on device eth1 [ 2390.096628][ T3519] hsr_slave_0: left promiscuous mode [ 2390.223760][ T3519] hsr_slave_1: left promiscuous mode [ 2390.924868][ T3519] veth1_macvtap: left promiscuous mode [ 2390.928014][ T3519] veth0_macvtap: left promiscuous mode [ 2390.965507][ T3519] veth1_vlan: left promiscuous mode [ 2390.978272][ T3519] veth0_vlan: left promiscuous mode [ 2405.899581][ T4480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2406.267154][ T4480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2415.354356][ T24] audit: type=1400 audit(2414.570:169): avc: denied { write } for pid=4556 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2418.556930][ T4490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2418.770800][ T4490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2419.713225][ T24] audit: type=1400 audit(2418.920:170): avc: denied { write } for pid=4563 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2423.137433][ T3204] 8021q: adding VLAN 0 to HW filter on device eth2 [ 2423.850359][ T4480] hsr_slave_0: entered promiscuous mode [ 2423.909239][ T4480] hsr_slave_1: entered promiscuous mode [ 2431.223779][ T24] audit: type=1400 audit(2430.440:171): avc: denied { write } for pid=4574 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2435.828861][ T4480] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2436.164690][ T4480] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2436.271390][ T4480] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2436.449263][ T4480] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2436.500997][ T4480] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2436.512704][ T24] audit: type=1400 audit(2435.730:172): avc: denied { write } for pid=4581 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2436.666699][ T4480] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2437.013384][ T4480] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2437.156526][ T4480] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2439.107258][ T4490] hsr_slave_0: entered promiscuous mode [ 2439.176274][ T4490] hsr_slave_1: entered promiscuous mode [ 2439.243744][ T4490] debugfs: 'hsr0' already exists in 'hsr' [ 2439.255483][ T4490] Cannot create hsr debugfs directory [ 2439.585883][ T3204] 8021q: adding VLAN 0 to HW filter on device eth3 [ 2451.673669][ T24] audit: type=1400 audit(2450.880:173): avc: denied { write } for pid=4596 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2453.151068][ T4490] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 2453.545465][ T4490] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2453.628586][ T4490] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 2453.964784][ T4490] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2454.010378][ T4490] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 2454.288470][ T4490] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2454.361226][ T4490] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2454.686983][ T4490] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2460.557873][ T24] audit: type=1400 audit(2459.770:174): avc: denied { write } for pid=4609 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2461.985364][ T4480] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2466.530459][ T3204] 8021q: adding VLAN 0 to HW filter on device eth4 [ 2478.948612][ T4490] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2479.313306][ T24] audit: type=1400 audit(2478.530:175): avc: denied { write } for pid=4624 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2486.933354][ T24] audit: type=1400 audit(2486.140:176): avc: denied { write } for pid=4630 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2491.259162][ T3204] 8021q: adding VLAN 0 to HW filter on device eth5 [ 2505.026661][ T24] audit: type=1400 audit(2504.190:177): avc: denied { write } for pid=4644 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2512.783839][ T24] audit: type=1400 audit(2511.980:178): avc: denied { write } for pid=4654 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2518.176574][ T3204] 8021q: adding VLAN 0 to HW filter on device eth6 [ 2532.869613][ T24] audit: type=1400 audit(2532.090:179): avc: denied { write } for pid=4669 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2539.342489][ T24] audit: type=1400 audit(2538.550:180): avc: denied { write } for pid=4679 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2543.801215][ T3204] 8021q: adding VLAN 0 to HW filter on device eth7 [ 2550.288046][ T4480] veth0_vlan: entered promiscuous mode [ 2551.146639][ T4480] veth1_vlan: entered promiscuous mode [ 2553.935932][ T4480] veth0_macvtap: entered promiscuous mode [ 2554.448512][ T4480] veth1_macvtap: entered promiscuous mode [ 2557.304389][ T3452] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2557.365337][ T3452] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2557.395766][ T4165] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2557.460913][ T3452] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2559.833616][ T24] audit: type=1400 audit(2559.040:181): avc: denied { write } for pid=4692 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2561.214688][ T24] audit: type=1400 audit(2560.430:182): avc: