last executing test programs: 1m0.381314537s ago: executing program 1 (id=1831): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x4001, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r2 = openat$kvm(0x0, &(0x7f0000000180), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x4f831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_ARM_VCPU_FINALIZE(r4, 0x4004aec2, &(0x7f0000000180)=0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x440582, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000140)=@arm64_ccsidr={0x6020000000110006, &(0x7f0000000000)=0x2}) mmap$KVM_VCPU(&(0x7f000000e000/0x3000)=nil, r1, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0x48) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x5, 0x2, 0xdddd1000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x0, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000140)={0x1fd, 0x0, 0x2000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x3, 0x8000000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000100)={0x0, 0x1, 0x10000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x420200, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f00000001c0)={0x1ff, 0x4, 0x8000000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04) 52.561274952s ago: executing program 1 (id=1833): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r7, 0x4018aee2, &(0x7f00000000c0)=@attr_set_pmu={0x0, 0x0, 0x3, 0x0}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r3, 0x4068aea3, &(0x7f0000000180)) 49.156227713s ago: executing program 0 (id=1834): mmap$KVM_VCPU(&(0x7f0000e95000/0x4000)=nil, 0x0, 0x1000006, 0x2010, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = eventfd2(0xfffffffa, 0x0) close(r3) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b8440000429610fbff65521ce16f8f1f447d69835673312654ebb20176c85cd204000000000000000000000000000000000900", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000c, 0x4f832, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0x4}) close(0x5) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) 40.278154744s ago: executing program 0 (id=1835): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) munmap(&(0x7f0000ad4000/0x1000)=nil, 0x1000) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) (async) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r1, 0x4020aeae, &(0x7f0000000180)={0x0, 0x41}) r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x83) (async) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x18f801, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000340)={0x5}) ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000000080)=@arm64_core={0x6030000000100024, &(0x7f00000000c0)=0xf55}) (async) r8 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="14000000000000002000000000000000eadc1313b0d74f600080000000000000"], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0) (async) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000080)=[{0x600000000000000, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) (async) r15 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r15, 0x4020aeae, &(0x7f0000000340)={0x5}) (async) ioctl$KVM_GET_ONE_REG(r15, 0x4010aeab, &(0x7f0000000080)=@arm64_sys={0x603000000013c807, &(0x7f0000000280)=0x1}) 32.75236968s ago: executing program 0 (id=1836): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r4, 0x4068aea3, &(0x7f0000000300)={0xdf, 0x0, 0x8000}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r4, 0x4068aea3, &(0x7f0000000080)={0xe1, 0x0, 0x2000}) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000040)={0x10200, 0x0, &(0x7f0000d1e000/0x2000)=nil}) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="82000000000000002800000000000000010000000000000000000000000000004702000000000000320000000000000040000000000000000000ff32000000000000000000000000060000000000000003000000000000004000000000000000e7bc5561000000006e00000000000000300000000000000000000a0800000000a0"], 0x630}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) 30.672253389s ago: executing program 1 (id=1837): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CAP_ARM_USER_IRQ(r0, 0x4068aea3, &(0x7f0000000000)) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r0, 0x4068aea3, &(0x7f0000000080)={0xa8, 0x0, 0x2}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f0000000100)={0xdf, 0x0, 0xc000}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000180)={0x10003, 0x0, &(0x7f0000ffd000/0x3000)=nil}) r2 = eventfd2(0x4, 