last executing test programs: 45m8.854926228s ago: executing program 1 (id=27): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000080)) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x0) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000300)={0x0, 0x0}, &(0x7f00000001c0)=[@featur1={0x1, 0xc}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f00000002c0)={0x7, 0xbe}}) openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000080)) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x31) (async) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x0) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000300)={0x0, 0x0}, &(0x7f00000001c0)=[@featur1={0x1, 0xc}], 0x1) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f00000002c0)={0x7, 0xbe}}) (async) 45m8.462740352s ago: executing program 0 (id=28): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) (async) ioctl$KVM_ARM_VCPU_FINALIZE(r2, 0x4004aec2, &(0x7f0000000000)=0x4) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) (async, rerun: 32) r4 = eventfd2(0x0, 0x0) (rerun: 32) close(r4) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) 44m42.738856076s ago: executing program 0 (id=29): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x2, 0x9, 0x0, 0x80}}], 0x50}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000000000000000000002"]) ioctl$KVM_RUN(r3, 0xae80, 0x0) 44m41.922205729s ago: executing program 1 (id=30): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a00ed}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x100000, 0x100000}) 44m36.501986904s ago: executing program 1 (id=31): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, 0xfffffffffffffffe) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0x8600ff01, [0x2000000000a1b, 0x3, 0xa, 0x3, 0x9fa]}}, @irq_setup={0x46, 0x18, {0x2, 0x23d}}], 0x58}, 0x0, 0x0) syz_kvm_setup_cpu$arm64(r3, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, &(0x7f00000003c0)=[@mrs={0xbe, 0x18, {0x603000000013c03a}}, @eret={0xe6, 0x18, 0x7}, @hvc={0x32, 0x40, {0x200, [0x1, 0x1000, 0x0, 0x0, 0x8]}}, @code={0xa, 0x6c, {"008008d5000028d580b29ad200c0b8f2410080d2420080d2230080d2240180d2020000d4a0d68ad200a0b0f2410180d2c20180d2c30180d2c40080d2020000d4000028d5000008d500000033000008d5000028d5007008d5"}}, @svc={0x122, 0x40, {0xffff, [0x38388e52, 0x3, 0x1, 0x7, 0xea8]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x4, 0x25dc8d44, 0x1}}, @uexit={0x0, 0x18, 0x100000001}, @irq_setup={0x46, 0x18, {0x2, 0x25c}}, @irq_setup={0x46, 0x18, {0x0, 0x2dd}}, @msr={0x14, 0x20, {0x603000000013c2a3, 0x8}}, @svc={0x122, 0x40, {0x84000001, [0x0, 0x2, 0x8, 0x400, 0x2]}}, @eret={0xe6, 0x18, 0xb}], 0x20c}], 0x1, 0x0, &(0x7f0000000140)=[@featur2={0x1, 0xd5}], 0x1) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000380)=[{0x0, &(0x7f0000000200)=[@eret={0xe6, 0x18, 0x8}], 0x18}], 0x1, 0x0, 0x0, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) r6 = eventfd2(0xe18, 0x1800) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000300)={0x9, 0x0, 0x0, r6, 0x2}) ioctl$KVM_SET_SIGNAL_MASK(r5, 0x4004ae8b, &(0x7f0000000240)={0x89, "dbd6985ec553716d3a6acc49a35e69694716769447ddfada0cf36911101e104a7b6c21521bc1a9a7d256c99ac9cb8e4c1b9b883fc984f34aff88178ab31badf42414bdffd386dc8f9d14a1fe91fcb13b196b751b7023b66da870d2d8160746831021648fca4088bb9f4a5d47830b23fc11608f1ae8050382ee0ede425fb8ba923b06f7a717642e8ce7"}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) r8 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r11, 0x4018aee1, &(0x7f0000000340)=@attr_other={0x0, 0x2, 0x287, 0x0}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 44m35.082483345s ago: executing program 0 (id=32): ioctl$KVM_RESET_DIRTY_RINGS(0xffffffffffffffff, 0xaec7) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000340)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x0, 0x4, 0x1}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x4, 0x220) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x2, 0x5000, 0x1000, &(0x7f0000d3b000/0x1000)=nil}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) r11 = syz_kvm_vgic_v3_setup(r8, 0x4, 0x100) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x3, 0x5}) r12 = syz_kvm_vgic_v3_setup(r6, 0x2, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r12, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x4, &(0x7f00000000c0)=0x8}) 44m27.358763939s ago: executing program 1 (id=33): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c4f1, 0x8000}}, @msr={0x14, 0x20, {0x603000000013c4f2, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce0, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce1, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce2, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce3, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce4, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce5, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce9, 0x8000}}], 0x140}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r6 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r4, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r6, 0xffffffffffffffff) syz_kvm_assert_reg(r4, 0x603000000013c4f1, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013c4f2, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce0, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce1, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce2, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce3, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce4, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce5, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce8, 0x8000) syz_kvm_assert_reg(r4, 0x603000000013dce9, 0x8000) ioctl$KVM_CREATE_VM(r0, 0xc0189436, 0x20004000) 44m21.847382163s ago: executing program 0 (id=34): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r8 = ioctl$KVM_CREATE_VM(r7, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0x8004b706, 0x0) (async) syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async) r9 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f0000000200)=[@memwrite={0x6e, 0x30, @generic={0x1, 0xdfb, 0x9, 0x1}}], 0x30}, 0x0, 0x0) r12 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@eret={0xe6, 0x18, 0x7fff}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) (async) ioctl$KVM_RUN(r11, 0xae80, 0x0) 44m20.012853891s ago: executing program 1 (id=35): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x38) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x0, &(0x7f0000000080)=0x4}) 44m12.751370751s ago: executing program 1 (id=36): openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000040)=@arm64_fw={0x6030000000140000, &(0x7f0000000000)=0x10002}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x1fb}}, @code={0xa, 0x84, {"40fe97d20040b8f2e10180d2620180d2830080d2c40180d2020000d440978fd20080b8f2810180d2020080d2230080d2e40080d2020000d40008c05a0000c093000028d50000681e007008d5002592d20040b8f2410080d2620180d2a30180d2e40080d2020000d4007ca09b007008d5"}}, @msr={0x14, 0x20, {0x603000000013df7a, 0x2}}, @code={0xa, 0xb4, {"008008d50000629ec0d08fd20040b8f2610180d2e20180d2230180d2e40180d2020000d4000008d500f4a00e40198bd20080b8f2210180d2220080d2030180d2440180d2020000d4a09b97d20040b0f2c10080d2220080d2a30180d2a40180d2020000d40000406ca0888dd20020b0f2010180d2820080d2e30080d2640180d2020000d4a01082d20000b0f2810080d2c20180d2030180d2240080d2020000d4"}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x2e8}}, @uexit={0x0, 0x18, 0x1}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x3, 0xd, 0x1000, 0x2}}], 0x1e8}, &(0x7f0000000380)=[@featur2={0x1, 0xe2}], 0x1) r7 = openat$kvm(0x0, &(0x7f0000000100), 0x80402, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2c) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x105240, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0xa000, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r10, 0x8030aeb4, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x603000000013c00a, &(0x7f0000000140)=0x20000000009}) syz_kvm_setup_cpu$arm64(r1, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000100)=@arm64_fp={0x60400000001000a4, &(0x7f0000000140)=0xfffffffffffffffc}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x80040, 0x0) 44m12.465659144s ago: executing program 0 (id=37): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f0000000940)=@attr_other={0x0, 0xfff, 0x9ef, &(0x7f00000000c0)=0x7}) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r5, 0x4068aea3, &(0x7f0000000000)={0xe4, 0x0, 0x7}) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = ioctl$KVM_GET_STATS_FD_cpu(r7, 0xaece) close(r8) (async) ioctl$KVM_RESET_DIRTY_RINGS(r6, 0xaec7) 44m3.917117229s ago: executing program 0 (id=38): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x6) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x222081, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x5, 0x3, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x29) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r7 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000680)="38ce8347fc1e86008cfc72bb352c8659dcc9225b48cb5cb00c73b0b33018748e73f7f1f493e89c859e17625ad1b19ca88da9c227db3473a7fd4ce992bfc316bd22ccc646cd69c728", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x6832, 0xffffffffffffffff, 0x0) (async) r8 = eventfd2(0xfffffffa, 0x80001) write$eventfd(r8, &(0x7f0000000200)=0x8, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1fd, 0x0, 0xdddd1000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) 43m26.432764248s ago: executing program 32 (id=36): openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x34) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000040)=@arm64_fw={0x6030000000140000, &(0x7f0000000000)=0x10002}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x1fb}}, @code={0xa, 0x84, {"40fe97d20040b8f2e10180d2620180d2830080d2c40180d2020000d440978fd20080b8f2810180d2020080d2230080d2e40080d2020000d40008c05a0000c093000028d50000681e007008d5002592d20040b8f2410080d2620180d2a30180d2e40080d2020000d4007ca09b007008d5"}}, @msr={0x14, 0x20, {0x603000000013df7a, 0x2}}, @code={0xa, 0xb4, {"008008d50000629ec0d08fd20040b8f2610180d2e20180d2230180d2e40180d2020000d4000008d500f4a00e40198bd20080b8f2210180d2220080d2030180d2440180d2020000d4a09b97d20040b0f2c10080d2220080d2a30180d2a40180d2020000d40000406ca0888dd20020b0f2010180d2820080d2e30080d2640180d2020000d4a01082d20000b0f2810080d2c20180d2030180d2240080d2020000d4"}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x2e8}}, @uexit={0x0, 0x18, 0x1}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x3, 0xd, 0x1000, 0x2}}], 0x1e8}, &(0x7f0000000380)=[@featur2={0x1, 0xe2}], 0x1) r7 = openat$kvm(0x0, &(0x7f0000000100), 0x80402, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2c) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0), 0x105240, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0xa000, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r10, 