denied { unmount } for pid=4480 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 2567.832785][ T24] audit: type=1400 audit(2567.050:183): avc: denied { write } for pid=4700 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2571.350987][ T4490] veth0_vlan: entered promiscuous mode [ 2572.724353][ T4490] veth1_vlan: entered promiscuous mode [ 2576.017511][ T3204] 8021q: adding VLAN 0 to HW filter on device eth8 [ 2577.148618][ T4490] veth0_macvtap: entered promiscuous mode [ 2577.777442][ T4490] veth1_macvtap: entered promiscuous mode [ 2581.604660][ T4695] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2581.606205][ T4695] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2581.628526][ T4695] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2581.709016][ T4695] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2629.547456][ T24] audit: type=1400 audit(2628.660:184): avc: denied { write } for pid=4739 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2641.573316][ T24] audit: type=1400 audit(2640.720:185): avc: denied { write } for pid=4750 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2676.534147][ T24] audit: type=1400 audit(2675.750:186): avc: denied { write } for pid=4773 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2686.183970][ T24] audit: type=1400 audit(2685.390:187): avc: denied { write } for pid=4786 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2705.952534][ T24] audit: type=1400 audit(2705.160:188): avc: denied { write } for pid=4794 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2717.247593][ T24] audit: type=1400 audit(2716.400:189): avc: denied { write } for pid=4801 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2735.104890][ T24] audit: type=1400 audit(2734.330:190): avc: denied { write } for pid=4812 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2742.718540][ T24] audit: type=1400 audit(2741.940:191): avc: denied { write } for pid=4821 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2772.202867][ T24] audit: type=1400 audit(2771.400:192): avc: denied { write } for pid=4831 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2781.954344][ T24] audit: type=1400 audit(2781.130:193): avc: denied { write } for pid=4844 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2797.682650][ T24] audit: type=1400 audit(2796.820:194): avc: denied { write } for pid=4855 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2806.936432][ T24] audit: type=1400 audit(2806.160:195): avc: denied { write } for pid=4865 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2835.065202][ T24] audit: type=1400 audit(2834.280:196): avc: denied { write } for pid=4880 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2845.144077][ T24] audit: type=1400 audit(2844.350:197): avc: denied { write } for pid=4888 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2860.486060][ T24] audit: type=1400 audit(2859.710:198): avc: denied { write } for pid=4895 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2870.115461][ T24] audit: type=1400 audit(2869.250:199): avc: denied { write } for pid=4902 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2893.704145][ T24] audit: type=1400 audit(2892.910:200): avc: denied { write } for pid=4920 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2903.988745][ T24] audit: type=1400 audit(2903.200:201): avc: denied { write } for pid=4931 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3008.946338][ T4942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3009.367503][ T4942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3037.278316][ T4942] hsr_slave_0: entered promiscuous mode [ 3037.344549][ T4942] hsr_slave_1: entered promiscuous mode [ 3037.408273][ T4942] debugfs: 'hsr0' already exists in 'hsr' [ 3037.433319][ T4942] Cannot create hsr debugfs directory [ 3039.810423][ T4952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3040.088468][ T4952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3057.799384][ T4942] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 3058.224572][ T4942] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3058.337513][ T4942] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 3058.803808][ T4942] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3058.851309][ T4942] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 3059.228328][ T4942] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3059.426399][ T4942] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 3059.760359][ T4942] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3078.275305][ T4952] hsr_slave_0: entered promiscuous mode [ 3078.307723][ T4952] hsr_slave_1: entered promiscuous mode [ 3078.364731][ T4952] debugfs: 'hsr0' already exists in 'hsr' [ 3078.367977][ T4952] Cannot create hsr debugfs directory [ 3097.273955][ T4952] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 3097.571064][ T4952] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3097.944056][ T4952] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 3098.329713][ T4952] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3098.478727][ T4952] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 3098.700992][ T4952] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3099.047851][ T4942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3099.177726][ T4952] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 3099.334762][ T4952] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3139.168308][ T4952] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3159.209404][ T3519] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3161.204645][ T3519] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3163.139566][ T3519] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3164.808206][ T3519] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3192.009093][ T3519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3192.573965][ T3519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3193.136842][ T3519] bond0 (unregistering): Released all slaves [ 3196.716748][ T3519] hsr_slave_0: left promiscuous mode [ 3197.053543][ T3519] hsr_slave_1: left promiscuous mode [ 3198.258542][ T3519] veth1_macvtap: left promiscuous mode [ 3198.270835][ T3519] veth0_macvtap: left promiscuous mode [ 3198.295132][ T3519] veth1_vlan: left promiscuous mode [ 3198.334886][ T3519] veth0_vlan: left promiscuous mode [ 3224.924099][ T3519] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3226.925727][ T3519] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3228.398203][ T3519] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3229.940208][ T3519] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 3242.783071][ T24] audit: type=1400 audit(3241.990:202): avc: denied { write } for pid=5074 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3251.638731][ T24] audit: type=1400 audit(3250.850:203): avc: denied { write } for pid=5082 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3254.176810][ T3519] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3255.204145][ T3519] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3255.674694][ T3519] bond0 (unregistering): Released all slaves [ 3257.933973][ T3519] hsr_slave_0: left promiscuous mode [ 3257.994577][ T3519] hsr_slave_1: left promiscuous mode [ 3258.325620][ T3519] veth1_macvtap: left promiscuous mode [ 3258.328762][ T3519] veth0_macvtap: left promiscuous mode [ 3258.345706][ T3519] veth1_vlan: left promiscuous mode [ 3258.349876][ T3519] veth0_vlan: left promiscuous mode [ 3274.574884][ T3204] 8021q: adding VLAN 0 to HW filter on device eth9 [ 3290.796815][ T24] audit: type=1400 audit(3289.960:204): avc: denied { write } for pid=5096 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3299.674961][ T24] audit: type=1400 audit(3298.840:205): avc: denied { write } for pid=5105 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3305.630331][ T3204] 8021q: adding VLAN 0 to HW filter on device eth10 [ 3317.126555][ T4942] veth0_vlan: entered promiscuous mode [ 3317.991159][ T4942] veth1_vlan: entered promiscuous mode [ 3320.984590][ T4942] veth0_macvtap: entered promiscuous mode [ 3321.567535][ T4942] veth1_macvtap: entered promiscuous mode [ 3323.089635][ T24] audit: type=1400 audit(3322.310:206): avc: denied { write } for pid=5120 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3324.526579][ T3452] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3324.534020][ T3452] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3324.568614][ T4977] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3324.587470][ T4977] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3332.157165][ T24] audit: type=1400 audit(3331.260:207): avc: denied { write } for pid=5127 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3339.260447][ T3204] 8021q: adding VLAN 0 to HW filter on device eth11 [ 3360.333186][ T24] audit: type=1400 audit(3359.530:208): avc: denied { write } for pid=5143 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3364.193570][ T4952] veth0_vlan: entered promiscuous mode [ 3365.575707][ T4952] veth1_vlan: entered promiscuous mode [ 3370.272258][ T4952] veth0_macvtap: entered promiscuous mode [ 3371.035832][ T4952] veth1_macvtap: entered promiscuous mode [ 3373.760873][ T24] audit: type=1400 audit(3372.950:209): avc: denied { write } for pid=5152 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3375.659083][ T3519] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3375.708053][ T5058] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3375.729192][ T5058] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3375.752961][ T5058] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3382.724963][ T3204] 8021q: adding VLAN 0 to HW filter on device eth12 [ 3404.581001][ T24] audit: type=1400 audit(3403.800:210): avc: denied { write } for pid=5165 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3416.096386][ T24] audit: type=1400 audit(3415.310:211): avc: denied { write } for pid=5174 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3424.799782][ T3204] 8021q: adding VLAN 0 to HW filter on device eth13 [ 3452.114533][ T24] audit: type=1400 audit(3451.330:212): avc: denied { write } for pid=5192 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3462.855917][ T24] audit: type=1400 audit(3462.020:213): avc: denied { write } for pid=5205 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3470.857851][ T3204] 8021q: adding VLAN 0 to HW filter on device eth14 [ 