0x80001) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x101280, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000200)={0x0, 0x10000}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x4002, 0x0) close(r3) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000280)) r4 = eventfd2(0x3, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000300)={0x1fe, 0x0, 0x3000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000340)={0x1, 0x2000}) syz_kvm_vgic_v3_setup(r0, 0x1, 0x40) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000380)={0x9, 0x5000, 0x1, r2, 0xc}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f00000003c0)={0xdf, 0x0, 0x4000}) syz_kvm_setup_cpu$arm64(r1, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000480)=[{0x0, &(0x7f0000000440)=[@irq_setup={0x46, 0x18, {0x1, 0x21c}}], 0x18}], 0x1, 0x0, &(0x7f00000004c0)=[@featur2={0x1, 0x66}], 0x1) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) write$eventfd(r4, &(0x7f0000000500)=0xf793, 0x8) r6 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000540)=@arm64={0x7, 0x3, 0x5, '\x00', 0x6}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000580), 0x200, 0x0) r7 = mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, 0x0, 0x5, 0x4000010, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000005c0)="21d0a007cb6aea7b1b0abab80824f205a0dfc62e16524940eb45b74978e3c3d691b34c7686b45618f1c4253fc1a400a2541d68af7efc072d455824c09d2c0936ab9a2d9d47825648", 0x0, 0x48) ioctl$KVM_SET_GSI_ROUTING(r0, 0x4008ae6a, &(0x7f0000000640)={0x8, 0x0, [{0x80000001, 0x3, 0x1, 0x0, @irqchip={0x3, 0x8}}, {0x9, 0x4, 0x1, 0x0, @irqchip={0x8, 0xfffeffff}}, {0x2, 0x2, 0x0, 0x0, @sint={0xc00, 0x9}}, {0x6ce, 0x3, 0x1, 0x0, @msi={0x0, 0x1, 0xe, 0x9}}, {0x8, 0x1, 0x0, 0x0, @msi={0xffff, 0x80, 0x1, 0x7800}}, {0x1379, 0x5, 0x1, 0x0, @msi={0x2, 0x10, 0x6, 0x8}}, {0x4a, 0x2, 0x1, 0x0, @adapter={0x1, 0x8000000000000001, 0x77d, 0x2, 0x6}}, {0x8, 0x3, 0x1, 0x0, @adapter={0xfe, 0x14db, 0x2, 0xad86, 0x7fffffff}}]}) 23.660973977s ago: executing program 1 (id=1838): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0x80111500, 0x20000000) write$eventfd(r4, &(0x7f0000000000), 0xfffffdef) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0x80111500, 0x20000000) write$eventfd(r6, &(0x7f0000000000), 0xfffffdef) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000005, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x40480, 0x0) (async) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r11, 0x0) (async) ioctl$KVM_SET_REGS(r11, 0x4360ae82, 0x0) (async) r12 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r12, 0x4040aea0, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x9, 0x2}}) r13 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, &(0x7f0000000180)={0x1ff, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r15, 0x4004ae99, &(0x7f0000000100)=0xa) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="76b92cfb97422a99b188adac74647aa1221e4d8e6da62d5f533e7f6120be5a845d77658c900fa608d72c085a1f4e5203df5e7728260b7ab522076295a9cbeeae01832398e92fc7bc", 0x0, 0x48) 21.099711149s ago: executing program 0 (id=1839): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="820000000000000028000000000000000000000000000000010000000000000008030000000000003200000000000000400000000000000023008009000000000100000000100000a4000000000000008989994f00000000a6000000000000000200000000000000"], 0x68}, 0x0, 0x0) (async, rerun: 64) r4 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff, 0x1}) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="05000000000000001800000000000000010000005002"], 0x18}, 0x0, 0x0) (async) close(r4) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0xc6) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0xf, '\x00', 0xfffffffffffff105}) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 64) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x2c00, 0x0) (rerun: 64) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8}) (async) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x5, 0x0, &(0x7f0000000240)=0x104}) (async) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) (async) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x541b, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 13.569961204s ago: executing program 1 (id=1840): mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0x0, &(0x7f0000000180), 0x12b801, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x60081, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) ioctl$KVM_CAP_DIRTY_LOG_RING(r2, 