0x8030aeb4, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000001c0)=@arm64_sys={0x603000000013c00a, &(0x7f0000000140)=0x20000000009}) syz_kvm_setup_cpu$arm64(r1, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000100)=@arm64_fp={0x60400000001000a4, &(0x7f0000000140)=0xfffffffffffffffc}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x80040, 0x0) 43m16.852526763s ago: executing program 33 (id=38): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x6) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x222081, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x5, 0x3, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x29) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r7 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000680)="38ce8347fc1e86008cfc72bb352c8659dcc9225b48cb5cb00c73b0b33018748e73f7f1f493e89c859e17625ad1b19ca88da9c227db3473a7fd4ce992bfc316bd22ccc646cd69c728", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x100000c, 0x6832, 0xffffffffffffffff, 0x0) (async) r8 = eventfd2(0xfffffffa, 0x80001) write$eventfd(r8, &(0x7f0000000200)=0x8, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1fd, 0x0, 0xdddd1000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) 36m1.567564298s ago: executing program 3 (id=58): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x8521, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x2, 0xdddd1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}, @msr={0x14, 0x20, {0x603000000013dcf3, 0x8000}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r6 = mmap$KVM_VCPU(&(0x7f0000cd1000/0x4000)=nil, 0x0, 0xc, 0x13, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000080)="c063b2489245798581fa3f21d1c14b2b4ad2b66348c944e35b260a97e0a71adfd89dc462743ed6fc4dbd7dbe0fb2897b50b1af1dbb2fb4fcb7fc3c1e36ef4b8833751022e1259f88", 0x0, 0x48) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r5, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000002000/0x400000)=nil) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r8, r5, &(0x7f0000236000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000380)=[@msr={0x14, 0x20, {0x603000000013df6f}}, @hvc={0x32, 0x40, {0x2, [0x10001, 0x9, 0xfffffffffffffffd, 0x9, 0x5]}}, @svc={0x122, 0x40, {0x84000051, [0xffffffff, 0x2, 0x0, 0xe, 0x1]}}, @eret={0xe6, 0x18, 0xb6}, @irq_setup={0x46, 0x18, {0x0, 0x157}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x329}}, @msr={0x14, 0x20, {0x603000000013df76, 0x7a7}}, @svc={0x122, 0x40, {0x200, [0x6, 0x800, 0x5, 0x80000000, 0x8]}}, @hvc={0x32, 0x40, {0x30000000, [0x3, 0x639e, 0x9b6, 0x8, 0x10]}}, @mrs={0xbe, 0x18, {0x6030000000131a02}}, @eret={0xe6, 0x18, 0xb}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x243}}, @uexit={0x0, 0x18, 0x800}, @msr={0x14, 0x20, {0x603000000013de87, 0x5}}, @code={0xa, 0x84, {"0030206e00d4a07e007008d51f00006a002c004e603c81d20000b0f2610180d2c20180d2e30180d2840180d2020000d4808896d20000b0f2210180d2e20180d2a30180d2440080d2020000d400a0600d007008d500fa8ed20080b0f2a10180d2220080d2c30180d2840080d2020000d4"}}, @code={0xa, 0x84, {"80019bd200e0b0f2c10180d2820180d2430080d2240180d2020000d4e06e84d200c0b0f2210080d2220180d2030080d2040180d2020000d40000206b0040611e00d8a15e007008d5000028d5000040a8007008d5e09e9ed20060b8f2610180d2620080d2c30180d2440180d2020000d4"}}, @code={0xa, 0x84, {"007008d5a08596d200a0b0f2c10180d2020080d2e30080d2240180d2020000d4006c85d200a0b0f2010180d2620180d2c30080d2a40080d2020000d40000009b005282d20020b0f2e10180d2220180d2430080d2840080d2020000d4007008d5000028d500a0e00d007008d50090802f"}}, @hvc={0x32, 0x40, {0x84000050, [0x2, 0xb, 0x38, 0xa, 0x1]}}, @code={0xa, 0x6c, {"80439cd20080b8f2610180d2020080d2630080d2440080d2020000d4007008d5e01f96d20040b0f2a10180d2a20080d2c30080d2e40080d2020000d4007008d5000040b8000008d50000009c007008d5000040d3000008d5"}}, @svc={0x122, 0x40, {0xc4000010, [0x9, 0x9, 0x6, 0x2, 0x4]}}, @msr={0x14, 0x20, {0x603000000013deaa, 0xd}}, @hvc={0x32, 0x40, {0xc5000020, [0x100, 0xf, 0x7fffffffffffffff, 0x9, 0xffffffffffffffd1]}}, @eret={0xe6, 0x18, 0x1}, @hvc={0x32, 0x40, {0x84000052, [0xafe3, 0x101, 0x4, 0x55, 0x4]}}, @hvc={0x32, 0x40, {0x1000, [0x6, 0x5079, 0x8df, 0x190]}}, @irq_setup={0x46, 0x18, {0x2, 0x3b2}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x4}}, @svc={0x122, 0x40, {0x84000052, [0x7, 0x3, 0x7, 0x4, 0xb34]}}, @code={0xa, 0x84, {"007008d5000008d5007008d5000008d500da8fd20040b0f2810180d2820080d2230080d2840080d2020000d4007008d500d59fd20080b0f2c10180d2a20080d2830180d2e40080d2020000d4007008d500a8a10e20cc9bd20000b0f2810080d2620080d2430180d2440080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x4, 0x197}}, @hvc={0x32, 0x40, {0x3000000, [0x4, 0x1, 0x6, 0x10, 0x8000000000000000]}}], 0x6f4}], 0x1, 0x0, &(0x7f0000000200)=[@featur2={0x1, 0x4}], 0x1) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r9, 0x4018aee3, &(0x7f00000000c0)=@attr_other={0x0, 0x8, 0x4, 0x0}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 35m46.247764033s ago: executing program 3 (id=60): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x10000000000002c) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000200)=0x8000000}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f00000008c0)={0x1000, 0x1000}) close(r5) 35m34.104427304s ago: executing program 3 (id=61): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000000)={0x0, &(0x7f00000002c0)=[@uexit={0x0, 0x18, 0x2}, @smc={0x1e, 0x40, {0x3f000000, [0x10000, 0x0, 0xffffffffffffff00, 0x2, 0xf]}}, @eret={0xe6, 0x18, 0xaf8}, @memwrite={0x6e, 0x30, @generic={0x6000, 0x312, 0x9, 0xa}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x0, 0x2, 0x7, 0xb4, 0x4}}, @eret={0xe6, 0x18, 0x7fff}, @irq_setup={0x46, 0x18, {0x4, 0x303}}, @smc={0x1e, 0x40, {0xc4000012, [0x7, 0xaac, 0xdc93, 0x3, 0xf64e]}}, @memwrite={0x6e, 0x30, @generic={0x3000, 0xc1c, 0x3, 0x9}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x100, 0x7, 0x0, 0xffffffffffffffe1]}}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x6030000000130203, 0x994d}}, @code={0xa, 0x84, {"000028d5a0359bd20040b0f2610180d2a20180d2430080d2c40080d2020000d40000200d00b88fd20020b0f2210080d2620180d2a30180d2440080d2020000d4000000da007008d5003c200e407897d200a0b8f2a10080d2420180d2e30080d2240180d2020000d4007008d5000008d5"}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x375}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x10f}}, @msr={0x14, 0x20, {0x603000000013df49, 0x1ffe000000000}}, @svc={0x122, 0x40, {0x2, [0x5, 0x7, 0x6, 0xf, 0x10001]}}, @uexit={0x0, 0x18, 0x3}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x0, 0x7, 0x240, 0x6}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x0, 0x3, 0xc9, 0x1, 0x3}}], 0x37c}, &(0x7f0000000040), 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000280)={0x1fd, 0x1, 0x4, 0x2000, &(0x7f0000000000/0x2000)=nil}) 35m22.464361961s ago: executing program 3 (id=63): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="46000000000000001800000000000000fdffffff3902000046ccab7f7ab8de01ec6c63b1d7d1a5e21f2b8afdf88b4f0a94c3215d2514a5184abe3785653064c9c6c20c560a21d909eaff26f962295b7da5c1fcc6bfdebf01821aea8b6cb72c"], 0x18}], 0x1, 0x0, 0x0, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r4 = syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_other={0x0, 0x4, 0x3, 0x0}) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x0, 0x1800002, 0x28132, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0xf353a7610fea5a0, 0x30, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) 35m6.666976344s ago: executing program 3 (id=65): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x4, 0x2, &(0x7f0000000140)=0x68}) r6 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x100000c, 0x4d832, 0xffffffffffffffff, 0x0) 34m49.371231768s ago: executing program 3 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@arm64_core={0x6030000000100038, &(0x7f0000000140)=0x7}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f00000002c0)=[@its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x1, 0xb, 0x7, 0x6, 0x3}}, @svc={0x122, 0x40, {0x84000001, [0x101, 0xa, 0x0, 0x5, 0x3]}}, @svc={0x122, 0x40, {0x80000000, [0x2, 0x8000, 0x9, 0xfffffffffffffffa, 0x3]}}, @msr={0x14, 0x20, {0x603000000013df52, 0xfffffffffffff262}}, @msr={0x14, 0x20, {0x603000000013c299, 0xf}}, @svc={0x122, 0x40, {0x200, [0xfffffffffffffff7, 0x7, 0x2, 0x7, 0x9]}}, @smc={0x1e, 0x40, {0x8000, [0x9, 0x5, 0xfffffffffffff0f0, 0x4, 0x1]}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x18d}}, @uexit={0x0, 0x18, 0x1}, @smc={0x1e, 0x40, {0x84000008, [0x2, 0x8, 0x8001, 0x1c6e, 0x7]}}, @mrs={0xbe, 0x18, {0x603000000013e6de}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x33d}}, @uexit={0x0, 0x18, 0x5}, @hvc={0x32, 0x40, {0x8400000b, [0x8000, 0x1760, 0x5, 0x0, 0x8001]}}, @code={0xa, 0x84, {"008008d5008008d5a0d381d200e0b8f2410080d2220180d2c30180d2640080d2020000d4007008d500a4002f60b486d20000b8f2010180d2420180d2030180d2c40180d2020000d400f8b02e608e92d200a0b0f2010180d2420180d2c30180d2840080d2020000d40000003d007008d5"}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x16a}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x27b}}, @irq_setup={0x46, 0x18, {0x1, 0x244}}], 0x36c}, &(0x7f0000000100)=[@featur2={0x1, 0x72}], 0x1) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) r9 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000280)=0x5}) r10 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) write$eventfd(0xffffffffffffffff, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0x3, 0xa0) 34m1.489826759s ago: executing program 34 (id=67): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@arm64_core={0x6030000000100038, &(0x7f0000000140)=0x7}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f00000002c0)=[@its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x1, 0xb, 0x7, 0x6, 0x3}}, @svc={0x122, 0x40, {0x84000001, [0x101, 0xa, 0x0, 0x5, 0x3]}}, @svc={0x122, 0x40, {0x80000000, [0x2, 0x8000, 0x9, 0xfffffffffffffffa, 0x3]}}, @msr={0x14, 0x20, {0x603000000013df52, 0xfffffffffffff262}}, @msr={0x14, 0x20, {0x603000000013c299, 0xf}}, @svc={0x122, 0x40, {0x200, [0xfffffffffffffff7, 0x7, 0x2, 0x7, 0x9]}}, @smc={0x1e, 0x40, {0x8000, [0x9, 0x5, 0xfffffffffffff0f0, 0x4, 0x1]}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x18d}}, @uexit={0x0, 0x18, 0x1}, @smc={0x1e, 0x40, {0x84000008, [0x2, 0x8, 0x8001, 0x1c6e, 0x7]}}, @mrs={0xbe, 0x18, {0x603000000013e6de}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x33d}}, @uexit={0x0, 0x18, 0x5}, @hvc={0x32, 0x40, {0x8400000b, [0x8000, 0x1760, 0x5, 0x0, 0x8001]}}, @code={0xa, 0x84, {"008008d5008008d5a0d381d200e0b8f2410080d2220180d2c30180d2640080d2020000d4007008d500a4002f60b486d20000b8f2010180d2420180d2030180d2c40180d2020000d400f8b02e608e92d200a0b0f2010180d2420180d2c30180d2840080d2020000d40000003d007008d5"}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0x16a}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x27b}}, @irq_setup={0x46, 0x18, {0x1, 0x244}}], 0x36c}, &(0x7f0000000100)=[@featur2={0x1, 0x72}], 0x1) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) r9 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000280)=0x5}) r10 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) write$eventfd(0xffffffffffffffff, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0x3, 0xa0) 32m32.950594777s ago: executing program 2 (id=76): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x3, 0x3a0) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80180, 0x0) ioctl$KVM_CHECK_EXTENSION(r4, 0x5450, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x200000000000001}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x9}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 32m21.125859363s ago: executing program 2 (id=77): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x222120, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000001c0)={0x7, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000b00)=@attr_other={0x0, 0x0, 0x2, 0x0}) (async) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x1000, 0x0) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3b) (async, rerun: 64) r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r2, 0xc040aed4, &(0x7f0000000200)={0x8000, 0x2}) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION2(r6, 0x40a0ae49, &(0x7f0000000240)={0x10000, 0x4, 0x10000, 0x1000, &(0x7f000035f000/0x1000)=nil, 0x4, r7}) (async) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r9, 0xae03, 0xa8) (async) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) (async, rerun: 32) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (rerun: 32) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r12, 0x0) (async) syz_kvm_setup_cpu$arm64(r11, r12, &(0x7f0000009000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r12, 0xae80, 0x0) (async, rerun: 64) r13 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (rerun: 64) syz_kvm_vgic_v3_setup(r4, 0x4, 0x0) (async) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x200200, 0x0) ioctl$KVM_GET_API_VERSION(r14, 0xae00, 0x0) (async) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000340)={0x6, 0xeeee8000, 0x7, 0xffffffffffffffff, 0x3}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000040)=0xe7}) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000080)=0xe7}) 32m9.7591957s ago: executing program 2 (id=78): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x1, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x30b080, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x27) r5 = syz_kvm_vgic_v3_setup(r4, 0x40000000000004, 0xc0) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x9, &(0x7f0000000000)=0x7}) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0xa) r7 = syz_kvm_vgic_v3_setup(r6, 0x0, 0x100) ioctl$KVM_GET_DEVICE_ATTR(r7, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x2, 0x0}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r9, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x30, 0xffffffffffffffff, 0x0) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, r11, 0x0, 0x40032, 0xffffffffffffffff, 0x0) 31m56.619455705s ago: executing program 2 (id=79): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) munmap(&(0x7f0000f0d000/0x1000)=nil, 0x1000) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013808c, &(0x7f00000001c0)}) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r5, 0x2000008, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) munmap(&(0x7f0000f0d000/0x1000)=nil, 0x1000) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013808c, &(0x7f00000001c0)}) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r5, 0x2000008, 0x16831, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) (async) 31m46.999840414s ago: executing program 2 (id=80): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000c6a000/0x3000)=nil, 0x930, 0x1000003, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000380)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x66) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f0000000000)) openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c6a000/0x3000)=nil, 0x930, 0x1000003, 0x28031, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000380)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) (async) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x66) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) (async) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f0000000000)) (async) 31m37.58672534s ago: executing program 2 (id=81): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r4, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x4) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x200003c) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bfd000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000d58000/0x3000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x23) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, r4, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000180), 0xa0080, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_vgic_v3_setup(r13, 0x2, 0x100) close(r13) close(r14) ioctl$KVM_SET_REGS(r4, 0x4360ae82, &(0x7f0000000180)={[0x80, 0x9, 0x5, 0x4, 0x7, 0x9, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x8aba, 0x1, 0x1, 0x5, 0x7, 0x5], 0x3000, 0x4000}) 30m48.61943725s ago: executing program 35 (id=81): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r4, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x4) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x200003c) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000bfd000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000d58000/0x3000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40400, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x23) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, r4, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000180), 0xa0080, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_vgic_v3_setup(r13, 0x2, 0x100) close(r13) close(r14) ioctl$KVM_SET_REGS(r4, 0x4360ae82, &(0x7f0000000180)={[0x80, 0x9, 0x5, 0x4, 0x7, 0x9, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x8aba, 0x1, 0x1, 0x5, 0x7, 0x5], 0x3000, 0x4000}) 25m12.889131012s ago: executing program 4 (id=89): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000080)={0xc0, 0x0, 0x3000}) (async) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000080)={0xc0, 0x0, 0x3000}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) 25m1.400798909s ago: executing program 4 (id=90): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000040)={0x7, 0xffffffffffffffff, 0x1}) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x7, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x7, 0x5, 0x0}) (async) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x7, 0x5, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0xffffffffffffffce, &(0x7f00000000c0)=0x7}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4001, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x9, 0x0, 0x80, 0xfffffffc}}], 0x50}, 0x0, 0x0) (async) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4001, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0x9, 0x0, 0x80, 0xfffffffc}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0x2, 0x0, 0x2bd0, 0x0, 0xd}) (async) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0x2, 0x0, 0x2bd0, 0x0, 0xd}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) (async) r10 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xd) ioctl$KVM_CAP_ARM_USER_IRQ(r10, 0x4068aea3, &(0x7f0000000240)) 24m40.309624822s ago: executing program 4 (id=91): munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x20010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x4019032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) 24m29.020106778s ago: executing program 4 (id=92): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x4000, 0x13000, 0x1}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000380)={0x2, 0x25000, 0x1}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000003c0)={0x4, 0xa7e9ea20e9018807, 0x1}) r3 = eventfd2(0x101, 0x800) write$eventfd(r3, &(0x7f0000000080)=0xfffffffffffffff7, 0x8) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@eret={0xe6, 0x18, 0x80000001}, @msr={0x14, 0x20, {0x603000000013df5e, 0x2}}], 0x38}, &(0x7f0000000280)=[@featur1={0x1, 0x20}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) r7 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x2132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000240)={0x4, 0x9, 0x1}}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 24m22.927252302s ago: executing program 5 (id=82): mmap$KVM_VCPU(&(0x7f0000c81000/0x2000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, &(0x7f0000000240)=@arm64_extra={0x603000000013c027, &(0x7f0000000200)=0x10001}) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000f06000/0x4000)=nil, 0x4000) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) (rerun: 64) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xd7) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) (async, rerun: 32) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async, rerun: 32) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@eret={0xe6, 0x18, 0x7}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x58, 0x8, 0x3}}, @msr={0x14, 0x20, {0x603000000013c111, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c4cc}}, @eret={0xe6, 0x18, 0x9}, @msr={0x14, 0x20, {0x6030000000130204, 0x9}}, @msr={0x14, 0x20, {0x60300000001390ab, 0xbd1}}, @irq_setup={0x46, 0x18, {0x3, 0x39a}}, @eret={0xe6, 0x18, 0x5d71}, @svc={0x122, 0x40, {0x80000002, [0x7, 0x9df, 0xfffffffffffffff9, 0xe7, 0x789]}}, @irq_setup={0x46, 0x18, {0x4, 0x2cf}}], 0x160}, &(0x7f00000001c0)=[@featur2={0x1, 0x50}], 0x1) mmap$KVM_VCPU(&(0x7f0000e8a000/0x4000)=nil, r1, 0x2000000, 0x4000010, r2, 0x0) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) 24m9.711542861s ago: executing program 4 (id=93): openat$kvm(0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x4b47, 0xfffffffffffffffe) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r4, 0x2, 0x12, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000002c0)="fb016bddfb405ee52cc6a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb2070000000000000000000000c20cecfa0a97ab7800", 0x0, 0x48) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000340)=[@svc={0x122, 0x40, {0x3000000, [0x9, 0x5, 0x0, 0x7fffffffffffffff, 0x4]}}, @svc={0x122, 0x40, {0x8400000a, [0xffff, 0x1600, 0x0, 0x8, 0x263]}}, @eret={0xe6, 0x18, 0x8}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x303}}, @code={0xa, 0x9c, {"006099d200c0b8f2010180d2420080d2430080d2840180d2020000d400ef83d200e0b0f2c10080d2020080d2030180d2640180d2020000d4007008d5000008d5e02691d20060b8f2210180d2620180d2630080d2a40080d2020000d4a0198dd200c0b8f2610180d2e20180d2430180d2840080d2020000d4000008d500a8310e0004801a007008d5"}}, @uexit={0x0, 0x18, 0x3}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x80, 0x2, 0x2}}, @msr={0x14, 0x20, {0x603000000013e66a, 0x9}}, @svc={0x122, 0x40, {0xc5000021, [0x7ff, 0x7, 0x9, 0x8000000000000000, 0x7f]}}, @mrs={0xbe, 0x18, {0x603000000013c102}}, @svc={0x122, 0x40, {0xc4000004, [0x0, 0x9, 0x0, 0xd, 0xfffffffffffffff8]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x59}}, @uexit={0x0, 0x18, 0xe01}, @msr={0x14, 0x20, {0x5f12, 0x7f}}, @irq_setup={0x46, 0x18, {0x2, 0x103}}, @svc={0x122, 0x40, {0x80008000, [0xac3, 0x4, 