last executing test programs: 2h42m47.599115546s ago: executing program 0 (id=1): ioctl(0xffffffffffffffff, 0x0, &(0x7f0000000000)) 2h42m42.860725471s ago: executing program 0 (id=3): write(0xffffffffffffffff, &(0x7f0000000000), 0x0) 2h42m34.963787574s ago: executing program 0 (id=4): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1m41.540034554s ago: executing program 1 (id=2036): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x3, 0x7ffffffd}}) r2 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) r4 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000100)="746abf250f7959c813e4adfb369b808022e69fe80cfadce4a1259e77bab54ac9749537b3d016bb7f745a6e22d2f9ff443f19467748a3fe02c239457600", 0x0, 0xfffffffffffffec5) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r10, 0x2000003, 0x11, r8, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x2000)=nil, r10, 0x2000009, 0x11, r8, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r13, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r13, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x2c) r16 = syz_kvm_setup_syzos_vm$arm64(r15, &(0x7f0000c00000/0x400000)=nil) r17 = syz_kvm_add_vcpu$arm64(r16, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r17, 0x4010aeac, &(0x7f0000000000)=@arm64_ccsidr={0x6020000000110004, 0x0}) ioctl$KVM_SET_SIGNAL_MASK(r17, 0x4004ae8b, &(0x7f0000000140)={0x2c, "b9a4e61e6a42dba0bcca5534f6adfb68fb72abb5ea1c5cef6c5551874ab6e39e8bed9dade81f22baf7246fdf"}) 1m17.959691772s ago: executing program 1 (id=2041): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x100100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x1, 0x15000, 0x1}) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000000)="37d3480ae0458b668f37f9a8457a3bf000", 0x0, 0x18) ioctl$KVM_CREATE_VM(r3, 0x40086602, 0x20000000) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@memwrite={0x6, 0x30, @vgic_gicr={0x80a0000, 0xa0, 0x1, 0xb}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0x1, 0x100) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, &(0x7f0000000740)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0xb0, 0x14, 0x3}}, @irq_setup={0x46, 0x18, {0x1, 0xdf}}], 0x48}, 0x0, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(r3, r2, &(0x7f0000957000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0, 0xffffffffffffffb7}], 0x1, 0x0, 0x0, 0xfffffffffffffea1) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x10}) 1m5.821874194s ago: executing program 2 (id=2042): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SIGNAL_MSI(r4, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1}) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r9, 0x2000003, 0x11, r2, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x2000)=nil, r9, 0x2000009, 0x11, r2, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xf, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 1m4.339999333s ago: executing program 1 (id=2043): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x603000000013df40}}], 0x18}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000140)=@attr_pmu_init) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r4, 0x3, 0x11, r3, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x31) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x8080000, 0x2000, &(0x7f0000c5d000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000d70000/0x3000)=nil, 0x3000) syz_kvm_assert_syzos_uexit$arm64(r5, 0xffffffffffffffff) 44.799126734s ago: executing program 2 (id=2044): r0 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x17) r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r1, 0x4018aee1, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000000), 0x1, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_vgic_v3_setup(r5, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r6, 0x4018aee2, &(0x7f0000000080)=@attr_other={0x0, 0x3, 0x5, 0xffffffffffffffff}) r7 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x401, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x2, 0x9, 0x9, 0x80, 0x1}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) 44.218410189s ago: executing program 1 (id=2045): openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8}) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000000)={0x7, 0xe59b8351}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x2, 0xfffffffffffffffd, 0x1}}], 0x28}, 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x10, r9, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000140)=[@featur2={0x1, 0xe1}], 0x1) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x21) ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x2) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x2, 0x83, &(0x7f0000000340)=0x8}) ioctl$KVM_SET_GSI_ROUTING(r10, 0x4008ae6a, &(0x7f0000000240)=ANY=[@ANYBLOB="a400"]) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000280)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) 32.74332215s ago: executing program 2 (id=2046): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x13b202, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000100)={0x0, &(0x7f0000000180)=[@mrs={0xbe, 0x18, {0x603000000013e100}}, @uexit={0x0, 0x18, 0x4}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x2, 