0x4068aea3, &(0x7f0000000100)={0xc0, 0x0, 0x3000}) ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x2, 0xba, 0x0}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0xcb3993e4c7433bb8, 0xffffffffffffffff, 0x0) eventfd2(0x8, 0x80401) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) munmap(&(0x7f0000d83000/0x4000)=nil, 0x4000) ioctl$KVM_CHECK_EXTENSION_VM(r9, 0xae03, 0xe) r10 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f00000000c0)={0x2, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x801054db, 0x0) 11.847755867s ago: executing program 0 (id=1841): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x400, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000000), 0x163dc2, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, 0xffffffffffffffff) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) eventfd2(0x1, 0x80000) ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, 0x0) ioctl$KVM_SET_SREGS(r8, 0x4000ae84, 0xffffffffffffffff) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x30, r2, 0x0) r9 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000000)=@x86={0x6, 0xef, 0x5, 0x0, 0x3, 0x5, 0x6, 0xd, 0x40, 0x3, 0x4, 0xa, 0x0, 0x5, 0x6, 0x0, 0x0, 0x2b, 0x6, '\x00', 0x0, 0x3}) ioctl$KVM_CREATE_VM(r9, 0x401c5820, 0x20000000) 4.335670039s ago: executing program 0 (id=1842): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x2002, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="820000000000000028000000000000000100000000000000012001000000000001050000f97767ea"], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r3, 0x4, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r1, 0x4, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) (async) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x2002, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000100)=@attr_other={0x0, 0x0, 0x8, 0x0}) (async) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x6, 0xc158486caf93739a, &(0x7f0000000480)=0x7}) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x2000, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r15 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000700)=[@its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x4, 0xc, 0x22, 0x7, 0x2}}, @smc={0x1e, 0x40, {0x84000000, [0x200, 0x1, 0x5, 0x0, 0xf2a1]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x100, 0x7, 0x8}}, @irq_setup={0x46, 0x18, {0x0, 0x133}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x302}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x48, 0x1, 0x1}}, @mrs={0xbe, 0x18, {0x6030000000138057}}, @memwrite={0x6e, 0x30, @generic={0x8080000, 0x505, 0x4, 0x4}}, @smc={0x1e, 0x40, {0x84000050, [0xffffffffffffffff, 0xffffffff, 0xfff, 0xffffffffffffffff, 0x1]}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x161}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x1, 0x3, 0x2, 0x400}}, @uexit={0x0, 0x18, 0x19d2}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf10, 0x9}}, @msr={0x14, 0x20, {0x603000000013800c, 0xfffffffffffffffe}}], 0x248}, &(0x7f0000000100)=[@featur2={0x1, 0x60}], 0x1) ioctl$KVM_ARM_VCPU_FINALIZE(r15, 0x4004aec2, &(0x7f0000000400)=0x2) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) (async) r16 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r16, 0x4020aeae, &(0x7f0000000080)={0x5}) (async) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000440)={0xffffffffffffffff, 0x5}) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f932, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_ONE_REG(r16, 0x4010aeac, &(0x7f0000000140)=@arm64_bitmap={0x6030000000162000, &(0x7f00000000c0)=0x8906}) 0s ago: executing program 1 (id=1843): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2041, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000300)={0xdf, 0x0, 0x8000}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000080)={0xe1, 0x0, 0x2000}) ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000040)={0x1ff, 0x0, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f0000000080)={0x6, 0xffffffffffffffff, 0x1}) kernel console output (not intermixed with test programs): [ 418.281210][ T3129] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:15353' (ED25519) to the list of known hosts. [ 595.528961][ T25] audit: type=1400 audit(594.620:59): avc: denied { name_bind } for pid=3289 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 596.470124][ T25] audit: type=1400 audit(595.560:60): avc: denied { execute } for pid=3290 