0x27, 0x7, 0x8]}}, @eret={0xe6, 0x18, 0x5}, @eret={0xe6, 0x18, 0xa}, @eret={0xe6, 0x18, 0xdf77}, @mrs={0xbe, 0x18, {0x603000000013c01a}}, @svc={0x122, 0x40, {0x8400000e, [0x2, 0x1ff, 0xff, 0xfffffffffffffffa]}}, @code={0xa, 0x9c, {"000080f20048214e40ca9dd20040b8f2e10180d2c20080d2a30180d2040080d2020000d4203c8ad200c0b0f2210080d2c20080d2630180d2840180d2020000d4000008d560848bd20000b8f2010080d2a20180d2630180d2440180d2020000d400f4000f007008d5003780d20080b8f2e10080d2c20180d2230080d2040180d2020000d40028000e"}}, @smc={0x1e, 0x40, {0xc400000d, [0xa2, 0x50ebf033, 0x401, 0x2, 0x4]}}, @mrs={0xbe, 0x18, {0x603000000013df6f}}], 0x4a8}], 0x1, 0x0, &(0x7f0000000040)=[@featur2={0x1, 0x3b}], 0x1) r6 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 24m8.849224353s ago: executing program 5 (id=94): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x1, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x4, &(0x7f0000000040)=0x1}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x1000, 0x1000, &(0x7f0000f1c000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x1}) (async) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x4, &(0x7f0000000040)=0x1}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x1000, 0x1000, &(0x7f0000f1c000/0x1000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) (async) 23m55.999379112s ago: executing program 4 (id=95): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x7}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_irq_timer={0x0, 0x1, 0x1, 0x0}) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000002c0)={0x0, &(0x7f0000000380)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x8, 0x1000, 0x9}}], 0x30}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0x5) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r12, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000200)={0x10003, 0x1, 0x80a0000, 0x2000, &(0x7f0000e44000/0x2000)=nil}) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@smc={0x1e, 0x40, {0xc5000020, [0x0, 0x1, 0x2, 0x3, 0x4]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) r15 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000080)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r15, 0xae80, 0x0) 23m21.89675172s ago: executing program 36 (id=94): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x1, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x4, &(0x7f0000000040)=0x1}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x1000, 0x1000, &(0x7f0000f1c000/0x1000)=nil}) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x1}) (async) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x4, &(0x7f0000000040)=0x1}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x1000, 0x1000, &(0x7f0000f1c000/0x1000)=nil}) (async) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) (async) 23m5.674165636s ago: executing program 37 (id=95): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0x7}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_irq_timer={0x0, 0x1, 0x1, 0x0}) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000002c0)={0x0, &(0x7f0000000380)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x8, 0x1000, 0x9}}], 0x30}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0x5) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r12, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000200)={0x10003, 0x1, 0x80a0000, 0x2000, &(0x7f0000e44000/0x2000)=nil}) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@smc={0x1e, 0x40, {0xc5000020, [0x0, 0x1, 0x2, 0x3, 0x4]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r14, 0xae80, 0x0) r15 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000080)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r15, 0xae80, 0x0) 15m52.531756455s ago: executing program 6 (id=96): openat$kvm(0x0, &(0x7f0000000040), 0x100, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x181400, 0x0) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x181400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3c) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x15) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x15) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0x80086601, 0x20000000) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async) r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r2, 0x2, 0x220) (async) syz_kvm_vgic_v3_setup(r2, 0x2, 0x220) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0xb, 0xffffffffffffffff, 0x1}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xb8000, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x40086602, 0x2f) r8 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000000c0)="d5f5f543d3681d26b4d9f0ffffffff7b41445c085486580143226c0ead9a1620ba24f023314cc4bf610d6a743ad4913923b8364e5f73ea2fc43ac1abfc00", 0x0, 0xffffffffffffff32) syz_memcpy_off$KVM_EXIT_MMIO(r8, 0x20, 0x0, 0x0, 0x0) (async) syz_memcpy_off$KVM_EXIT_MMIO(r8, 0x20, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x2, [0x5, 0x1, 0x0, 0x5, 0x8b]}}, @hvc={0x32, 0x40, {0x40000000, [0x2, 0x9, 0x6, 0x0, 0x2]}}, @mrs={0xbe, 0x18, {0x2426}}, @uexit={0x0, 0x18, 0x100000001}, @uexit={0x0, 0x18, 0x4}, @uexit={0x0, 0x18, 0x33d}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x4, 0x1, 0x6a, 0x7fa697ca, 0x3}}], 0x108}, &(0x7f0000000340)=[@featur1={0x1, 0x1}], 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r10, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) (async) r11 = mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r10, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000000c0)="e65bf643e6e1a3ffc871fcc8064f26b4d9f94b6f1ccd7b41443d2b5486580143226c0ead9a1620b6709fafba2af023314cc4bf610d6a743ad4913910b8364e5f73ea2fc43ac1ebfc", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x541b, 0x0) ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) 15m32.82963463s ago: executing program 6 (id=98): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r1, 0x2, 0x20) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x6, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, 0xffffffffffffffff) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) 15m28.116901827s ago: executing program 7 (id=97): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r3, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_GET_REG_LIST(r8, 0xc008aeb0, &(0x7f0000000000)) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000080)=@arm64_core={0x603000000010000c, &(0x7f0000000000)=0x690}) 15m10.15860191s ago: executing program 6 (id=99): openat$kvm(0x0, &(0x7f0000000140), 0x40480, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000140), 0x40480, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000400)=[@hvc={0x32, 0x40, {0x84000053, [0x8, 0x8, 0x1, 0x8, 0x100]}}], 0x40}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000400)=[@hvc={0x32, 0x40, {0x84000053, [0x8, 0x8, 0x1, 0x8, 0x100]}}], 0x40}, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r5, 0x40a0ae49, 0x0) r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000003c0)=[@hvc={0x32, 0x40, {0x86000001, [0xc, 0x5, 0x2, 0xfffffffffffffffc, 0x52]}}], 0xffffffb5}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x3a7, 0x4, &(0x7f0000000040)=0x100000000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) 14m39.787533029s ago: executing program 38 (id=97): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r3, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_GET_REG_LIST(r8, 0xc008aeb0, &(0x7f0000000000)) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000080)=@arm64_core={0x603000000010000c, &(0x7f0000000000)=0x690}) 14m20.687373679s ago: executing program 39 (id=99): openat$kvm(0x0, &(0x7f0000000140), 0x40480, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000140), 0x40480, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000400)=[@hvc={0x32, 0x40, {0x84000053, [0x8, 0x8, 0x1, 0x8, 0x100]}}], 0x40}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000400)=[@hvc={0x32, 0x40, {0x84000053, [0x8, 0x8, 0x1, 0x8, 0x100]}}], 0x40}, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION2(r5, 0x40a0ae49, 0x0) r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000003c0)=[@hvc={0x32, 0x40, {0x86000001, [0xc, 0x5, 0x2, 0xfffffffffffffffc, 0x52]}}], 0xffffffb5}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x3a7, 0x4, &(0x7f0000000040)=0x100000000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) 2m47.839321984s ago: executing program 9 (id=117): r0 = openat$kvm(0x0, &(0x7f0000000380), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xffffffffffffffff) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_REGS(r3, 0x8360ae81, &(0x7f0000000100)) r4 = ioctl$KVM_CREATE_VM(r2, 0xae03, 0xbb) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bff000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f00000003c0)=[@msr={0x14, 0x20, {0x603000000013c4f1, 0x8000}}, @msr={0x14, 0x20, {0x603000000013c4f2, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce0, 0x8000}}, @msr={0x14, 0x20, {0x603000000013803d, 0x8000}}, @msr={0x14, 0x20, {0x603000000013e005, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce3, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce4, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce5, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x90, 0x5, 0x2}}], 0x150}, &(0x7f0000000300)=[@featur1={0x1, 0x4d}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r9, 0x3, 0x11, r8, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r10, 0xffffffffffffffff) syz_kvm_assert_reg(r8, 0x603000000013c4f1, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013c4f2, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013dce0, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013dce1, 0x6) syz_kvm_assert_reg(r8, 0x603000000013dce2, 0x8000) syz_kvm_assert_reg(r8, 0x0, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013dce4, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013dce5, 0xfffffffffffffffd) syz_kvm_assert_reg(r8, 0x603000000013dce8, 0x8000) syz_kvm_assert_reg(r8, 0x603000000013dce9, 0x8000) r11 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000090000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x20, {0x603000000013e7fc, 0x7}}], 0x20}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, 0x0) 2m31.280324771s ago: executing program 8 (id=118): syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f00000002c0)=[@svc={0x122, 0x40, {0x8400000e, [0xfffffffffffffbff, 0x3, 0x6, 0xff, 0x87]}}, @svc={0x122, 0x40, {0x84000010, [0xfffffffffffff001, 0x200, 0x6, 0x1ff, 0x8000000000000001]}}, @uexit={0x0, 0x18, 0x1}, @smc={0x1e, 0x40, {0xc5000020, [0x8000000000000000, 0x9, 0x4, 0x0, 0xa5ea]}}, @eret={0xe6, 0x18, 0x3d}, @smc={0x1e, 0x40, {0x84000012, [0x7f, 0x8, 0x5, 0x1, 0x80000000]}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x1, 0xa, 0x5, 0x5, 0x2}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x100, 0xb4fd, 0x2}}, @svc={0x122, 0x40, {0x0, [0x7, 0x401, 0x5, 0x5c98, 0x20000000]}}, @msr={0x14, 0x20, {0x351, 0x2}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x23}}, @svc={0x122, 0x40, {0xc20080ae, [0xd, 0x9, 0xac, 0x9, 