3497.685013][ T24] audit: type=1400 audit(3496.820:214): avc: denied { write } for pid=5218 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3507.112441][ T24] audit: type=1400 audit(3506.290:215): avc: denied { write } for pid=5226 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3511.168138][ T3204] 8021q: adding VLAN 0 to HW filter on device eth16 [ 3522.067918][ T24] audit: type=1400 audit(3521.250:216): avc: denied { write } for pid=5228 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3533.874912][ T24] audit: type=1400 audit(3533.070:217): avc: denied { write } for pid=5240 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3568.127282][ T24] audit: type=1400 audit(3567.310:218): avc: denied { write } for pid=5258 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3578.175018][ T24] audit: type=1400 audit(3577.400:219): avc: denied { write } for pid=5267 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3584.615906][ T3204] 8021q: adding VLAN 0 to HW filter on device eth15 [ 3647.424118][ T24] audit: type=1400 audit(3646.620:220): avc: denied { write } for pid=5292 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3658.695068][ T24] audit: type=1400 audit(3657.880:221): avc: denied { write } for pid=5304 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3679.453231][ T24] audit: type=1400 audit(3678.630:222): avc: denied { write } for pid=5311 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3690.393719][ T24] audit: type=1400 audit(3689.610:223): avc: denied { write } for pid=5319 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3717.263133][ T24] audit: type=1400 audit(3716.480:224): avc: denied { write } for pid=5336 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3729.273794][ T24] audit: type=1400 audit(3728.450:225): avc: denied { write } for pid=5347 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3729.619161][ T5284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3730.148982][ T5284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3746.448720][ T5294] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3747.077769][ T5294] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3759.506962][ T24] audit: type=1400 audit(3758.670:226): avc: denied { write } for pid=5360 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3769.486394][ T24] audit: type=1400 audit(3768.700:227): avc: denied { write } for pid=5369 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3777.936253][ T5284] hsr_slave_0: entered promiscuous mode [ 3778.120951][ T5284] hsr_slave_1: entered promiscuous mode [ 3791.949306][ T24] audit: type=1400 audit(3791.160:228): avc: denied { write } for pid=5378 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3799.471083][ T5294] hsr_slave_0: entered promiscuous mode [ 3799.660184][ T5294] hsr_slave_1: entered promiscuous mode [ 3799.823468][ T5294] debugfs: 'hsr0' already exists in 'hsr' [ 3799.825461][ T5294] Cannot create hsr debugfs directory [ 3802.053913][ T24] audit: type=1400 audit(3801.250:229): avc: denied { write } for pid=5382 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3814.250832][ T5284] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 3814.611208][ T5284] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3815.579361][ T5284] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 3816.106186][ T5284] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3816.986607][ T5284] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 3817.240197][ T5284] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3818.375999][ T5284] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 3818.798043][ T5284] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3823.282640][ T24] audit: type=1400 audit(3822.450:230): avc: denied { write } for pid=5388 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3836.308859][ T5294] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 3836.921075][ T5294] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 3837.237628][ T5294] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 3837.316437][ T24] audit: type=1400 audit(3836.410:231): avc: denied { write } for pid=5399 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3837.837231][ T5294] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 3838.146490][ T5294] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 3838.739874][ T5294] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 3839.273795][ T5294] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 3839.875475][ T5294] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 3870.496268][ T24] audit: type=1400 audit(3869.690:232): avc: denied { write } for pid=5418 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3874.679761][ T5284] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3886.060775][ T24] audit: type=1400 audit(3885.280:233): avc: denied { write } for pid=5426 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3888.801181][ T5294] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3922.469373][ T24] audit: type=1400 audit(3921.610:234): avc: denied { write } for pid=5438 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3938.457338][ T24] audit: type=1400 audit(3937.660:235): avc: denied { write } for pid=5446 