0xe, 0x401, 0x7c1c, 0x4}}, @uexit={0x0, 0x18, 0x12}, @mrs={0xbe, 0x18, {0x603000000013da15}}, @eret={0xe6, 0x18, 0x3}, @svc={0x122, 0x40, {0x84000012, [0xffffffffffffffff, 0x7fffffffffffffff, 0x40, 0xfff, 0xffffffffffffffff]}}, @uexit={0x0, 0x18, 0x2}, @svc={0x122, 0x40, {0x0, [0x2, 0x95, 0x2, 0xffff, 0x7ff]}}, @svc={0x122, 0x40, {0x4000, [0x3fe8, 0x0, 0x1, 0x8]}}, @msr={0x14, 0x20, {0x603000000013df6d, 0x5}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0x8}}, @hvc={0x32, 0x40, {0xc4000003, [0xd3, 0x4, 0xffffffffffff8000, 0xfffffffffffffff8, 0xd3]}}, @msr={0x14, 0x20, {0x603000000013df50}}, @eret={0xe6, 0x18}, @msr={0x14, 0x20, {0x603000000013de91, 0xfffffffffffffffe}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @svc={0x122, 0x40, {0x84000052, [0x5, 0x4, 0x3ff, 0x9, 0x507]}}, @hvc={0x32, 0x40, {0x366fd88bf26d0a31, [0x3, 0x9d0, 0x200, 0x3, 0x9]}}], 0x2f8}, &(0x7f00000004c0)=[@featur1={0x1, 0x5f}], 0x1) mmap$KVM_VCPU(&(0x7f0000006000/0x4000)=nil, r2, 0x3000002, 0x11, r3, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x480403, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) munmap(&(0x7f00000be000/0x1000)=nil, 0xffffffffdff41fff) r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r7, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, r8, 0x2000003, 0x11, r6, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000009000/0x2000)=nil, r8, 0x2000009, 0x11, r6, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0xb) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2) r14 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r13, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r14, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r13, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x125b02, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) r15 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0) r17 = ioctl$KVM_CREATE_VCPU(r16, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r16, r17, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x4841, 0x0) 28.199452579s ago: executing program 1 (id=2047): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x20) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x22300, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r2, 0x4068aea3, &(0x7f0000000280)={0xdf, 0x0, 0x12000}) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f00004e3000/0x2000)=nil, 0x930, 0xa, 0x2013, r5, 0x40000) r6 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000826000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x6030000000100014, &(0x7f0000000100)=0xffffffffffffffff}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x2c) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000040)={0x0, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x40242, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000240)=[@irq_setup={0x5, 0x18, {0x0, 0x2}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r12, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0x2, '\x00', 0xfffffffffffff105}) ioctl$KVM_RUN(r12, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0x0, 0x0, 0x35d881, 0x0) r13 = openat$kvm(0x0, &(0x7f0000000000), 0x1, 0x0) ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x1) r15 = syz_kvm_vgic_v3_setup(r14, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r15, 0x4018aee2, &(0x7f0000000080)=@attr_other={0x0, 0x3, 0x5, 0xffffffffffffffff}) r16 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000080)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r16, 0xae80, 0x0) 20.043186148s ago: executing program 2 (id=2048): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x25) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f00000000c0), 0xc0980, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0xa, 0xffffffffffffffff, 0x1}) (async) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) close(r7) r8 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) ioctl$KVM_CHECK_EXTENSION_VM(r8, 0xae03, 0x2) 11.239734579s ago: executing program 2 (id=2049): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000240)=@arm64_core={0x603000000010000e, &(0x7f0000000200)=0x4}) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f0000eab000/0x3000)=nil, 0x3000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(r6, r1, &(0x7f0000013000/0x400000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000840)=[@smc={0x1e, 0x40, {0xffff, [0x3, 0x3af1, 0x5, 0xa9e, 0x6]}}, @hvc={0x32, 0x40, {0x6000000, [0xfffffffffffffffa, 0xa414, 0x3, 0x1, 0x1]}}, @msr={0x14, 0x20, {0x603000000013e32a, 0x1ff}}, @hvc={0x32, 0x40, {0x84000012, [0xfff, 0xc, 0xa, 0x2, 0x1]}}, @hvc={0x32, 0x40, {0x10, [0x1, 0xa, 0x400000, 0x1, 0x8000]}}, @code={0xa, 0x6c, {"007008d500a0400c00c188d20080b0f2210080d2420180d2430080d2440080d2020000d4007008d50088207e00608fd20000b0f2610180d2020180d2a30180d2240080d2020000d4007008d50094002f0060000c000028d5"}}, @code={0xa, 0x54, {"007008d5000008d50084200d3f2003d50010601e40de8dd200a0b0f2c10180d2420180d2c30180d2a40080d2020000d4007008d5000008d500f8a02e0090802f"}}, @msr={0x14, 0x20, {0x6030000000130204, 0xffffffff}}, @hvc={0x32, 0x40, {0x8400000c, [0xc02, 0x2fd17070, 0x8, 0x4, 0x1]}}, @msr={0x14, 0x20, {0x603000000013e662, 