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 596.490857][ T25] audit: type=1400 audit(595.580:61): avc: denied { execute_no_trans } for pid=3290 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 615.937017][ T25] audit: type=1400 audit(615.020:62): avc: denied { mounton } for pid=3290 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 615.965817][ T25] audit: type=1400 audit(615.050:63): avc: denied { mount } for pid=3290 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 616.052293][ T3290] cgroup: Unknown subsys name 'net' [ 616.106303][ T25] audit: type=1400 audit(615.190:64): avc: denied { unmount } for pid=3290 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 616.566673][ T3290] cgroup: Unknown subsys name 'cpuset' [ 616.667934][ T3290] cgroup: Unknown subsys name 'rlimit' [ 617.654155][ T25] audit: type=1400 audit(616.730:65): avc: denied { setattr } for pid=3290 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 617.661491][ T25] audit: type=1400 audit(616.740:66): avc: denied { mounton } for pid=3290 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 617.689103][ T25] audit: type=1400 audit(616.780:67): avc: denied { mount } for pid=3290 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 618.896918][ T3293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 618.917250][ T25] audit: type=1400 audit(618.000:68): avc: denied { relabelto } for pid=3293 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 618.938046][ T25] audit: type=1400 audit(618.020:69): avc: denied { write } for pid=3293 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 619.118120][ T25] audit: type=1400 audit(618.210:70): avc: denied { read } for pid=3290 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.154659][ T25] audit: type=1400 audit(618.220:71): avc: denied { open } for pid=3290 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 619.186786][ T3290] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 666.838193][ T25] audit: type=1400 audit(665.930:72): avc: denied { execmem } for pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 670.481924][ T25] audit: type=1400 audit(669.570:73): avc: denied { read } for pid=3296 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 670.502204][ T25] audit: type=1400 audit(669.590:74): avc: denied { open } for pid=3296 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 670.590571][ T25] audit: type=1400 audit(669.680:75): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 670.869427][ T25] audit: type=1400 audit(669.960:76): avc: denied { module_request } for pid=3296 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 672.033871][ T25] audit: type=1400 audit(671.120:77): avc: denied { sys_module } for pid=3296 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 699.049674][ T3296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 699.231077][ T3296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 701.366344][ T3297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 701.606737][ T3297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 714.075060][ T3296] hsr_slave_0: entered promiscuous mode [ 714.127229][ T3296] hsr_slave_1: entered promiscuous mode [ 715.791961][ T3297] hsr_slave_0: entered promiscuous mode [ 715.821762][ T3297] hsr_slave_1: entered promiscuous mode [ 715.850304][ T3297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 715.864817][ T3297] Cannot create hsr debugfs directory [ 720.969517][ T25] audit: type=1400 audit(720.060:78): avc: denied { create } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 721.017827][ T25] audit: type=1400 audit(720.110:79): avc: denied { write } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 721.039337][ T25] audit: type=1400 audit(720.120:80): avc: denied { read } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 721.180692][ T3296] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 721.561256][ T3296] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 721.831159][ T3296] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 722.269148][ T3296] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 723.687406][ T3297] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 723.839218][ T3297] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 723.972077][ T3297] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 724.141030][ T3297] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 736.789739][ T3296] 8021q: adding VLAN 0 to HW filter on device bond0 [ 739.499712][ T3297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 800.008440][ T3296] veth0_vlan: entered promiscuous mode [ 800.418149][ T3296] veth1_vlan: entered promiscuous mode [ 802.346785][ T3297] veth0_vlan: entered promiscuous mode [ 802.706067][ T3296] veth0_macvtap: entered promiscuous mode [ 803.200944][ T3296] veth1_macvtap: entered promiscuous mode [ 803.409820][ T3297] veth1_vlan: entered promiscuous mode [ 805.119384][ T3296] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 805.127928][ T3296] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 805.141578][ T3296] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 805.166183][ T3296] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 805.861131][ T3297] veth0_macvtap: entered promiscuous mode [ 806.605394][ T3297] veth1_macvtap: entered promiscuous mode [ 807.911405][ T25] audit: type=1400 audit(807.000:81): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 808.158649][ T25] audit: type=1400 audit(807.210:82): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.aFZzF7/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 808.320695][ T25] audit: type=1400 audit(807.410:83): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 808.601267][ T25] audit: type=1400 audit(807.670:84): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.aFZzF7/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 808.797806][ T25] audit: type=1400 audit(807.890:85): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.aFZzF7/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 808.918799][ T3297] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.927911][ T3297] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.944456][ T3297] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 808.954303][ T3297] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 809.486457][ T25] audit: type=1400 audit(808.540:86): avc: denied { unmount } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 809.687030][ T25] audit: type=1400 audit(808.780:87): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 809.844678][ T25] audit: type=1400 audit(808.930:88): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="gadgetfs" ino=3294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 810.092049][ T25] audit: type=1400 audit(809.180:89): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 810.170111][ T25] audit: type=1400 audit(809.260:90): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 811.708515][ T3296] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 813.245276][ T25] kauditd_printk_skb: 1 callbacks suppressed [ 813.264303][ T25] audit: type=1400 audit(812.310:92): avc: denied { read write } for pid=3296 comm="syz-executor" name="loop1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 813.346448][ T25] audit: type=1400 audit(812.400:93): avc: denied { open } for pid=3296 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 813.441475][ T25] audit: type=1400 audit(812.490:94): avc: denied { ioctl } for pid=3296 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 817.394028][ T25] audit: type=1400 audit(816.470:95): avc: denied { read } for pid=3441 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 817.435030][ T25] audit: type=1400 audit(816.500:96): avc: denied { open } for pid=3441 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 818.200362][ T25] audit: type=1400 audit(817.290:97): avc: denied { ioctl } for pid=3441 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 827.696528][ T25] audit: type=1400 audit(826.780:98): avc: denied { write } for pid=3448 comm="syz.0.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 839.044248][ T25] audit: type=1400 audit(838.110:99): avc: denied { append } for pid=3450 comm="syz.1.4" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 884.015056][ T25] audit: type=1400 audit(883.090:100): avc: denied { map } for pid=3479 comm="syz.1.12" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 962.731267][ T25] audit: type=1400 audit(961.820:101): avc: denied { execute } for pid=3533 comm="syz.1.29" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=5167 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 984.809910][ T25] audit: type=1400 audit(983.900:102): avc: denied { setattr } for pid=3553 comm="syz.0.33" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1036.840391][ T3592] KVM: debugfs: duplicate directory 3592-4 [ 1469.117987][ T25] audit: type=1400 audit(1468.190:103): avc: denied { ioctl } for pid=3870 comm="syz.1.122" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1517.951519][ T3905] kvm [3905]: Failed to find VMA for hva 0x20c01000 [ 2348.006832][ T4464] kvm [4464]: Failed to find VMA for hva 0x20c01000 [ 2539.311190][ T4599] kvm [4599]: Failed to find VMA for hva 0x20c01000 [ 2886.794889][ T4852] kvm [4852]: Failed to find VMA for hva 0x20c01000 [ 3510.746101][ T5339] debugfs: File 'vgic-its-state@8080000' in directory '5339-6' already present! [ 3800.489341][ T5536] kvm [5536]: Failed to find VMA for hva 0x20d8d000 [ 3823.028668][ T5550] kvm [5550]: Failed to find VMA for hva 0x20d8d000 [ 4664.705660][ T6172] kvm [6172]: Failed to find VMA for hva 0x20c01000 [ 4829.810293][ T6282] kvm [6281]: Unsupported guest access at: eeef0000 [ 4829.810293][ T6282] { Op0( 2), Op1( 4), CRn(15), CRm(11), Op2( 0), func_read }, [ 5124.625894][ T6488] kvm [6488]: Failed to find VMA for hva 0x20c01000 [ 5656.726787][ T6857] kvm [6857]: Failed to find VMA for hva 0x21016000 [ 5656.735250][ T6856] kvm [6856]: Failed to find VMA for hva 0x21016000 [ 6043.496689][ T7130] kvm [7130]: Failed to find VMA for hva 0x20c01000 [ 6121.657752][ T7179] kvm [7179]: Failed to find VMA for hva 0x20e8a000 [ 6779.142179][ T7264] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6780.859489][ T7264] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6782.495678][ T7264] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6783.880955][ T7264] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6803.900410][ T7264] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6804.166362][ T7264] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6804.348499][ T7264] bond0 (unregistering): Released all slaves [ 6806.585356][ T7264] hsr_slave_0: left promiscuous mode [ 6806.684995][ T7264] hsr_slave_1: left promiscuous mode [ 6807.333921][ T7264] veth1_macvtap: left promiscuous mode [ 6807.348051][ T7264] veth0_macvtap: left promiscuous mode [ 6807.366140][ T7264] veth1_vlan: left promiscuous mode [ 6807.388850][ T7264] veth0_vlan: left promiscuous mode [ 6891.336342][ T7655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6891.667989][ T7655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6924.150186][ T7655] hsr_slave_0: entered promiscuous mode [ 6924.219396][ T7655] hsr_slave_1: entered promiscuous mode [ 6947.590317][ T7655] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 6947.926020][ T7655] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 6948.280604][ T7655] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 6948.635378][ T7655] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 6978.709398][ T7655] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6999.917290][ T7828] kvm [7828]: Failed to find VMA for hva 0x20c01000 [ 7073.058717][ T7655] veth0_vlan: entered promiscuous mode [ 7074.068769][ T7655] veth1_vlan: entered promiscuous mode [ 7077.116605][ T7655] veth0_macvtap: entered promiscuous mode [ 7077.600274][ T7655] veth1_macvtap: entered promiscuous mode [ 7080.629006][ T7655] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7080.670997][ T7655] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7080.697065][ T7655] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7080.716652][ T7655] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7084.604812][ T25] audit: type=1400 audit(7083.620:104): avc: denied { mounton } for pid=7655 comm="syz-executor" path="/syzkaller.mxt88E/syz-tmp" dev="vda" ino=1879 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 7111.615273][ T3388] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7112.681484][ T3388] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7113.692126][ T3388] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7114.901599][ T3388] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7131.927170][ T3388] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7132.175160][ T3388] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7132.289201][ T3388] bond0 (unregistering): Released all slaves [ 7134.687153][ T3388] hsr_slave_0: left promiscuous mode [ 7134.799781][ T3388] hsr_slave_1: left promiscuous mode [ 7135.657396][ T3388] veth1_macvtap: left promiscuous mode [ 7135.679223][ T3388] veth0_macvtap: left promiscuous mode [ 7135.726176][ T3388] veth1_vlan: left promiscuous mode [ 7135.747982][ T3388] veth0_vlan: left promiscuous mode [ 7218.789957][ T7916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7219.247255][ T7916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7246.730316][ T7916] hsr_slave_0: entered promiscuous mode [ 7246.839880][ T7916] hsr_slave_1: entered promiscuous mode [ 7246.929347][ T7916] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 7246.975862][ T7916] Cannot create hsr debugfs directory [ 7273.146908][ T7916] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 7273.536483][ T7916] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 7273.928374][ T7916] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 7274.309716][ T7916] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 7298.397829][ T7916] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7397.041142][ T7916] veth0_vlan: entered promiscuous mode [ 7397.876753][ T7916] veth1_vlan: entered promiscuous mode [ 7400.353299][ T7916] veth0_macvtap: entered promiscuous mode [ 7400.755218][ T7916] veth1_macvtap: entered promiscuous mode [ 7402.710298][ T7916] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7402.744415][ T7916] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7402.763916][ T7916] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7402.771266][ T7916] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7587.167285][ T8267] kvm [8267]: Failed to find VMA for hva 0x21016000 [ 7638.910975][ T8301] kvm [8301]: Failed to find VMA for hva 0x20fcc000 [ 7981.571870][ T8536] kvm [8536]: Failed to find VMA for hva 0x20c01000 [ 7982.387472][ T8536] kvm [8536]: Failed to find VMA for hva 0x20c01000 [ 8489.568939][ T25] audit: type=1400 audit(8488.660:105): avc: denied { execute } for pid=8908 comm="syz.1.1465" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 8623.696915][ T25] audit: type=1400 audit(8622.740:106): avc: denied { execute } for pid=9001 comm="syz.0.1493" path=2F3132332FFF67521CD66F8F1F447D3570707CD24B7EEBB207 dev="tmpfs" ino=640 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 8911.240048][ T25] audit: type=1400 audit(8910.330:107): avc: denied { map } for pid=9199 comm="syz.0.1551" path="pipe:[80380]" dev="pipefs" ino=80380 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 8924.375889][ T9205] debugfs: File 'vgic-its-state@8080000' in directory '9205-4' already present! [ 9239.896271][ T9429] KVM: debugfs: duplicate directory 9429-5 [ 9274.888037][ T9457] KVM: debugfs: duplicate directory 9457-5 [ 9565.412019][ T9672] kvm [9672]: Failed to find VMA for hva 0x20c01000 [ 9622.234472][ T9716] kvm [9716]: Failed to find VMA for hva 0x20c01000 [10164.417093][T10116] kvm [10116]: Failed to find VMA for hva 0x20e97000 [10355.495495][T10265] ================================================================== [10355.496310][T10265] BUG: KASAN: invalid-access in _raw_spin_lock_irqsave+0x5c/0x7c [10355.498247][T10265] Read of size 1 at addr 00000000000013c8 by task syz.0.1842/10265 [10355.498643][T10265] [10355.499783][T10265] CPU: 0 UID: 0 PID: 10265 Comm: syz.0.1842 Not tainted 6.15.0-rc4-syzkaller-g514f3f81195a #0 PREEMPT [10355.500312][T10265] Hardware name: linux,dummy-virt (DT) [10355.500780][T10265] Call trace: [10355.501113][T10265] show_stack+0x2c/0x3c (C) [10355.501707][T10265] __dump_stack+0x30/0x40 [10355.501967][T10265] dump_stack_lvl+0xd8/0x12c [10355.502175][T10265] print_report+0x5c/0xa0 [10355.502437][T10265] kasan_report+0xb0/0x110 [10355.502732][T10265] __kasan_check_byte+0x3c/0x54 [10355.502980][T10265] lock_acquire+0xb0/0x2e0 [10355.503250][T10265] _raw_spin_lock_irqsave+0x5c/0x7c [10355.503594][T10265] kvm_vgic_set_owner+0x18c/0x294 [10355.503858][T10265] kvm_timer_enable+0x1c4/0x794 [10355.504076][T10265] kvm_arch_vcpu_run_pid_change+0x1f0/0x484 [10355.504294][T10265] kvm_vcpu_ioctl+0xae8/0xc24 [10355.504535][T10265] __arm64_sys_ioctl+0x18c/0x244 [10355.504760][T10265] invoke_syscall+0x90/0x2b4 [10355.505026][T10265] el0_svc_common+0x180/0x2f4 [10355.505282][T10265] do_el0_svc+0x58/0x74 [10355.505534][T10265] el0_svc+0x58/0x134 [10355.505837][T10265] el0t_64_sync_handler+0x78/0x108 [10355.506118][T10265] el0t_64_sync+0x198/0x19c [10355.506681][T10265] ================================================================== [10355.509015][T10265] Disabling lock debugging due to kernel taint [10355.510172][T10265] Unable to handle kernel paging request at virtual address ffef80000000013b [10355.510664][T10265] KASAN: maybe wild-memory-access in range [0xff000000000013b0-0xff000000000013bf] [10355.511024][T10265] Mem abort info: [10355.511246][T10265] ESR = 0x0000000096000004 [10355.511624][T10265] EC = 0x25: DABT (current EL), IL = 32 bits [10355.511941][T10265] SET = 0, FnV = 0 [10355.512195][T10265] EA = 0, S1PTW = 0 [10355.512451][T10265] FSC = 0x04: level 0 translation fault [10355.512794][T10265] Data abort info: [10355.513051][T10265] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [10355.513316][T10265] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [10355.513639][T10265] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [10355.514063][T10265] [ffef80000000013b] address between user and kernel address ranges [10355.514903][T10265] Internal error: Oops: 0000000096000004 [#1] SMP [10355.539836][T10265] Modules linked in: [10355.541849][T10265] CPU: 0 UID: 0 PID: 10265 Comm: syz.0.1842 Tainted: G B 6.15.0-rc4-syzkaller-g514f3f81195a #0 PREEMPT [10355.543618][T10265] Tainted: [B]=BAD_PAGE [10355.544403][T10265] Hardware name: linux,dummy-virt (DT) [10355.545515][T10265] pstate: 614020c9 (nZCv daIF +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [10355.546901][T10265] pc : do_raw_spin_lock+0x4c/0x2b4 [10355.547862][T10265] lr : _raw_spin_lock_irqsave+0x64/0x7c [10355.548950][T10265] sp : ffff80008e7a7930 [10355.549785][T10265] x29: ffff80008e7a7940 x28: 8cf000001d2a1d40 x27: 8cf000001d2a31b0 [10355.551692][T10265] x26: 0000000000000001 x25: 8cf000001d2a3390 x24: 0000000000000010 [10355.553267][T10265] x23: 5fff80008e649000 x22: 8cf000001d2a1d40 x21: ffff80008020b2b8 [10355.554865][T10265] x20: 00000000000013b0 x19: efff800000000000 x18: 0fff0000072d82ee [10355.556436][T10265] x17: 0000000000000078 x16: 00000000000000fe x15: 0000000000000000 [10355.558054][T10265] x14: 0000000000000000 x13: 00000000ffffffff x12: 0000000000000002 [10355.559743][T10265] x11: 0000000000000001 x10: 0ff000000000013b x9 : 0000000000000000 [10355.561442][T10265] x8 : 00000000000013b4 x7 : ffff8000870bb121 x6 : ffff800086592f3c [10355.562972][T10265] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000802b42dc [10355.564582][T10265] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000000013b0 [10355.566213][T10265] Call trace: [10355.567005][T10265] do_raw_spin_lock+0x4c/0x2b4 (P) [10355.568057][T10265] _raw_spin_lock_irqsave+0x64/0x7c [10355.569073][T10265] kvm_vgic_set_owner+0x18c/0x294 [10355.570109][T10265] kvm_timer_enable+0x1c4/0x794 [10355.571086][T10265] kvm_arch_vcpu_run_pid_change+0x1f0/0x484 [10355.572125][T10265] kvm_vcpu_ioctl+0xae8/0xc24 [10355.573091][T10265] __arm64_sys_ioctl+0x18c/0x244 [10355.574038][T10265] invoke_syscall+0x90/0x2b4 [10355.574975][T10265] el0_svc_common+0x180/0x2f4 [10355.575997][T10265] do_el0_svc+0x58/0x74 [10355.576937][T10265] el0_svc+0x58/0x134 [10355.577901][T10265] el0t_64_sync_handler+0x78/0x108 [10355.578991][T10265] el0t_64_sync+0x198/0x19c [10355.580434][T10265] Code: d344fd4a aa0003f4 f90007e9 d378fd09 (386a6a6a) [10355.582269][T10265] ---[ end trace 0000000000000000 ]--- [10355.584013][T10265] Kernel panic - not syncing: Oops: Fatal exception [10355.586225][T10265] Kernel Offset: disabled [10355.587142][T10265] CPU features: 0x0000,00000340,02fbcdf1,057ffe1f [10355.588334][T10265] Memory Limit: none [10355.589817][T10265] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:27:07 Registers: info registers vcpu 0 CPU#0 PC=ffff80008209d73c X00=0000000000000003 X01=0000000000000002 X02=000000000000007c X03=ffff80008209d530 X04=0000000000000001 X05=0000000000000000 X06=ffff800081e87f2c X07=ffff8000870bb121 X08=8aff80008c42b000 X09=0000000000000049 X10=0000000000000049 X11=00000000000000fe X12=0000000000000055 X13=0000000000000007 X14=0000000000000000 X15=0000000000000000 X16=00000000000000fe X17=0000000000000078 X18=0fff0000072d82ee X19=efff800000000000 X20=55f000000e049080 X21=8aff80008c42b018 X22=0000000000000002 X23=55f000000e04917a X24=0000000000000055 X25=0000000000000000 X26=8aff80008c42b000 X27=0000000000000055 X28=0000000000000055 X29=ffff80008e7a7090 X30=ffff80008209d730 SP=ffff80008e7a7080 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000001 Z01=0000000000000000:0000000000000000 Z02=0000aaaac80d30ae:0000aaaac80d2fc0 Z03=0000ffffe87156a0:0000ffffe8715408 Z04=0000000000000000:0000000000000000 Z05=0000ffffe8715360:0000000000000000 Z06=0000000000000000:0000000000000000 Z07=0000000000000000:0000000000000000 Z08=0000000000000000:000001f40000000a Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffe8715770:0000ffffe8715770 Z17=ffffff80ffffffd0:0000ffffe8715740 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000