0xfffffffffffffffe]}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x308}}, @svc={0x122, 0x40, {0x84000003, [0xffffffffffffffff, 0x3, 0x13ef, 0x7d05, 0x8]}}, @mrs={0xbe, 0x18, {0x603000000013de92}}, @uexit={0x0, 0x18, 0x5}, @irq_setup={0x46, 0x18, {0x1, 0x18e}}, @code={0xa, 0xb4, {"008f90d20040b8f2c10080d2c20180d2830180d2a40080d2020000d40060005e002b95d20040b0f2a10080d2820080d2a30080d2a40180d2020000d4001784d20020b8f2410180d2820180d2c30080d2e40080d2020000d4e003002a008c200e80cb95d200c0b0f2a10180d2a20180d2c30080d2640180d2020000d4007008d500a4df0d003888d200a0b8f2810080d2620080d2e30180d2a40180d2020000d4"}}, @svc={0x122, 0x40, {0x84000007, [0x2, 0x1, 0x7, 0x4000000000000000, 0x8]}}, @smc={0x1e, 0x40, {0x0, [0xc79, 0x80, 0xe8, 0x0, 0x5]}}, @eret={0xe6, 0x18, 0xb}, @hvc={0x32, 0x40, {0x8400000b, [0x6, 0x9, 0x6, 0x48a, 0x1]}}], 0x48c}, &(0x7f0000000040)=[@featur1={0x1, 0x1e2ec196403140f7}], 0x1) r0 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000100)={0x0, &(0x7f0000000180)=[@uexit={0x0, 0x18, 0xb}, @code={0xa, 0x9c, {"205f93d20020b8f2e10180d2e20080d2e30080d2a40180d2020000d4007008d5007008d5007008d560b584d200a0b0f2410180d2a20180d2e30080d2640180d2020000d40050200e0004601e007008d580d58bd200a0b0f2a10180d2c20180d2230080d2a40180d2020000d4402689d200e0b8f2c10080d2a20080d2030180d2a40180d2020000d4"}}, @msr={0x14, 0x20, {0x603000000013c647, 0x10000}}, @eret={0xe6, 0x18, 0x81}, @irq_setup={0x46, 0x18, {0x0, 0x2ef}}, @smc={0x1e, 0x40, {0x0, [0x2, 0x8, 0x8000000000000000, 0x5, 0x80000001]}}, @hvc={0x32, 0x40, {0x3, [0x0, 0xc, 0x9, 0x1be4, 0x1]}}], 0x184}, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000000c0)={0x7, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000000000000000000001"]) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r5, 0xae03, 0x51) r6 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r8 = ioctl$KVM_CREATE_VM(r7, 0x894c, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r8, 0x8004b707, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x20) syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000a67000/0x400000)=nil) r11 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000000000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x6030000000100030, &(0x7f0000000040)=0x40}) ioctl$KVM_SET_SIGNAL_MASK(r12, 0x4004ae8b, &(0x7f0000000780)={0x5e, "391ccb610e61c4234148d8e06b1d9293d661e1c150c2f422b5e86db78f9e98b886bb4516f6516f787be2dd1d8c7f879bb9d6496b03830d748ce44924a39e2ed6a9805a5b42d0428deb0058421eb9f4c9ac563662ec610e6d3ab96b03947d"}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000100)="746abf250f7959c813e4adfb369b808022e69fe80cfadce4a1259e77bab54ac9749537b3d016bb7f745a6e22d2f9ff443f19467748a3fe02c239457600", 0x0, 0xfffffffffffffec5) 2m28.382206016s ago: executing program 9 (id=119): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610f3ff67521cd66f8f1f447d35b20700000000000000000000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r2, 0x4010aeab, &(0x7f0000000000)={0x1, 0x10000}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xb00f2, 0x0) 2m9.299669693s ago: executing program 9 (id=120): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING(r1, 0x4068aea3, &(0x7f0000000080)={0xc0, 0x0, 0x4000}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 2m3.271855687s ago: executing program 8 (id=121): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x101002, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x8000000, 0x104000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000100)={0x80a0000}) 1m51.529871564s ago: executing program 9 (id=122): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000005000/0x2000)=nil, r4, 0x1000000, 0x20010, r2, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f00000000c0)=@arm64_fw={0x6030000000140003, &(0x7f0000000000)=0x4}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0xa00f2, 0x408) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) 1m46.834318307s ago: executing program 8 (id=123): mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) (async) write$eventfd(0xffffffffffffffff, &(0x7f0000000200)=0x8, 0x8) (async) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000a, 0x53033, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) (async) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r1, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) (async) r2 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x40086602, 0x110e22ffff) (async) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x6, 0x8032, 0xffffffffffffffff, 0x0) r4 = eventfd2(0xfffffffa, 0x80001) write$eventfd(r4, &(0x7f0000000200)=0x8, 0x8) (async) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000000)="37d3116035d7513e9a000200018000", 0x0, 0x43) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x40086602, 0x20000000) ioctl$KVM_CHECK_EXTENSION(r3, 0x40086602, 0x110e227ffe) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x28) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) 1m31.359017594s ago: executing program 8 (id=124): write$eventfd(0xffffffffffffffff, &(0x7f0000000200)=0x8, 0x8) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000a, 0x53033, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x1e) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) 1m29.789364749s ago: executing program 9 (id=125): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000001c0)={0x7, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f0000000b00)=@attr_other={0x0, 0x0, 0x2, 0x0}) (async, rerun: 32) r5 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (rerun: 32) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df60, 0x2}}], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, &(0x7f0000000040)=[@mrs={0xbe, 0x18, {0x603000000013dce0}}], 0x18}, &(0x7f0000000000)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r10, 0xae80, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) (async) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1m13.293067498s ago: executing program 8 (id=126): openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000240)={0x0, &(0x7f00000000c0)=[@svc={0x122, 0x40, {0x0, [0xffffffff00000001, 0x0, 0x7, 0x10000, 0x8]}}, @msr={0x14, 0x20, {0x603000000013f518, 0x1}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x26b}}, @code={0xa, 0x84, {"402d87d200c0b0f2410180d2020180d2830180d2a40080d2020000d40020c01a00a4800d007008d5007008d5000008d5008008d5c0ca9cd200e0b0f2410180d2620180d2430080d2640080d2020000d400fc202e609e8cd20080b8f2210180d2020080d2c30080d2840080d2020000d4"}}, @uexit={0x0, 0x18, 0x4}, @hvc={0x32, 0x40, {0x10, [0x2, 0x5, 0x9, 0xfff, 0x2]}}], 0x164}, &(0x7f0000000280), 0x1) ioctl$KVM_ARM_VCPU_FINALIZE(r2, 0x4004aec2, &(0x7f00000002c0)=0x7) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x2}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000040)={0x40, 0x14000}) 1m6.968466044s ago: executing program 9 (id=127): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000000), 0x72483, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x14) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x84000002, [0x9, 0x80000001, 0x9, 0xa0, 0x8000]}}, @mrs={0xbe, 0x18, {0x603000000013c4cb}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x4, 0xd05, 0xe}}, @irq_setup={0x46, 0x18, {0x1, 0x2c6}}, @irq_setup={0x46, 0x18, {0x4, 0xb3}}], 0xb8}, &(0x7f00000000c0)=[@featur1={0x1, 0x41}], 0x1) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000580)=[{0x0, &(0x7f00000002c0)=[@irq_setup={0x46, 0x18, {0x4, 0x309}}, @svc={0x122, 0x40, {0x8400000a, [0x0, 0x6f1, 0x1ff, 0x5, 0x8]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x8, 0x5, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013df7e}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe4, 0x8, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e682}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x4, 0xef, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x3, 0xb, 0x8, 0xfff, 0x2}}, @eret={0xe6, 0x18, 0x3}, @msr={0x14, 0x20, {0x603000000013defd, 0x3}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x394}}, @code={0xa, 0x9c, {"000000c8a0369fd20020b8f2410080d2220080d2a30180d2a40180d2020000d4000008d5007008d540aa8fd20040b8f2a10080d2a20080d2030180d2e40080d2020000d40000002c00c8307e000008d560c29cd200c0b8f2810180d2c20080d2230180d2440080d2020000d480f88bd20040b8f2c10080d2820080d2c30180d2c40180d2020000d4"}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x21a}}, @eret={0xe6, 0x18, 0x75}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0xaf0, 0x2}}], 0x2a4}], 0x1, 0x0, &(0x7f00000005c0)=[@featur2={0x1, 0x61}], 0x1) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000100)={0x4}) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000be6000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x6030000000138047, 0x8000}}], 0x20}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x6) ioctl$KVM_RUN(r9, 0xae80, 0x0) 51.577693606s ago: executing program 8 (id=128): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@svc={0x122, 0x40, {0x84000014, [0x3, 0xfffffffffffffff0, 0x1, 0xfffffffffffffbaf, 0x1b]}}, @irq_setup={0x46, 0x18, {0x1, 0x10}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x80}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x6, 0x4, 0x0}) 18.650352069s ago: executing program 40 (id=127): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000000), 0x72483, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x14) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000200)=[@smc={0x1e, 0x40, {0x84000002, [0x9, 0x80000001, 0x9, 0xa0, 0x8000]}}, @mrs={0xbe, 0x18, {0x603000000013c4cb}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x4, 0xd05, 0xe}}, @irq_setup={0x46, 0x18, {0x1, 0x2c6}}, @irq_setup={0x46, 0x18, {0x4, 0xb3}}], 0xb8}, &(0x7f00000000c0)=[@featur1={0x1, 0x41}], 0x1) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000580)=[{0x0, &(0x7f00000002c0)=[@irq_setup={0x46, 0x18, {0x4, 0x309}}, @svc={0x122, 0x40, {0x8400000a, [0x0, 0x6f1, 0x1ff, 0x5, 0x8]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x8, 0x5, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013df7e}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe4, 0x8, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013e682}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x4, 0xef, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x3, 0xb, 0x8, 0xfff, 0x2}}, @eret={0xe6, 0x18, 0x3}, @msr={0x14, 0x20, {0x603000000013defd, 0x3}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x394}}, @code={0xa, 0x9c, {"000000c8a0369fd20020b8f2410080d2220080d2a30180d2a40180d2020000d4000008d5007008d540aa8fd20040b8f2a10080d2a20080d2030180d2e40080d2020000d40000002c00c8307e000008d560c29cd200c0b8f2810180d2c20080d2230180d2440080d2020000d480f88bd20040b8f2c10080d2820080d2c30180d2c40180d2020000d4"}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x21a}}, @eret={0xe6, 0x18, 0x75}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0xaf0, 0x2}}], 0x2a4}], 0x1, 0x0, &(0x7f00000005c0)=[@featur2={0x1, 0x61}], 0x1) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000100)={0x4}) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000be6000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x6030000000138047, 