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3974.710313][ T24] audit: type=1400 audit(3973.930:236): avc: denied { write } for pid=5461 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3988.928093][ T24] audit: type=1400 audit(3988.150:237): avc: denied { write } for pid=5471 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4020.477814][ T24] audit: type=1400 audit(4019.680:238): avc: denied { write } for pid=5484 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4029.455233][ T3452] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4032.077856][ T3452] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4034.495881][ T3452] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4036.065855][ T24] audit: type=1400 audit(4035.240:239): avc: denied { write } for pid=5494 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4037.158263][ T3452] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4063.637217][ T3452] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4063.820425][ T3452] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4064.024631][ T3452] bond0 (unregistering): Released all slaves [ 4065.734713][ T3452] hsr_slave_0: left promiscuous mode [ 4065.875341][ T3452] hsr_slave_1: left promiscuous mode [ 4066.555088][ T3452] veth1_macvtap: left promiscuous mode [ 4066.573775][ T3452] veth0_macvtap: left promiscuous mode [ 4066.593170][ T3452] veth1_vlan: left promiscuous mode [ 4066.603421][ T3452] veth0_vlan: left promiscuous mode [ 4106.673697][ T5474] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4108.969044][ T5474] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4110.841051][ T5474] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4113.027363][ T5474] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4124.417804][ T24] audit: type=1400 audit(4123.560:240): avc: denied { write } for pid=5520 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4133.453034][ T24] audit: type=1400 audit(4132.610:241): avc: denied { write } for pid=5529 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4136.851379][ T5474] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4137.599318][ T5474] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4137.950554][ T5474] bond0 (unregistering): Released all slaves [ 4140.595570][ T5474] hsr_slave_0: left promiscuous mode [ 4140.724335][ T5474] hsr_slave_1: left promiscuous mode [ 4141.516053][ T5474] veth1_macvtap: left promiscuous mode [ 4141.547523][ T5474] veth0_macvtap: left promiscuous mode [ 4141.557827][ T5474] veth1_vlan: left promiscuous mode [ 4141.591034][ T5474] veth0_vlan: left promiscuous mode [ 4168.548561][ T3204] 8021q: adding VLAN 0 to HW filter on device eth17 [ 4172.635320][ T5284] veth0_vlan: entered promiscuous mode [ 4172.817320][ T5294] veth0_vlan: entered promiscuous mode [ 4174.663914][ T5284] veth1_vlan: entered promiscuous mode [ 4174.864616][ T5294] veth1_vlan: entered promiscuous mode [ 4180.184242][ T5284] veth0_macvtap: entered promiscuous mode [ 4180.888555][ T5294] veth0_macvtap: entered promiscuous mode [ 4181.359888][ T5284] veth1_macvtap: entered promiscuous mode [ 4182.048062][ T5294] veth1_macvtap: entered promiscuous mode [ 4186.875030][ T4504] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4186.890126][ T4504] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4186.906986][ T4504] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4186.915711][ T4504] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4188.158055][ T4977] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4188.167910][ T4977] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4188.219036][ T4977] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4188.241117][ T4977] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4191.617929][ T24] audit: type=1400 audit(4190.780:242): avc: denied { write } for pid=5537 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4202.973322][ T24] audit: type=1400 audit(4202.190:243): avc: denied { write } for pid=5542 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4212.425149][ T3204] 8021q: adding VLAN 0 to HW filter on device eth18 [ 4241.173718][ T24] audit: type=1400 audit(4240.360:244): avc: denied { write } for pid=5560 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4254.288883][ T24] audit: type=1400 audit(4253.420:245): avc: denied { write } for pid=5569 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4263.845253][ T3204] 8021q: adding VLAN 0 to HW filter on device eth19 [ 4296.400447][ T24] audit: type=1400 audit(4295.600:246): avc: denied { write } for pid=5582 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4309.614991][ T24] audit: type=1400 audit(4308.730:247): avc: denied { write } for pid=5593 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4319.290410][ T3204] 8021q: adding VLAN 0 to HW filter on device eth20 [ 4349.817005][ T24] audit: type=1400 audit(4349.030:248): avc: denied { write } for pid=5610 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4364.305497][ T24] audit: type=1400 audit(4363.520:249): avc: denied { write } for pid=5621 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4373.284972][ T3204] 8021q: adding VLAN 0 to HW filter on device eth21 [ 4408.292643][ T24] audit: type=1400 audit(4407.460:250): avc: denied { write } for pid=5633 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4422.046888][ T24] audit: type=1400 audit(4421.140:251): avc: denied { write } for pid=5643 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4431.628772][ T3204] 8021q: adding VLAN 0 to HW filter on device eth22 [ 4463.468563][ T24] audit: type=1400 audit(4462.670:252): avc: denied { write } for pid=5662 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4478.225306][ T24] audit: type=1400 audit(4477.440:253): avc: denied { write } for pid=5671 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4487.156130][ T3204] 8021q: adding VLAN 0 to HW filter on device eth23 [ 4522.343113][ T24] audit: type=1400 audit(4521.550:254): avc: denied { write } for pid=5685 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4537.134997][ T24] audit: type=1400 audit(4536.200:255): avc: denied { write } for pid=5697 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4546.625071][ T3204] 8021q: adding VLAN 0 to HW filter on device eth24 [ 4560.929147][ T24] audit: type=1400 audit(4560.060:256): avc: denied { write } for pid=5704 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4576.043111][ T24] audit: type=1400 audit(4575.250:257): avc: denied { write } for pid=5718 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4644.731325][ T5750] KVM: debugfs: duplicate directory 5750-11 [ 4672.982862][ T24] audit: type=1400 audit(4672.190:258): avc: denied { write } for pid=5760 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4688.423796][ T24] audit: type=1400 audit(4687.600:259): avc: denied { write } for pid=5764 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4715.937046][ T3865] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4719.298393][ T3865] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4722.769997][ T3865] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4725.909801][ T3865] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4726.288720][ T24] audit: type=1400 audit(4725.510:260): avc: denied { write } for pid=5777 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4742.250110][ T24] audit: type=1400 audit(4741.470:261): avc: denied { write } for pid=5793 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4761.823807][ T3865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4762.405623][ T3865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4762.825257][ T3865] bond0 (unregistering): Released all slaves [ 4766.050092][ T3865] hsr_slave_0: left promiscuous mode [ 4766.237211][ T3865] hsr_slave_1: left promiscuous mode [ 4767.087087][ T3865] veth1_macvtap: left promiscuous mode [ 4767.118617][ T3865] veth0_macvtap: left promiscuous mode [ 4767.129435][ T3865] veth1_vlan: left promiscuous mode [ 4767.195401][ T3865] veth0_vlan: left promiscuous mode [ 4833.671376][ T24] audit: type=1400 audit(4832.890:262): avc: denied { write } for pid=5825 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4846.025921][ T24] audit: type=1400 audit(4845.210:263): avc: denied { write } for pid=5836 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4895.677384][ T24] audit: type=1400 audit(4894.890:264): avc: denied { write } for pid=5861 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4896.974252][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4897.529662][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4906.376668][ T24] audit: type=1400 audit(4905.500:265): avc: denied { write } for pid=5870 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4913.389465][ T3204] 8021q: adding VLAN 0 to HW filter on device eth25 [ 4926.823284][ T24] audit: type=1400 audit(4926.010:266): avc: denied { write } for pid=5878 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4940.264821][ T24] audit: type=1400 audit(4939.450:267): avc: denied { write } for pid=5889 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4949.516543][ T5773] hsr_slave_0: entered promiscuous mode [ 4949.745475][ T5773] hsr_slave_1: entered promiscuous mode [ 4949.904664][ T5773] debugfs: 'hsr0' already exists in 'hsr' [ 4949.955031][ T5773] Cannot create hsr debugfs directory [ 4963.981316][ T24] audit: type=1400 audit(4963.190:268): avc: denied { write } for pid=5896 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4976.078852][ T24] audit: type=1400 audit(4975.160:269): avc: denied { write } for pid=5903 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4979.210733][ T5773] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 4979.868207][ T5773] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4980.068402][ T5773] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 4980.551156][ T5773] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4980.720480][ T5773] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 4981.334834][ T5773] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4981.605746][ T5773] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 4982.084712][ T5773] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5008.174500][ T24] audit: type=1400 audit(5007.350:270): avc: denied { write } for pid=5921 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5022.325656][ T24] audit: type=1400 audit(5021.540:271): avc: denied { write } for pid=5933 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5029.809756][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5061.807919][ T24] audit: type=1400 audit(5061.000:272): avc: denied { write } for pid=5950 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5077.885261][ T24] audit: type=1400 audit(5077.060:273): avc: denied { write } for pid=5959 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5087.160729][ T3204] 8021q: adding VLAN 0 to HW filter on device eth26 [ 5121.963859][ T24] audit: type=1400 audit(5120.990:274): avc: denied { write } for pid=5974 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5136.814021][ T24] audit: type=1400 audit(5135.900:275): avc: denied { write } for pid=5989 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5146.161134][ T3204] 8021q: adding VLAN 0 to HW filter on device eth27 [ 5177.154619][ T24] audit: type=1400 audit(5176.320:276): avc: denied { write } for pid=6005 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5192.703143][ T24] audit: type=1400 audit(5191.920:277): avc: denied { write } for pid=6019 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5202.521091][ T3204] 8021q: adding VLAN 0 to HW filter on device eth28 [ 5243.564875][ T5773] veth0_vlan: entered promiscuous mode [ 5245.439656][ T5773] veth1_vlan: entered promiscuous mode [ 5251.236397][ T5773] veth0_macvtap: entered promiscuous mode [ 5252.295812][ T5773] veth1_macvtap: entered promiscuous mode [ 5258.591055][ T4504] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5258.694621][ T4504] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5258.779571][ T5400] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5258.796281][ T5400] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5275.219995][ T24] audit: type=1400 audit(5274.400:278): avc: denied { write } for pid=6054 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5292.459903][ T24] audit: type=1400 audit(5291.630:279): avc: denied { write } for pid=6070 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5326.657901][ T24] audit: type=1400 audit(5325.850:280): avc: denied { write } for pid=6081 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5341.953810][ T24] audit: type=1400 audit(5341.160:281): avc: denied { write } for pid=6094 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5382.008579][ T24] audit: type=1400 audit(5381.230:282): avc: denied { write } for pid=6104 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5393.616679][ T24] audit: type=1400 audit(5392.750:283): avc: denied { write } for pid=6109 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5450.311019][ T24] audit: type=1400 audit(5449.530:284): avc: denied { write } for pid=6131 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5464.716513][ T24] audit: type=1400 audit(5463.900:285): avc: denied { write } for pid=6140 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5489.644643][ T24] audit: type=1400 audit(5488.840:286): avc: denied { write } for pid=6146 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5503.936763][ T24] audit: type=1400 audit(5503.120:287): avc: denied { write } for pid=6157 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5524.727355][ T6107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5525.343866][ T6107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5547.744607][ T24] audit: type=1400 audit(5546.930:288): avc: denied { write } for pid=6173 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5548.885566][ T6117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5549.517253][ T6117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5562.240230][ T24] audit: type=1400 audit(5561.460:289): avc: denied { write } for pid=6181 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5586.467392][ T6107] hsr_slave_0: entered promiscuous mode [ 5586.657291][ T6107] hsr_slave_1: entered promiscuous mode [ 5586.826622][ T6107] debugfs: 'hsr0' already exists in 'hsr' [ 5586.843460][ T6107] Cannot create hsr debugfs directory [ 5617.565092][ T24] audit: type=1400 audit(5616.740:290): avc: denied { write } for pid=6200 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5617.836836][ T6117] hsr_slave_0: entered promiscuous mode [ 5618.137295][ T6117] hsr_slave_1: entered promiscuous mode [ 5618.324330][ T6117] debugfs: 'hsr0' already exists in 'hsr' [ 5618.348057][ T6117] Cannot create hsr debugfs directory [ 5630.394896][ T24] audit: type=1400 audit(5629.610:291): avc: denied { write } for pid=6205 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5630.583610][ T6107] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 5631.275141][ T6107] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5633.408600][ T6107] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 5633.810607][ T6107] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5635.006040][ T6107] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 5635.458558][ T6107] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5637.098434][ T6107] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 5637.577802][ T6107] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5668.570117][ T24] audit: type=1400 audit(5667.680:292): avc: denied { write } for