0x5eb}}, @eret={0xe6, 0x18, 0x188500000000}, @irq_setup={0x46, 0x18, {0x2, 0x9e}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x17d}}, @hvc={0x32, 0x40, {0x32000000, [0x80000000, 0x7, 0x1, 0x5, 0x8000000000000000]}}, @uexit={0x0, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xc, 0x3, 0x3, 0xa, 0x1ff, 0x3, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x37e}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x15b}}, @svc={0x122, 0x40, {0x100, [0x6, 0xffff, 0x6, 0x4, 0x194]}}], 0x3c8}], 0x1, 0x0, &(0x7f0000000040)=[@featur1={0x1, 0x4}], 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r6, 0x8030aeb4, 0x0) 4.279997116s ago: executing program 1 (id=2050): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0xfffffffe, 0x0, 0x6, 0x0, 0x20000004}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r6 = syz_kvm_add_vcpu$arm64(r2, 0x0, 0x0, 0xa7) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x32) r12 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000000180)={0x80, 0xd5d77004, 0x4, r12}) syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_REGISTER_COALESCED_MMIO(r11, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a92616}) r13 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r8, 0xae03, 0x1) r14 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_core={0x603000000010002c, &(0x7f0000000380)=0xfffffffffffffff8}) r16 = syz_kvm_vgic_v3_setup(r5, 0x4, 0x220) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(r16, 0x4018aee3, &(0x7f0000000240)=@attr_arm64={0x0, 0x5, 0x3, 0x0}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r17, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 0s ago: executing program 2 (id=2051): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e000000000000004000000000000000000000ef00000000fcffffffffffff1bf3a3b292e50d9600020000000100000003000000000000000400000000000000320000000000000040000000000000005200008400"], 0x80}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000000)=[{0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1e000000000000004000000000000000000000ef00000000fcffffffffffff1bf3a3b292e50d9600020000000100000003000000000000000400000000000000320000000000000040000000000000005200008400"], 0x80}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) kernel console output (not intermixed with test programs): [ 374.607912][ T3156] 8021q: adding VLAN 0 to HW filter on device bond0 [ 420.592633][ T3156] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:1702' (ED25519) to the list of known hosts. [ 587.279999][ T25] audit: type=1400 audit(586.570:61): avc: denied { name_bind } for pid=3313 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 589.211054][ T25] audit: type=1400 audit(588.500:62): avc: denied { execute } for pid=3314 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 589.240777][ T25] audit: type=1400 audit(588.530:63): avc: denied { execute_no_trans } for pid=3314 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 609.182949][ T25] audit: type=1400 audit(608.470:64): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 609.219508][ T25] audit: type=1400 audit(608.510:65): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 609.300368][ T3314] cgroup: Unknown subsys name 'net' [ 609.348960][ T25] audit: type=1400 audit(608.640:66): avc: denied { unmount } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 609.715521][ T3314] cgroup: Unknown subsys name 'cpuset' [ 609.810735][ T3314] cgroup: Unknown subsys name 'rlimit' [ 611.051646][ T25] audit: type=1400 audit(610.340:67): avc: denied { setattr } for pid=3314 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 611.072762][ T25] audit: type=1400 audit(610.360:68): avc: denied { create } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 611.103019][ T25] audit: type=1400 audit(610.390:69): avc: denied { write } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 611.120489][ T25] audit: type=1400 audit(610.410:70): avc: denied { module_request } for pid=3314 comm="syz-executor" kmod="net-pf-16-proto-16-family-nl802154" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 611.622149][ T25] audit: type=1400 audit(610.910:71): avc: denied { read } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 611.672574][ T25] audit: type=1400 audit(610.960:72): avc: denied { mounton } for pid=3314 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 611.700100][ T25] audit: type=1400 audit(610.980:73): avc: denied { mount } for pid=3314 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 612.918435][ T3317] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 613.159474][ T3314] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 662.498794][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 662.515711][ T25] audit: type=1400 audit(661.790:78): avc: denied { execmem } for pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 662.788733][ T25] audit: type=1400 audit(662.070:79): avc: denied { read } for pid=3320 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 662.803219][ T25] audit: type=1400 audit(662.090:80): avc: denied { open } for pid=3320 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 662.898422][ T25] audit: type=1400 audit(662.170:81): avc: denied { mounton } for pid=3320 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 664.799784][ T25] audit: type=1400 audit(664.090:82): avc: denied { mount } for pid=3320 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 664.881066][ T25] audit: type=1400 audit(664.170:83): avc: denied { mounton } for pid=3320 comm="syz-executor" path="/syzkaller.4OdLyo/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 664.957483][ T25] audit: type=1400 audit(664.240:84): avc: denied { mount } for pid=3320 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 665.145378][ T25] audit: type=1400 audit(664.420:85): avc: denied { mounton } for pid=3320 comm="syz-executor" path="/syzkaller.4OdLyo/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 665.211020][ T25] audit: type=1400 audit(664.500:86): avc: denied { mounton } for pid=3320 comm="syz-executor" path="/syzkaller.4OdLyo/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=2877 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 665.319562][ T25] audit: type=1400 audit(664.610:87): avc: denied { unmount } for pid=3320 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 676.005170][ T25] kauditd_printk_skb: 8 callbacks suppressed [ 676.006005][ T25] audit: type=1400 audit(675.290:96): avc: denied { create } for pid=3329 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 681.049579][ T3332] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 760.325188][ T25] audit: type=1400 audit(759.600:97): avc: denied { sys_module } for pid=3346 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 786.278248][ T3346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 786.489893][ T3346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 787.002516][ T3348] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 787.247905][ T3348] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 798.949718][ T3346] hsr_slave_0: entered promiscuous mode [ 798.977094][ T3346] hsr_slave_1: entered promiscuous mode [ 799.668717][ T3348] hsr_slave_0: entered promiscuous mode [ 799.699018][ T3348] hsr_slave_1: entered promiscuous mode [ 799.736816][ T3348] debugfs: 'hsr0' already exists in 'hsr' [ 799.740704][ T3348] Cannot create hsr debugfs directory [ 805.357528][ T3346] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 805.682611][ T3346] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 806.049248][ T3346] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 806.367616][ T3346] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 807.792870][ T3348] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 807.999479][ T3348] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 808.143504][ T3348] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 808.301626][ T3348] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 821.757075][ T3346] 8021q: adding VLAN 0 to HW filter on device bond0 [ 825.069456][ T3348] 8021q: adding VLAN 0 to HW filter on device bond0 [ 877.883037][ T3346] veth0_vlan: entered promiscuous mode [ 878.353567][ T3346] veth1_vlan: entered promiscuous mode [ 880.758865][ T3346] veth0_macvtap: entered promiscuous mode [ 881.038282][ T3348] veth0_vlan: entered promiscuous mode [ 881.497647][ T3346] veth1_macvtap: entered promiscuous mode [ 882.377678][ T3348] veth1_vlan: entered promiscuous mode [ 884.602501][ T2120] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.642059][ T2120] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.818456][ T2120] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 884.837215][ T2120] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 886.177856][ T3348] veth0_macvtap: entered promiscuous mode [ 887.008338][ T3348] veth1_macvtap: entered promiscuous mode [ 889.901018][ T3439] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 889.926485][ T3439] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 889.965560][ T3439] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 889.966626][ T3439] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 905.875113][ T25] audit: type=1400 audit(905.100:98): avc: denied { write } for pid=3503 comm="syz.1.10" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 905.947926][ T25] audit: type=1400 audit(905.180:99): avc: denied { open } for pid=3503 comm="syz.1.10" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 907.073359][ T25] audit: type=1400 audit(906.360:100): avc: denied { read } for pid=3505 comm="syz.2.11" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 907.378122][ T25] audit: type=1400 audit(906.660:101): avc: denied { ioctl } for pid=3505 comm="syz.2.11" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0x5460 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 916.180356][ T25] audit: type=1400 audit(915.420:102): avc: denied { map } for pid=3512 comm="syz.1.14" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 916.195692][ T25] audit: type=1400 audit(915.460:103): avc: denied { execute } for pid=3512 comm="syz.1.14" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 930.108705][ T25] audit: type=1400 audit(929.390:104): avc: denied { execute } for pid=3524 comm="syz.1.20" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4220 