0x8000}}], 0x20}, 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x6) ioctl$KVM_RUN(r9, 0xae80, 0x0) 0s ago: executing program 41 (id=128): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@svc={0x122, 0x40, {0x84000014, [0x3, 0xfffffffffffffff0, 0x1, 0xfffffffffffffbaf, 0x1b]}}, @irq_setup={0x46, 0x18, {0x1, 0x10}}, @its_send_cmd={0xaa, 0x28, {0x3}}], 0x80}, 0x0, 0x0) r4 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x6, 0x4, 0x0}) kernel console output (not intermixed with test programs): [ 375.383556][ T3151] 8021q: adding VLAN 0 to HW filter on device bond0 [ 410.539510][ T3151] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:39469' (ED25519) to the list of known hosts. [ 581.662116][ T25] audit: type=1400 audit(580.890:61): avc: denied { name_bind } for pid=3301 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 583.981199][ T25] audit: type=1400 audit(583.200:62): avc: denied { execute } for pid=3302 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 584.025290][ T25] audit: type=1400 audit(583.260:63): avc: denied { execute_no_trans } for pid=3302 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 605.734750][ T25] audit: type=1400 audit(604.960:64): avc: denied { mounton } for pid=3302 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 605.768638][ T25] audit: type=1400 audit(605.000:65): avc: denied { mount } for pid=3302 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 605.853295][ T3302] cgroup: Unknown subsys name 'net' [ 605.903413][ T25] audit: type=1400 audit(605.140:66): avc: denied { unmount } for pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 606.313597][ T3302] cgroup: Unknown subsys name 'cpuset' [ 606.414557][ T3302] cgroup: Unknown subsys name 'rlimit' [ 607.347153][ T25] audit: type=1400 audit(606.580:67): avc: denied { setattr } for pid=3302 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 607.366143][ T25] audit: type=1400 audit(606.600:68): avc: denied { mounton } for pid=3302 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 607.396475][ T25] audit: type=1400 audit(606.620:69): avc: denied { mount } for pid=3302 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 608.557141][ T3305] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 608.576740][ T25] audit: type=1400 audit(607.810:70): avc: denied { relabelto } for pid=3305 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 608.629059][ T25] audit: type=1400 audit(607.840:71): avc: denied { write } for pid=3305 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 608.788500][ T25] audit: type=1400 audit(608.020:72): avc: denied { read } for pid=3302 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 608.808656][ T25] audit: type=1400 audit(608.040:73): avc: denied { open } for pid=3302 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 608.856526][ T3302] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 658.746628][ T25] audit: type=1400 audit(657.980:74): avc: denied { execmem } for pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 663.089115][ T25] audit: type=1400 audit(662.320:75): avc: denied { read } for pid=3308 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 663.123378][ T25] audit: type=1400 audit(662.340:76): avc: denied { open } for pid=3308 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 663.189315][ T25] audit: type=1400 audit(662.420:77): avc: denied { mounton } for pid=3308 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 663.458144][ T25] audit: type=1400 audit(662.690:78): avc: denied { module_request } for pid=3308 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 664.613201][ T25] audit: type=1400 audit(663.840:79): avc: denied { sys_module } for pid=3308 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 688.514046][ T3309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 688.885997][ T3309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 688.941626][ T3308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 689.139177][ T3308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 708.676724][ T3309] hsr_slave_0: entered promiscuous mode [ 708.723609][ T3309] hsr_slave_1: entered promiscuous mode [ 710.198813][ T3308] hsr_slave_0: entered promiscuous mode [ 710.247618][ T3308] hsr_slave_1: entered promiscuous mode [ 710.308212][ T3308] debugfs: 'hsr0' already exists in 'hsr' [ 710.332257][ T3308] Cannot create hsr debugfs directory [ 716.152198][ T25] audit: type=1400 audit(715.380:80): avc: denied { create } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 716.207210][ T25] audit: type=1400 audit(715.430:81): avc: denied { write } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 716.257283][ T25] audit: type=1400 audit(715.490:82): avc: denied { read } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 716.454399][ T3309] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 716.854877][ T3309] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 717.079683][ T3309] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 717.405851][ T3309] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 718.689281][ T3308] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 718.808315][ T3308] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 719.028356][ T3308] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 719.277348][ T3308] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 732.039879][ T3309] 8021q: adding VLAN 0 to HW filter on device bond0 [ 734.048100][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0 [ 789.371413][ T3309] veth0_vlan: entered promiscuous mode [ 789.926348][ T3309] veth1_vlan: entered promiscuous mode [ 791.404956][ T3308] veth0_vlan: entered promiscuous mode [ 792.164614][ T3309] veth0_macvtap: entered promiscuous mode [ 792.276002][ T3308] veth1_vlan: entered promiscuous mode [ 792.578362][ T3309] veth1_macvtap: entered promiscuous mode [ 794.567324][ T3308] veth0_macvtap: entered promiscuous mode [ 794.795158][ T2111] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.805379][ T2111] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.828057][ T2111] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 794.983522][ T2111] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.213476][ T3308] veth1_macvtap: entered promiscuous mode [ 797.489583][ T25] audit: type=1400 audit(796.720:83): avc: denied { mount } for pid=3309 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 797.792702][ T25] audit: type=1400 audit(797.020:84): avc: denied { mounton } for pid=3309 comm="syz-executor" path="/syzkaller.QAzKRk/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 798.007957][ T25] audit: type=1400 audit(797.240:85): avc: denied { mount } for pid=3309 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 798.156179][ T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.172138][ T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.186943][ T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.207405][ T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 798.512907][ T25] audit: type=1400 audit(797.740:86): avc: denied { mounton } for pid=3309 comm="syz-executor" path="/syzkaller.QAzKRk/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 798.647648][ T25] audit: type=1400 audit(797.880:87): avc: denied { mounton } for pid=3309 comm="syz-executor" path="/syzkaller.QAzKRk/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3755 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 799.256387][ T25] audit: type=1400 audit(798.480:88): avc: denied { unmount } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 799.563146][ T25] audit: type=1400 audit(798.790:89): avc: denied { mounton } for pid=3309 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 799.632937][ T25] audit: type=1400 audit(798.850:90): avc: denied { mount } for pid=3309 comm="syz-executor" name="/" dev="gadgetfs" ino=3768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 800.172169][ T25] audit: type=1400 audit(799.390:91): avc: denied { mount } for pid=3309 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 800.285541][ T25] audit: type=1400 audit(799.470:92): avc: denied { mounton } for pid=3309 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 801.149639][ T3309] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 809.832337][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 809.853420][ T25] audit: type=1400 audit(809.060:97): avc: denied { read } for pid=3464 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 809.942481][ T25] audit: type=1400 audit(809.160:98): avc: denied { open } for pid=3464 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 810.403381][ T25] audit: type=1400 audit(809.600:99): avc: denied { ioctl } for pid=3464 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 840.571512][ T25] audit: type=1400 audit(839.800:100): avc: denied { execute } for pid=3481 comm="syz.1.5" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4128 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 856.474344][ T25] audit: type=1400 audit(855.700:101): avc: denied { append } for pid=3493 comm="syz.1.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 893.252276][ T25] audit: type=1400 audit(892.480:102): avc: denied { write } for pid=3510 comm="syz.0.14" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 995.789314][ T3567] kvm [3567]: Failed to find VMA for hva 0x20c01000 [ 1124.953731][ T3591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1125.282516][ T3591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1136.435999][ T3598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1136.754814][ T3598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1152.889514][ T3591] hsr_slave_0: entered promiscuous mode [ 1152.957969][ T3591] hsr_slave_1: entered promiscuous mode [ 1153.043371][ T3591] debugfs: 'hsr0' already exists in 'hsr' [ 1153.051953][ T3591] Cannot create hsr debugfs directory [ 1162.533681][ T3598] hsr_slave_0: entered promiscuous mode [ 1162.635323][ T3598] hsr_slave_1: entered promiscuous mode [ 1162.742652][ T3598] debugfs: 'hsr0' already exists in 'hsr' [ 1162.747798][ T3598] Cannot create hsr debugfs directory [ 1167.757308][ T3591] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1168.392644][ T3591] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1169.081981][ T3591] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1170.051548][ T3591] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1180.648861][ T3598] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1181.069348][ T3598] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1181.574323][ T3598] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1181.969622][ T3598] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1188.677217][ T3674] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1190.079544][ T3674] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1191.428303][ T3674] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1193.115869][ T3674] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1210.076729][ T3674] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1210.198206][ T3674] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1210.342619][ T3674] bond0 (unregistering): Released all slaves [ 1212.584032][ T3674] hsr_slave_0: left promiscuous mode [ 1212.784195][ T3674] hsr_slave_1: left promiscuous mode [ 1213.301601][ T3674] veth1_macvtap: left promiscuous mode [ 1213.303655][ T3674] veth0_macvtap: left promiscuous mode [ 1213.316666][ T3674] veth1_vlan: left promiscuous mode [ 1213.326591][ T3674] veth0_vlan: left promiscuous mode [ 1231.679476][ T3674] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1232.696955][ T3674] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1233.807422][ T3674] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1234.484466][ T3591] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1234.928098][ T3674] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1238.035277][ T3598] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1254.584735][ T3674] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1254.747006][ T3674] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1254.894591][ T3674] bond0 (unregistering): Released all slaves [ 1258.364217][ T3674] hsr_slave_0: left promiscuous mode [ 1258.514067][ T3674] hsr_slave_1: left promiscuous mode [ 1259.336667][ T3674] veth1_macvtap: left promiscuous mode [ 1259.338104][ T3674] veth0_macvtap: left promiscuous mode [ 1259.347365][ T3674] veth1_vlan: left promiscuous mode [ 1259.379086][ T3674] veth0_vlan: left promiscuous mode [ 1350.727884][ T3598] veth0_vlan: entered promiscuous mode [ 1351.833023][ T3591] veth0_vlan: entered promiscuous mode [ 1351.904045][ T3598] veth1_vlan: entered promiscuous mode [ 1353.254348][ T3591] veth1_vlan: entered promiscuous mode [ 1355.667420][ T3598] veth0_macvtap: entered promiscuous mode [ 1356.764512][ T3598] veth1_macvtap: entered promiscuous mode [ 1357.104223][ T3591] veth0_macvtap: entered promiscuous mode [ 1357.713913][ T3591] veth1_macvtap: entered promiscuous mode [ 1360.876672][ T3218] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1360.883146][ T3218] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1360.902117][ T3218] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1360.919549][ T3675] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1361.423121][ T3359] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1361.427124][ T3359] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1361.442429][ T3359] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1361.481482][ T3362] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1468.276249][ T3853] kvm [3853]: Failed to find VMA for hva 0x21016000 [ 1645.579752][ T3919] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1647.466786][ T3919] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1649.997298][ T3919] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1651.782847][ T3919] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1678.354023][ T3919] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1678.703993][ T3919] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1679.003810][ T3919] bond0 (unregistering): Released all slaves [ 1681.894879][ T3919] hsr_slave_0: left promiscuous mode [ 1682.062503][ T3919] hsr_slave_1: left promiscuous mode [ 1682.869226][ T3919] veth1_macvtap: left promiscuous mode [ 1682.887645][ T3919] veth0_macvtap: left promiscuous mode [ 1682.906071][ T3919] veth1_vlan: left promiscuous mode [ 1682.924607][ T3919] veth0_vlan: left promiscuous mode [ 1775.344028][ T3959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1775.608649][ T3959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1808.137893][ T3959] hsr_slave_0: entered promiscuous mode [ 1808.235710][ T3959] hsr_slave_1: entered promiscuous mode [ 1833.232592][ T3959] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1834.393529][ T3959] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1835.362484][ T2111] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1835.851356][ T3959] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1836.729773][ T2111] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1837.212880][ T3959] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1838.075493][ T2111] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1839.093345][ T2111] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1861.417103][ T2111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1861.838799][ T2111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1862.075371][ T2111] bond0 (unregistering): Released all slaves [ 1865.488128][ T2111] hsr_slave_0: left promiscuous mode [ 1865.581838][ T2111] hsr_slave_1: left promiscuous mode [ 1866.712661][ T2111] veth1_macvtap: left promiscuous mode [ 1866.738206][ T2111] veth0_macvtap: left promiscuous mode [ 1866.753996][ T2111] veth1_vlan: left promiscuous mode [ 1866.802132][ T2111] veth0_vlan: left promiscuous mode [ 1899.126789][ T3959] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1938.416896][ T4082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1938.705355][ T4082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1966.456899][ T4082] hsr_slave_0: entered promiscuous mode [ 1966.565853][ T4082] hsr_slave_1: entered promiscuous mode [ 1966.599447][ T4082] debugfs: 'hsr0' already exists in 'hsr' [ 1966.653141][ T4082] Cannot create hsr debugfs directory [ 1985.838016][ T4082] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1986.356229][ T4082] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1986.973740][ T4082] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1987.379242][ T4082] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 2015.749196][ T4082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2020.795264][ T3959] veth0_vlan: entered promiscuous mode [ 2021.958838][ T3959] veth1_vlan: entered promiscuous mode [ 2024.819133][ T3959] veth0_macvtap: entered promiscuous mode [ 2025.506659][ T3959] veth1_macvtap: entered promiscuous mode [ 2029.439917][ T3359] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.466581][ T3359] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.505904][ T4109] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2029.573115][ T4109] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2183.898760][ T4082] veth0_vlan: entered promiscuous mode [ 2185.127219][ T4082] veth1_vlan: entered promiscuous mode [ 2189.634970][ T4082] veth0_macvtap: entered promiscuous mode [ 2190.287295][ T4082] veth1_macvtap: entered promiscuous mode [ 2194.786982][ T3359] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2194.804451][ T3359] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2194.847324][ T3359] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2194.887755][ T3359] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2338.507563][ T4109] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2341.156285][ T4109] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2343.477211][ T4109] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2345.109120][ T4109] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2373.708724][ T4109] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2374.032757][ T4109] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2374.156578][ T4109] bond0 (unregistering): Released all slaves [ 2375.428364][ T4109] hsr_slave_0: left promiscuous mode [ 2375.515394][ T4109] hsr_slave_1: left promiscuous mode [ 2375.748183][ T4109] veth1_macvtap: left promiscuous mode [ 2375.762642][ T4109] veth0_macvtap: left promiscuous mode [ 2375.766940][ T4109] veth1_vlan: left promiscuous mode [ 2375.782674][ T4109] veth0_vlan: left promiscuous mode [ 2399.519662][ T4109] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2401.404820][ T4109] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2402.922244][ T4109] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2407.465554][ T4109] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2429.618537][ T4109] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2429.694563][ T4109] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2429.801849][ T4109] bond0 (unregistering): Released all slaves [ 2432.131727][ T4109] hsr_slave_0: left promiscuous mode [ 2432.482134][ T4109] hsr_slave_1: left promiscuous mode [ 2433.273659][ T4109] veth1_macvtap: left promiscuous mode [ 2433.285070][ T4109] veth0_macvtap: left promiscuous mode [ 2433.317410][ T4109] veth1_vlan: left promiscuous mode [ 2433.343740][ T4109] veth0_vlan: left promiscuous mode [ 2454.295120][ T4373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2455.304111][ T4373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2470.936738][ T4381] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2471.724505][ T4381] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2485.897715][ T4373] hsr_slave_0: entered promiscuous mode [ 2485.919651][ T4373] hsr_slave_1: entered promiscuous mode [ 2502.759608][ T4381] hsr_slave_0: entered promiscuous mode [ 2502.913536][ T4381] hsr_slave_1: entered promiscuous mode [ 2502.973262][ T4381] debugfs: 'hsr0' already exists in 'hsr' [ 2502.977147][ T4381] Cannot create hsr debugfs directory [ 2504.492523][ T4373] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 2504.956498][ T4373] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 2505.486359][ T4373] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 2505.816886][ T4373] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 2524.934317][ T4381] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 2525.516056][ T4381] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 2526.079533][ T4381] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 2526.564361][ T4381] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 2542.814476][ T4373] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2559.849812][ T4381] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2694.845059][ T4373] veth0_vlan: entered promiscuous mode [ 2696.193903][ T4373] veth1_vlan: entered promiscuous mode [ 2700.056640][ T4373] veth0_macvtap: entered promiscuous mode [ 2700.782949][ T4373] veth1_macvtap: entered promiscuous mode [ 2704.881934][ T2111] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2704.923727][ T4109] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2704.967975][ T3919] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2704.973826][ T4401] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2716.023245][ T4381] veth0_vlan: entered promiscuous mode [ 2717.492683][ T4381] veth1_vlan: entered promiscuous mode [ 2722.323311][ T4381] veth0_macvtap: entered promiscuous mode [ 2723.175726][ T4381] veth1_macvtap: entered promiscuous mode [ 2727.829697][ T3675] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2727.852149][ T3675] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2727.896685][ T3675] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2727.919033][ T3675] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2839.726447][ T3675] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2842.187641][ T3675] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2844.217272][ T3675] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2846.089312][ T3675] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2874.587791][ T3675] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2875.273294][ T3675] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2875.653085][ T3675] bond0 (unregistering): Released all slaves [ 2878.504934][ T3675] hsr_slave_0: left promiscuous mode [ 2878.724745][ T3675] hsr_slave_1: left promiscuous mode [ 2879.485679][ T3675] veth1_macvtap: left promiscuous mode [ 2879.497692][ T3675] veth0_macvtap: left promiscuous mode [ 2879.556839][ T3675] veth1_vlan: left promiscuous mode [ 2879.608070][ T3675] veth0_vlan: left promiscuous mode [ 2912.912792][ T3675] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2914.199064][ T3675] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2916.108350][ T3675] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2917.709183][ T3675] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2946.017558][ T3675] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2946.353934][ T3675] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2946.756177][ T3675] bond0 (unregistering): Released all slaves [ 2949.674738][ T3675] hsr_slave_0: left promiscuous mode [ 2949.804017][ T3675] hsr_slave_1: left promiscuous mode [ 2950.605155][ T3675] veth1_macvtap: left promiscuous mode [ 2950.613505][ T3675] veth0_macvtap: left promiscuous mode [ 2950.637328][ T3675] veth1_vlan: left promiscuous mode [ 2950.674057][ T3675] veth0_vlan: left promiscuous mode [ 3002.241836][ T4658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3002.668370][ T4658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3020.927844][ T4668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3021.343909][ T4668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3041.997747][ T4658] hsr_slave_0: entered promiscuous mode [ 3042.155933][ T4658] hsr_slave_1: entered promiscuous mode [ 3061.058691][ T4668] hsr_slave_0: entered promiscuous mode [ 3061.165459][ T4668] hsr_slave_1: entered promiscuous mode [ 3061.279307][ T4668] debugfs: 'hsr0' already exists in 'hsr' [ 3061.312453][ T4668] Cannot create hsr debugfs directory [ 3067.519287][ T4658] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 3069.563759][ T4658] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 3070.629354][ T4658] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 3071.885821][ T4658] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 3087.574105][ T4668] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 3088.048133][ T4668] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 3088.619525][ T4668] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 3089.213080][ T4668] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 3115.575023][ T4658] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3128.334199][ T4668] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3300.009061][ T4658] veth0_vlan: entered promiscuous mode [ 3301.493003][ T4658] veth1_vlan: entered promiscuous mode [ 3305.644749][ T4658] veth0_macvtap: entered promiscuous mode [ 3306.454628][ T4658] veth1_macvtap: entered promiscuous mode [ 3310.954081][ T4426] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3310.956042][ T4426] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3311.181597][ T4426] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3311.183380][ T4426] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3316.737962][ T4668] veth0_vlan: entered promiscuous mode [ 3319.414211][ T4668] veth1_vlan: entered promiscuous mode [ 3324.865894][ T4668] veth0_macvtap: entered promiscuous mode [ 3325.948513][ T4668] veth1_macvtap: entered promiscuous mode [ 3331.637934][ T3674] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 3331.658998][ T3674] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 3331.725032][ T4401] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 3331.863462][ T4673] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 3376.613303][ T25] audit: type=1400 audit(3375.800:103): avc: denied { setattr } for pid=4933 comm="syz.8.104" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 3829.437540][ T5061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3830.193410][ T5061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3851.472486][ T5067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3852.036067][ T5067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3895.039183][ T5061] hsr_slave_0: entered promiscuous mode [ 3895.315938][ T5061] hsr_slave_1: entered promiscuous mode [ 3895.495468][ T5061] debugfs: 'hsr0' already exists in 'hsr' [ 3895.512548][ T5061] Cannot create hsr debugfs directory [ 3922.417609][ T5067] hsr_slave_0: entered promiscuous mode [ 3922.617306][ T5067] hsr_slave_1: entered promiscuous mode [ 3922.812908][ T5067] debugfs: 'hsr0' already exists in 'hsr' [ 3922.831934][ T5067] Cannot create hsr debugfs directory [ 3969.363639][ T5061] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 3973.763581][ T5061] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 3978.529378][ T5061] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 3981.871891][ T5061] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 3998.018277][ T5067] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 3998.963393][ T5067] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 3999.782274][ T5067] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 4000.479635][ T5067] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 4039.748961][ T5061] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4054.846509][ T5067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4066.533865][ T27] INFO: task syz.8.128:5049 blocked for more than 430 seconds. [ 4066.573179][ T27] Not tainted syzkaller #0 [ 4066.592108][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 4066.592919][ T27] task:syz.8.128 state:D stack:0 pid:5049 tgid:5049 ppid:4658 task_flags:0x400040 flags:0x00000019 [ 4066.594412][ T27] Call trace: [ 4066.594919][ T27] __switch_to+0x584/0xb20 (T) [ 4066.596983][ T27] __schedule+0x1eec/0x33a4 [ 4066.597567][ T27] schedule+0xac/0x27c [ 4066.598092][ T27] schedule_timeout+0x5c/0x1e4 [ 4066.598527][ T27] do_wait_for_common+0x28c/0x444 [ 4066.599058][ T27] wait_for_completion+0x44/0x5c [ 4066.599585][ T27] __synchronize_srcu+0x2a4/0x320 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 4066.781562][ T27] synchronize_srcu+0x3cc/0x4f0 [ 4066.782226][ T27] mmu_notifier_unregister+0x320/0x42c [ 4066.782760][ T27] kvm_put_kvm+0x6a0/0xfa8 [ 4066.783215][ T27] kvm_vm_release+0x58/0x78 [ 4066.783724][ T27] __fput+0x4ac/0x980 [ 4066.784210][ T27] ____fput+0x20/0x58 [ 4066.784647][ T27] task_work_run+0x1bc/0x254 [ 4066.785111][ T27] do_notify_resume+0x1bc/0x270 [ 4066.785610][ T27] el0_svc+0xb8/0x164 [ 4066.786071][ T27] el0t_64_sync_handler+0x84/0x12c [ 4066.786509][ T27] el0t_64_sync+0x198/0x19c [ 4066.973910][ T27] [ 4066.973910][ T27] Showing all locks held in the system: [ 4066.978803][ T27] 1 lock held by khungtaskd/27: [ 4066.979370][ T27] #0: ffff800087806858 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x4/0x48 [ 4067.006887][ T27] 2 locks held by getty/3181: [ 4067.007291][ T27] #0: aff0000011c4a8a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 4067.009073][ T27] #1: 8aff80008c54b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x12b8 [ 4067.126996][ T27] 2 locks held by syz-executor/3302: [ 4067.127414][ T27] 3 locks held by kworker/u4:1/3359: [ 4067.127759][ T27] 2 locks held by kworker/u4:9/3674: [ 4067.128245][ T27] 3 locks held by kworker/u4:10/3675: [ 4067.128621][ T27] 2 locks held by kworker/u4:3/3919: [ 4067.128955][ T27] #0: 4df000000cc20948 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7c8/0x1a18 [ 4067.217660][ T27] #1: ffff80008e8a7c78 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x854/0x1a18 [ 4067.219571][ T27] 3 locks held by kworker/u4:7/4401: [ 4067.219983][ T27] 3 locks held by kworker/u4:13/4426: [ 4067.323690][ T27] 3 locks held by kworker/u4:14/4672: [ 4067.324176][ T27] 2 locks held by kworker/u4:15/4673: [ 4067.324497][ T27] #0: 4df000000cc20948 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7c8/0x1a18 [ 4067.326321][ T27] #1: ffff80008f287c78 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x854/0x1a18 [ 4067.328208][ T27] 2 locks held by syz.9.127/5044: [ 4067.328549][ T27] 3 locks held by kworker/u4:5/5078: [ 4067.328891][ T27] 3 locks held by kworker/u4:12/5135: [ 4067.329298][ T27] 1 lock held by rm/5223: [ 4067.329616][ T27] 1 lock held by modprobe/5224: [ 4067.329948][ T27] 1 lock held by modprobe/5225: [ 4067.449449][ T27] [ 4067.449841][ T27] ============================================= [ 4067.449841][ T27] [ 4067.463088][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 4067.468282][ T27] CPU: 0 UID: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 4067.469893][ T27] Hardware name: linux,dummy-virt (DT) [ 4067.470977][ T27] Call trace: [ 4067.471929][ T27] show_stack+0x2c/0x3c (C) [ 4067.472988][ T27] __dump_stack+0x30/0x40 [ 4067.473928][ T27] dump_stack_lvl+0x30/0x12c [ 4067.474746][ T27] dump_stack+0x1c/0x28 [ 4067.475636][ T27] vpanic+0x22c/0x59c [ 4067.476519][ T27] vpanic+0x0/0x59c [ 4067.477380][ T27] hung_task_panic+0x0/0x2c [ 4067.478349][ T27] kthread+0x794/0x9a0 [ 4067.479310][ T27] ret_from_fork+0x10/0x20 [ 4067.481173][ T27] Kernel Offset: disabled [ 4067.481979][ T27] CPU features: 0x000000,0001a300,5f7c67c1,057ffe1f [ 4067.483208][ T27] Memory Limit: none [ 4067.485538][ T27] Rebooting in 86400 seconds.. VM DIAGNOSIS: 03:09:03 Registers: info registers vcpu 0 CPU#0 PC=ffff800085bcb308 X00=0000000000000000 X01=ffff8000870e1b12 X02=ffff8000800077b8 X03=0000000000000001 X04=0000000000000000 X05=0000000000000000 X06=0000000000000000 X07=ffff8000859f5bfc X08=0000000000000000 X09=0000000100000101 X10=0000000000000035 X11=00000000000000fe X12=35f0000011e5c5b0 X13=0000000000000035 X14=ffffffffffffffff X15=ffff800080007680 X16=ffff800080010e20 X17=00000000000000a5 X18=00000000000000ff X19=0000000000000000 X20=0000000000000000 X21=0000000000000001 X22=ffff80008731e988 X23=35f0000011e5bb00 X24=35f0000011e5bb00 X25=ffff80008729c6f6 X26=ffff800087067eb6 X27=0000000000000006 X28=0000000000000002 X29=ffff8000800074d0 X30=ffff80008656e540 SP=ffff8000800074d0 PSTATE=40402009 -Z-- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=657362696c2f3436:62696c2f7273752f Z01=00312e6f732e7875:6e696c657362696c Z02=0000000000000000:000000000f000000 Z03=0000000000000000:0000000000000000 Z04=3333333333333333:3333333333333333 Z05=0000000000000000:000000000c000000 Z06=0000000000000000:0000000000000000 Z07=0000000000000000:0000000000000000 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000 Z17=0000000000000000:0000000000000000 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000