pid=6217 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5680.987748][ T6117] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 5681.950513][ T6117] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5682.493852][ T6117] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 5683.179485][ T6117] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5683.495616][ T6117] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 5684.195999][ T6117] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5684.528265][ T6117] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 5685.198869][ T6117] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5686.633137][ T24] audit: type=1400 audit(5685.830:293): avc: denied { write } for pid=6226 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5706.377899][ T6107] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5727.799443][ T24] audit: type=1400 audit(5726.920:294): avc: denied { write } for pid=6244 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5740.847382][ T6117] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5745.545451][ T24] audit: type=1400 audit(5744.740:295): avc: denied { write } for pid=6253 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5773.850659][ T24] audit: type=1400 audit(5773.050:296): avc: denied { write } for pid=6259 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5790.707423][ T26] INFO: task syz.8.437:6095 blocked for more than 430 seconds. [ 5790.786831][ T26] Not tainted syzkaller #0 [ 5790.826096][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 5790.827622][ T26] task:syz.8.437 state:D stack:0 pid:6095 tgid:6095 ppid:5773 task_flags:0x400040 flags:0x00000011 [ 5790.829186][ T26] Call trace: [ 5790.829703][ T26] __switch_to+0x5e0/0xb5c (T) [ 5790.944002][ T26] __schedule+0x1f54/0x38a8 [ 5790.945718][ T26] schedule+0xac/0x27c [ 5790.946237][ T26] schedule_timeout+0x68/0x1ec [ 5790.946749][ T26] do_wait_for_common+0x28c/0x440 [ 5790.947198][ T26] wait_for_completion+0x44/0x5c [ 5790.947632][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 5790.948133][ T26] synchronize_srcu+0x668/0x8dc [ 5790.948659][ T26] mmu_notifier_unregister+0x320/0x428 [ 5790.949131][ T26] kvm_put_kvm+0x698/0xbb8 [ 5790.949581][ T26] kvm_vm_release+0x58/0x78 [ 5790.950038][ T26] __fput+0x4ac/0x978 [ 5790.950511][ T26] ____fput+0x20/0x30 [ 5790.950946][ T26] task_work_run+0x1b8/0x250 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 5791.098790][ T26] exit_to_user_mode_loop+0x110/0x188 [ 5791.108268][ T26] el0_svc+0x184/0x238 [ 5791.108904][ T26] el0t_64_sync_handler+0x84/0x12c [ 5791.109415][ T26] el0t_64_sync+0x198/0x19c [ 5791.111123][ T26] [ 5791.111123][ T26] Showing all locks held in the system: [ 5791.184055][ T26] 1 lock held by khungtaskd/26: [ 5791.223671][ T26] #0: ffff800087dc48b8 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 5791.226515][ T26] 2 locks held by getty/3235: [ 5791.226912][ T26] #0: 95f000001272e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 5791.228583][ T26] #1: d3ff80008cb5b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x1284 [ 5791.230164][ T26] 2 locks held by syz-executor/3359: [ 5791.230532][ T26] 3 locks held by kworker/u4:5/3409: [ 5791.230839][ T26] 3 locks held by kworker/u4:6/3452: [ 5791.231129][ T26] 3 locks held by kworker/u4:3/3865: [ 5791.324137][ T26] 3 locks held by kworker/u4:11/5040: [ 5791.327568][ T24] audit: type=1400 audit(5790.530:297): avc: denied { write } for pid=6269 comm="rm" name="hook-state" dev="tmpfs" ino=142 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5791.328373][ T26] #0: 3af0000012627940 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80 [ 5791.330059][ T26] #1: ffff80008fd47ca8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80 [ 5791.454150][ T26] #2: fff0000074d270e0 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x36c/0x38a8 [ 5791.456001][ T26] 3 locks held by kworker/u4:12/5058: [ 5791.456345][ T26] 3 locks held by kworker/u4:1/5250: [ 5791.456707][ T26] 3 locks held by kworker/0:3/5740: [ 5791.457054][ T26] 3 locks held by kworker/u4:4/6028: [ 5791.457408][ T26] 2 locks held by syz.6.436/6090: [ 5791.457724][ T26] 1 lock held by syz-executor/6117: [ 5791.458016][ T26] 3 locks held by kworker/u4:10/6141: [ 5791.458364][ T26] 3 locks held by kworker/u4:15/6242: [ 5791.592994][ T26] [ 5791.593645][ T26] ============================================= [ 5791.593645][ T26] [ 5791.594693][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 5791.599850][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 5791.601348][ T26] Hardware name: linux,dummy-virt (DT) [ 5791.602366][ T26] Call trace: [ 5791.603194][ T26] show_stack+0x2c/0x3c (C) [ 5791.604249][ T26] __dump_stack+0x30/0x40 [ 5791.605279][ T26] dump_stack_lvl+0x30/0x12c [ 5791.606246][ T26] dump_stack+0x1c/0x28 [ 5791.607236][ T26] vpanic+0x4d0/0x848 [ 5791.608138][ T26] vpanic+0x0/0x848 [ 5791.609017][ T26] hung_task_panic+0x0/0x2c [ 5791.610006][ T26] kthread+0x4d4/0x51c [ 5791.610853][ T26] ret_from_fork+0x10/0x20 [ 5791.612782][ T26] Kernel Offset: disabled [ 5791.613542][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 5791.614737][ T26] Memory Limit: none [ 5791.616998][ T26] Rebooting in 86400 seconds..