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1179.970616][ T25] audit: type=1400 audit(1179.260:105): avc: denied { setattr } for pid=3713 comm="syz.1.111" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1414.025568][ T25] audit: type=1400 audit(1413.270:106): avc: denied { append } for pid=3862 comm="syz.2.180" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2136.936608][ T4275] kvm [4274]: Unsupported guest access at: eeef0000 [ 2136.936608][ T4275] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 2181.502234][ T4306] kvm [4306]: Failed to find VMA for hva 0x21016000 [ 2466.051085][ T25] audit: type=1400 audit(2465.300:107): avc: denied { ioctl } for pid=4466 comm="syz.2.442" path="net:[4026532624]" dev="nsfs" ino=4026532624 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 3081.697905][ T4811] debugfs: 'vgic-its-state@8080000' already exists in '4811-4' [ 3171.245862][ T25] audit: type=1400 audit(3170.530:108): avc: denied { execute } for pid=4866 comm="syz.1.606" path="/299/T" dev="tmpfs" ino=1520 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 3278.605790][ T25] audit: type=1400 audit(3277.870:109): avc: denied { map } for pid=4925 comm="syz.1.630" path="/" dev="tmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 3468.775525][ T5026] kvm [5026]: Failed to find VMA for hva 0x20dfc000 [ 3484.869101][ T5034] kvm [5034]: Failed to find VMA for hva 0x20c01000 [ 3618.070570][ T5118] kvm [5118]: Failed to find VMA for hva 0x20c01000 [ 3618.116871][ T5121] kvm [5121]: Failed to find VMA for hva 0x20c01000 [ 3801.650165][ T5230] kvm [5230]: Failed to find VMA for hva 0x21016000 [ 5067.663412][ T5984] kvm [5984]: Failed to find VMA for hva 0x20c01000 [ 5098.079053][ T6005] kvm [6005]: Failed to find VMA for hva 0x20c01000 [ 5129.899465][ T6020] kvm [6020]: Failed to find VMA for hva 0x20c01000 [ 5389.131321][ T6175] kvm [6175]: Failed to find VMA for hva 0x20c01000 [ 5520.067979][ T6252] kvm [6252]: Failed to find VMA for hva 0x20c01000 [ 5530.928767][ T6259] FAULT_INJECTION: forcing a failure. [ 5530.928767][ T6259] name failslab, interval 1, probability 0, space 0, times 1 [ 5530.967394][ T6259] CPU: 0 UID: 0 PID: 6259 Comm: syz.1.1177 Not tainted syzkaller #0 PREEMPT [ 5530.968067][ T6259] Hardware name: linux,dummy-virt (DT) [ 5530.968541][ T6259] Call trace: [ 5530.968953][ T6259] show_stack+0x2c/0x3c (C) [ 5530.970800][ T6259] __dump_stack+0x30/0x40 [ 5530.971105][ T6259] dump_stack_lvl+0xd8/0x12c [ 5530.971334][ T6259] dump_stack+0x1c/0x28 [ 5530.971551][ T6259] should_fail_ex+0x570/0x6e0 [ 5530.971789][ T6259] should_failslab+0xb8/0xec [ 5530.972021][ T6259] __kmalloc_noprof+0xdc/0x4b8 [ 5530.972231][ T6259] tomoyo_realpath_from_path+0xdc/0x628 [ 5530.972485][ T6259] tomoyo_path_number_perm+0x13c/0x33c [ 5530.972784][ T6259] tomoyo_file_ioctl+0x2c/0x3c [ 5530.973005][ T6259] security_file_ioctl+0xe8/0x2f0 [ 5530.973234][ T6259] __arm64_sys_ioctl+0xd0/0x244 [ 5530.973519][ T6259] invoke_syscall+0x90/0x2b4 [ 5530.973865][ T6259] el0_svc_common+0x180/0x2f4 [ 5530.974151][ T6259] do_el0_svc+0x58/0x74 [ 5530.974454][ T6259] el0_svc+0x58/0x164 [ 5530.974693][ T6259] el0t_64_sync_handler+0x84/0x12c [ 5530.974957][ T6259] el0t_64_sync+0x198/0x19c [ 5531.128170][ T6259] ERROR: Out of memory at tomoyo_realpath_from_path. [ 5556.110235][ T6273] kvm [6273]: Failed to find VMA for hva 0x20c01000 [ 5580.937662][ T6289] FAULT_INJECTION: forcing a failure. [ 5580.937662][ T6289] name failslab, interval 1, probability 0, space 0, times 0 [ 5580.967730][ T6289] CPU: 0 UID: 0 PID: 6289 Comm: syz.1.1187 Not tainted syzkaller #0 PREEMPT [ 5580.968116][ T6289] Hardware name: linux,dummy-virt (DT) [ 5580.968220][ T6289] Call trace: [ 5580.968312][ T6289] show_stack+0x2c/0x3c (C) [ 5580.968685][ T6289] __dump_stack+0x30/0x40 [ 5580.968886][ T6289] dump_stack_lvl+0xd8/0x12c [ 5580.969073][ T6289] dump_stack+0x1c/0x28 [ 5580.969257][ T6289] should_fail_ex+0x570/0x6e0 [ 5580.969524][ T6289] should_failslab+0xb8/0xec [ 5580.969769][ T6289] __kmalloc_noprof+0xdc/0x4b8 [ 5580.969979][ T6289] tomoyo_realpath_from_path+0xdc/0x628 [ 5580.970205][ T6289] tomoyo_path_number_perm+0x13c/0x33c [ 5580.970521][ T6289] tomoyo_file_ioctl+0x2c/0x3c [ 5580.970750][ T6289] security_file_ioctl+0xe8/0x2f0 [ 5580.971045][ T6289] __arm64_sys_ioctl+0xd0/0x244 [ 5580.971320][ T6289] invoke_syscall+0x90/0x2b4 [ 5580.971632][ T6289] el0_svc_common+0x180/0x2f4 [ 5580.971915][ T6289] do_el0_svc+0x58/0x74 [ 5580.972191][ T6289] el0_svc+0x58/0x164 [ 5580.972434][ T6289] el0t_64_sync_handler+0x84/0x12c [ 5580.972683][ T6289] el0t_64_sync+0x198/0x19c [ 5581.147471][ T6289] ERROR: Out of memory at tomoyo_realpath_from_path. [ 5594.117737][ T6292] kvm [6292]: Failed to find VMA for hva 0x20c01000 [ 5604.831470][ T6301] FAULT_INJECTION: forcing a failure. [ 5604.831470][ T6301] name failslab, interval 1, probability 0, space 0, times 0 [ 5604.892115][ T6301] CPU: 0 UID: 0 PID: 6301 Comm: syz.1.1191 Not tainted syzkaller #0 PREEMPT [ 5604.892540][ T6301] Hardware name: linux,dummy-virt (DT) [ 5604.892647][ T6301] Call trace: [ 5604.892722][ T6301] show_stack+0x2c/0x3c (C) [ 5604.893071][ T6301] __dump_stack+0x30/0x40 [ 5604.893265][ T6301] dump_stack_lvl+0xd8/0x12c [ 5604.893492][ T6301] dump_stack+0x1c/0x28 [ 5604.893707][ T6301] should_fail_ex+0x570/0x6e0 [ 5604.893944][ T6301] should_failslab+0xb8/0xec [ 5604.894180][ T6301] __kmalloc_cache_noprof+0x80/0x404 [ 5604.894416][ T6301] do_eventfd+0x60/0x280 [ 5604.894640][ T6301] __arm64_sys_eventfd2+0x6c/0x98 [ 5604.894878][ T6301] invoke_syscall+0x90/0x2b4 [ 5604.895178][ T6301] el0_svc_common+0x180/0x2f4 [ 5604.895495][ T6301] do_el0_svc+0x58/0x74 [ 5604.895773][ T6301] el0_svc+0x58/0x164 [ 5604.896002][ T6301] el0t_64_sync_handler+0x84/0x12c [ 5604.896230][ T6301] el0t_64_sync+0x198/0x19c [ 5651.002587][ T6326] kvm [6326]: Failed to find VMA for hva 0x20c01000 [ 5690.407427][ T6346] kvm [6346]: Failed to find VMA for hva 0x20c01000 [ 5725.328599][ T6371] FAULT_INJECTION: forcing a failure. [ 5725.328599][ T6371] name failslab, interval 1, probability 0, space 0, times 0 [ 5725.388505][ T6371] CPU: 0 UID: 0 PID: 6371 Comm: syz.1.1214 Not tainted syzkaller #0 PREEMPT [ 5725.388893][ T6371] Hardware name: linux,dummy-virt (DT) [ 5725.389001][ T6371] Call trace: [ 5725.389100][ T6371] show_stack+0x2c/0x3c (C) [ 5725.389485][ T6371] __dump_stack+0x30/0x40 [ 5725.389694][ T6371] dump_stack_lvl+0xd8/0x12c [ 5725.389885][ T6371] dump_stack+0x1c/0x28 [ 5725.390070][ T6371] should_fail_ex+0x570/0x6e0 [ 5725.390309][ T6371] should_failslab+0xb8/0xec [ 5725.390564][ T6371] kmem_cache_alloc_noprof+0x80/0x3f0 [ 5725.390788][ T6371] alloc_empty_file+0x60/0x17c [ 5725.391119][ T6371] path_openat+0xa4/0x35f8 [ 5725.391342][ T6371] do_filp_open+0x190/0x3cc [ 5725.391563][ T6371] do_sys_openat2+0xd4/0x158 [ 5725.391818][ T6371] __arm64_sys_openat+0x154/0x1b8 [ 5725.392068][ T6371] invoke_syscall+0x90/0x2b4 [ 5725.392365][ T6371] el0_svc_common+0x180/0x2f4 [ 5725.392659][ T6371] do_el0_svc+0x58/0x74 [ 5725.392936][ T6371] el0_svc+0x58/0x164 [ 5725.393169][ T6371] el0t_64_sync_handler+0x84/0x12c [ 5725.393421][ T6371] el0t_64_sync+0x198/0x19c [ 5756.160763][ T6392] FAULT_INJECTION: forcing a failure. [ 5756.160763][ T6392] name failslab, interval 1, probability 0, space 0, times 0 [ 5756.197627][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.1.1222 Not tainted syzkaller #0 PREEMPT [ 5756.198010][ T6392] Hardware name: linux,dummy-virt (DT) [ 5756.198109][ T6392] Call trace: [ 5756.198184][ T6392] show_stack+0x2c/0x3c (C) [ 5756.198574][ T6392] __dump_stack+0x30/0x40 [ 5756.198776][ T6392] dump_stack_lvl+0xd8/0x12c [ 5756.199004][ T6392] dump_stack+0x1c/0x28 [ 5756.199202][ T6392] should_fail_ex+0x570/0x6e0 [ 5756.199462][ T6392] should_failslab+0xb8/0xec [ 5756.199706][ T6392] kmem_cache_alloc_noprof+0x80/0x3f0 [ 5756.199923][ T6392] security_file_alloc+0x38/0x350 [ 5756.200151][ T6392] init_file+0xb0/0x36c [ 5756.200459][ T6392] alloc_empty_file+0x74/0x17c [ 5756.200746][ T6392] path_openat+0xa4/0x35f8 [ 5756.200945][ T6392] do_filp_open+0x190/0x3cc [ 5756.201140][ T6392] do_sys_openat2+0xd4/0x158 [ 5756.201402][ T6392] __arm64_sys_openat+0x154/0x1b8 [ 5756.201665][ T6392] invoke_syscall+0x90/0x2b4 [ 5756.201945][ T6392] el0_svc_common+0x180/0x2f4 [ 5756.202221][ T6392] do_el0_svc+0x58/0x74 [ 5756.202517][ T6392] el0_svc+0x58/0x164 [ 5756.202745][ T6392] el0t_64_sync_handler+0x84/0x12c [ 5756.203011][ T6392] el0t_64_sync+0x198/0x19c [ 5763.570522][ T6396] FAULT_INJECTION: forcing a failure. [ 5763.570522][ T6396] name failslab, interval 1, probability 0, space 0, times 0 [ 5763.596991][ T6396] CPU: 0 UID: 0 PID: 6396 Comm: syz.1.1224 Not tainted syzkaller #0 PREEMPT [ 5763.597406][ T6396] Hardware name: linux,dummy-virt (DT) [ 5763.597519][ T6396] Call trace: [ 5763.597598][ T6396] show_stack+0x2c/0x3c (C) [ 5763.597946][ T6396] __dump_stack+0x30/0x40 [ 5763.598145][ T6396] dump_stack_lvl+0xd8/0x12c [ 5763.598361][ T6396] dump_stack+0x1c/0x28 [ 5763.598558][ T6396] should_fail_ex+0x570/0x6e0 [ 5763.598786][ T6396] should_failslab+0xb8/0xec [ 5763.599054][ T6396] kmem_cache_alloc_noprof+0x80/0x3f0 [ 5763.599278][ T6396] vm_area_dup+0x34/0x788 [ 5763.599584][ T6396] __split_vma+0x1c8/0xb00 [ 5763.599781][ T6396] vms_gather_munmap_vmas+0x4d0/0x1470 [ 5763.600067][ T6396] mmap_region+0x6c0/0x1fcc [ 5763.600258][ T6396] do_mmap+0xa50/0xf64 [ 5763.600524][ T6396] vm_mmap_pgoff+0x290/0x3e8 [ 5763.600789][ T6396] ksys_mmap_pgoff+0xec/0x448 [ 5763.601040][ T6396] __arm64_sys_mmap+0x13c/0x198 [ 5763.601332][ T6396] invoke_syscall+0x90/0x2b4 [ 5763.601620][ T6396] el0_svc_common+0x180/0x2f4 [ 5763.601898][ T6396] do_el0_svc+0x58/0x74 [ 5763.602170][ T6396] el0_svc+0x58/0x164 [ 5763.602413][ T6396] el0t_64_sync_handler+0x84/0x12c [ 5763.602649][ T6396] el0t_64_sync+0x198/0x19c [ 5839.155585][ T6428] FAULT_INJECTION: forcing a failure. [ 5839.155585][ T6428] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 5839.163427][ T6428] CPU: 0 UID: 0 PID: 6428 Comm: syz.1.1235 Not tainted syzkaller #0 PREEMPT [ 5839.163826][ T6428] Hardware name: linux,dummy-virt (DT) [ 5839.163931][ T6428] Call trace: [ 5839.164011][ T6428] show_stack+0x2c/0x3c (C) [ 5839.164393][ T6428] __dump_stack+0x30/0x40 [ 5839.164600][ T6428] dump_stack_lvl+0xd8/0x12c [ 5839.164790][ T6428] dump_stack+0x1c/0x28 [ 5839.164975][ T6428] should_fail_ex+0x570/0x6e0 [ 5839.165200][ T6428] should_fail_alloc_page+0xd4/0xd8 [ 5839.165466][ T6428] prepare_alloc_pages+0x20c/0x5e0 [ 5839.165736][ T6428] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 5839.165974][ T6428] alloc_pages_mpol+0x204/0x4c8 [ 5839.166185][ T6428] alloc_pages_noprof+0x104/0x2ec [ 5839.166416][ T6428] handle_mm_fault+0x1bbc/0x5778 [ 5839.166634][ T6428] do_page_fault+0x55c/0x1508 [ 5839.166925][ T6428] do_translation_fault+0xbc/0xfc [ 5839.167200][ T6428] do_mem_abort+0x50/0x110 [ 5839.167492][ T6428] el1_abort+0x3c/0x5c [ 5839.167722][ T6428] el1h_64_sync_handler+0x50/0xfc [ 5839.167948][ T6428] el1h_64_sync+0x6c/0x70 [ 5839.168280][ T6428] ioctl_setflags+0x178/0x278 (P) [ 5839.168624][ T6428] do_vfs_ioctl+0x964/0x1b70 [ 5839.168878][ T6428] __arm64_sys_ioctl+0x10c/0x244 [ 5839.169120][ T6428] invoke_syscall+0x90/0x2b4 [ 5839.169428][ T6428] el0_svc_common+0x180/0x2f4 [ 5839.169710][ T6428] do_el0_svc+0x58/0x74 [ 5839.169983][ T6428] el0_svc+0x58/0x164 [ 5839.170196][ T6428] el0t_64_sync_handler+0x84/0x12c [ 5839.170460][ T6428] el0t_64_sync+0x198/0x19c [ 5840.519753][ T6426] kvm [6426]: Failed to find VMA for hva 0x21016000 [ 5840.717888][ T6426] kvm [6426]: Failed to find VMA for hva 0x21016000 [ 5874.606939][ T6439] kvm [6439]: Failed to find VMA for hva 0x20c01000 [ 5884.097361][ T6451] FAULT_INJECTION: forcing a failure. [ 5884.097361][ T6451] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 5884.111592][ T6451] CPU: 0 UID: 0 PID: 6451 Comm: syz.2.1241 Not tainted syzkaller #0 PREEMPT [ 5884.111990][ T6451] Hardware name: linux,dummy-virt (DT) [ 5884.112095][ T6451] Call trace: [ 5884.112173][ T6451] show_stack+0x2c/0x3c (C) [ 5884.112563][ T6451] __dump_stack+0x30/0x40 [ 5884.112773][ T6451] dump_stack_lvl+0xd8/0x12c [ 5884.112971][ T6451] dump_stack+0x1c/0x28 [ 5884.113163][ T6451] should_fail_ex+0x570/0x6e0 [ 5884.113421][ T6451] should_fail+0x14/0x24 [ 5884.113677][ T6451] should_fail_usercopy+0x20/0x30 [ 5884.113923][ T6451] simple_read_from_buffer+0xd0/0x298 [ 5884.114136][ T6451] proc_fail_nth_read+0x184/0x218 [ 5884.114356][ T6451] vfs_read+0x220/0x9a8 [ 5884.114638][ T6451] ksys_read+0x100/0x1f4 [ 5884.114933][ T6451] __arm64_sys_read+0x98/0xcc [ 5884.115212][ T6451] invoke_syscall+0x90/0x2b4 [ 5884.115534][ T6451] el0_svc_common+0x180/0x2f4 [ 5884.115823][ T6451] do_el0_svc+0x58/0x74 [ 5884.116103][ T6451] el0_svc+0x58/0x164 [ 5884.116346][ T6451] el0t_64_sync_handler+0x84/0x12c [ 5884.116598][ T6451] el0t_64_sync+0x198/0x19c [ 6010.672420][ T6509] FAULT_INJECTION: forcing a failure. [ 6010.672420][ T6509] name failslab, interval 1, probability 0, space 0, times 0 [ 6010.716192][ T6509] CPU: 0 UID: 0 PID: 6509 Comm: syz.1.1262 Not tainted syzkaller #0 PREEMPT [ 6010.716607][ T6509] Hardware name: linux,dummy-virt (DT) [ 6010.716709][ T6509] Call trace: [ 6010.716786][ T6509] show_stack+0x2c/0x3c (C) [ 6010.717135][ T6509] __dump_stack+0x30/0x40 [ 6010.717355][ T6509] dump_stack_lvl+0xd8/0x12c [ 6010.717560][ T6509] dump_stack+0x1c/0x28 [ 6010.717752][ T6509] should_fail_ex+0x570/0x6e0 [ 6010.717980][ T6509] should_failslab+0xb8/0xec [ 6010.718213][ T6509] __kmalloc_node_track_caller_noprof+0xdc/0x4bc [ 6010.718469][ T6509] kmemdup_noprof+0x44/0x8c [ 6010.718731][ T6509] sidtab_sid2str_get+0x1fc/0x438 [ 6010.719027][ T6509] security_sid_to_context_core+0x354/0x5c0 [ 6010.719242][ T6509] security_sid_to_context_force+0x3c/0x50 [ 6010.719494][ T6509] selinux_inode_init_security+0x3cc/0x570 [ 6010.719742][ T6509] security_inode_init_security+0x160/0x888 [ 6010.719957][ T6509] shmem_tmpfile+0xb4/0x1a0 [ 6010.720202][ T6509] vfs_tmpfile+0x358/0x890 [ 6010.720430][ T6509] do_tmpfile+0xe8/0x288 [ 6010.720663][ T6509] path_openat+0x28a8/0x35f8 [ 6010.720862][ T6509] do_filp_open+0x190/0x3cc [ 6010.721057][ T6509] do_sys_openat2+0xd4/0x158 [ 6010.721320][ T6509] __arm64_sys_openat+0x154/0x1b8 [ 6010.721584][ T6509] invoke_syscall+0x90/0x2b4 [ 6010.721866][ T6509] el0_svc_common+0x180/0x2f4 [ 6010.722142][ T6509] do_el0_svc+0x58/0x74 [ 6010.722434][ T6509] el0_svc+0x58/0x164 [ 6010.722663][ T6509] el0t_64_sync_handler+0x84/0x12c [ 6010.722920][ T6509] el0t_64_sync+0x198/0x19c [ 6037.700071][ T6517] FAULT_INJECTION: forcing a failure. [ 6037.700071][ T6517] name failslab, interval 1, probability 0, space 0, times 0 [ 6037.736646][ T6517] CPU: 0 UID: 0 PID: 6517 Comm: syz.2.1264 Not tainted syzkaller #0 PREEMPT [ 6037.737028][ T6517] Hardware name: linux,dummy-virt (DT) [ 6037.737133][ T6517] Call trace: [ 6037.737207][ T6517] show_stack+0x2c/0x3c (C) [ 6037.737590][ T6517] __dump_stack+0x30/0x40 [ 6037.737788][ T6517] dump_stack_lvl+0xd8/0x12c [ 6037.738001][ T6517] dump_stack+0x1c/0x28 [ 6037.738190][ T6517] should_fail_ex+0x570/0x6e0 [ 6037.738433][ T6517] should_failslab+0xb8/0xec [ 6037.738700][ T6517] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 6037.738954][ T6517] __d_alloc+0x40/0x844 [ 6037.739234][ T6517] d_alloc_pseudo+0x2c/0x130 [ 6037.739537][ T6517] alloc_file_pseudo+0x94/0x1e8 [ 6037.739738][ T6517] __shmem_file_setup+0x29c/0x314 [ 6037.739963][ T6517] shmem_zero_setup+0xb8/0x1c8 [ 6037.740186][ T6517] mmap_region+0x1418/0x1fcc [ 6037.740393][ T6517] do_mmap+0xa50/0xf64 [ 6037.740658][ T6517] vm_mmap_pgoff+0x290/0x3e8 [ 6037.740919][ T6517] ksys_mmap_pgoff+0xec/0x448 [ 6037.741171][ T6517] __arm64_sys_mmap+0x13c/0x198 [ 6037.741470][ T6517] invoke_syscall+0x90/0x2b4 [ 6037.741758][ T6517] el0_svc_common+0x180/0x2f4 [ 6037.742036][ T6517] do_el0_svc+0x58/0x74 [ 6037.742319][ T6517] el0_svc+0x58/0x164 [ 6037.742570][ T6517] el0t_64_sync_handler+0x84/0x12c [ 6037.742806][ T6517] el0t_64_sync+0x198/0x19c [ 6063.257725][ T6533] kvm [6533]: Failed to find VMA for hva 0x20c01000 [ 6075.098306][ T6538] kvm [6538]: Failed to find VMA for hva 0x20c01000 [ 6106.279779][ T6559] kvm [6559]: Failed to find VMA for hva 0x21016000 [ 6142.061266][ T25] audit: type=1400 audit(6141.340:110): avc: denied { map } for pid=6576 comm="syz.2.1284" path="pipe:[3112]" dev="pipefs" ino=3112 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 6207.531122][ T6610] FAULT_INJECTION: forcing a failure. [ 6207.531122][ T6610] name failslab, interval 1, probability 0, space 0, times 0 [ 6207.546176][ T6610] CPU: 0 UID: 0 PID: 6610 Comm: syz.1.1296 Not tainted syzkaller #0 PREEMPT [ 6207.546587][ T6610] Hardware name: linux,dummy-virt (DT) [ 6207.546696][ T6610] Call trace: [ 6207.546774][ T6610] show_stack+0x2c/0x3c (C) [ 6207.547194][ T6610] __dump_stack+0x30/0x40 [ 6207.547428][ T6610] dump_stack_lvl+0xd8/0x12c [ 6207.547652][ T6610] dump_stack+0x1c/0x28 [ 6207.547846][ T6610] should_fail_ex+0x570/0x6e0 [ 6207.548074][ T6610] should_failslab+0xb8/0xec [ 6207.548323][ T6610] __kmalloc_noprof+0xdc/0x4b8 [ 6207.548546][ T6610] tomoyo_encode+0x27c/0x4ec [ 6207.548764][ T6610] tomoyo_realpath_from_path+0x5bc/0x628 [ 6207.548982][ T6610] tomoyo_check_open_permission+0x148/0x4ac [ 6207.549277][ T6610] tomoyo_file_open+0x1d8/0x24c [ 6207.549516][ T6610] security_file_open+0xc8/0x298 [ 6207.549754][ T6610] do_dentry_open+0x3a0/0x1614 [ 6207.550006][ T6610] finish_open+0xa0/0xd8 [ 6207.550243][ T6610] shmem_tmpfile+0x168/0x1a0 [ 6207.550511][ T6610] vfs_tmpfile+0x358/0x890 [ 6207.550718][ T6610] do_tmpfile+0xe8/0x288 [ 6207.550980][ T6610] path_openat+0x28a8/0x35f8 [ 6207.551187][ T6610] do_filp_open+0x190/0x3cc [ 6207.551403][ T6610] do_sys_openat2+0xd4/0x158 [ 6207.551666][ T6610] __arm64_sys_openat+0x154/0x1b8 [ 6207.551921][ T6610] invoke_syscall+0x90/0x2b4 [ 6207.552241][ T6610] el0_svc_common+0x180/0x2f4 [ 6207.552549][ T6610] do_el0_svc+0x58/0x74 [ 6207.552831][ T6610] el0_svc+0x58/0x164 [ 6207.553059][ T6610] el0t_64_sync_handler+0x84/0x12c [ 6207.553297][ T6610] el0t_64_sync+0x198/0x19c [ 6207.695202][ T6610] ERROR: Out of memory at tomoyo_realpath_from_path. [ 6290.686619][ T6653] kvm [6653]: Failed to find VMA for hva 0x20c01000 [ 6355.477728][ T6690] kvm [6690]: Failed to find VMA for hva 0x20c01000 [ 6463.535887][ T6756] kvm [6756]: Failed to find VMA for hva 0x20daf000 [ 6541.983513][ T6795] FAULT_INJECTION: forcing a failure. [ 6541.983513][ T6795] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 6542.107201][ T6795] CPU: 0 UID: 0 PID: 6795 Comm: syz.1.1359 Not tainted syzkaller #0 PREEMPT [ 6542.107628][ T6795] Hardware name: linux,dummy-virt (DT) [ 6542.107733][ T6795] Call trace: [ 6542.107809][ T6795] show_stack+0x2c/0x3c (C) [ 6542.108160][ T6795] __dump_stack+0x30/0x40 [ 6542.108371][ T6795] dump_stack_lvl+0xd8/0x12c [ 6542.108576][ T6795] dump_stack+0x1c/0x28 [ 6542.108762][ T6795] should_fail_ex+0x570/0x6e0 [ 6542.108990][ T6795] should_fail_alloc_page+0xd4/0xd8 [ 6542.109230][ T6795] prepare_alloc_pages+0x20c/0x5e0 [ 6542.109488][ T6795] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6542.109730][ T6795] alloc_pages_mpol+0x204/0x4c8 [ 6542.109941][ T6795] alloc_pages_noprof+0x104/0x2ec [ 6542.110150][ T6795] get_free_pages_noprof+0x1c/0xc4 [ 6542.110402][ T6795] __kvm_mmu_topup_memory_cache+0x328/0x6d8 [ 6542.110620][ T6795] kvm_mmu_topup_memory_cache+0x2c/0x3c [ 6542.110824][ T6795] kvm_handle_guest_abort+0x1164/0x2e18 [ 6542.111137][ T6795] handle_exit+0x21c/0x3dc [ 6542.111366][ T6795] kvm_arch_vcpu_ioctl_run+0x11f8/0x2610 [ 6542.111626][ T6795] kvm_vcpu_ioctl+0x7dc/0xc2c [ 6542.111895][ T6795] __arm64_sys_ioctl+0x18c/0x244 [ 6542.112168][ T6795] invoke_syscall+0x90/0x2b4 [ 6542.112482][ T6795] el0_svc_common+0x180/0x2f4 [ 6542.112785][ T6795] do_el0_svc+0x58/0x74 [ 6542.113077][ T6795] el0_svc+0x58/0x164 [ 6542.113328][ T6795] el0t_64_sync_handler+0x84/0x12c [ 6542.113629][ T6795] el0t_64_sync+0x198/0x19c [ 6618.437747][ T6832] kvm [6832]: Failed to find VMA for hva 0x20c01000 [ 6635.948413][ T6839] kvm [6839]: Failed to find VMA for hva 0x20c01000 [ 6678.228457][ T6865] FAULT_INJECTION: forcing a failure. [ 6678.228457][ T6865] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 6678.281005][ T6865] CPU: 0 UID: 0 PID: 6865 Comm: syz.1.1383 Not tainted syzkaller #0 PREEMPT [ 6678.281423][ T6865] Hardware name: linux,dummy-virt (DT) [ 6678.281536][ T6865] Call trace: [ 6678.281617][ T6865] show_stack+0x2c/0x3c (C) [ 6678.281977][ T6865] __dump_stack+0x30/0x40 [ 6678.282172][ T6865] dump_stack_lvl+0xd8/0x12c [ 6678.282393][ T6865] dump_stack+0x1c/0x28 [ 6678.282593][ T6865] should_fail_ex+0x570/0x6e0 [ 6678.282821][ T6865] should_fail_alloc_page+0xd4/0xd8 [ 6678.283097][ T6865] prepare_alloc_pages+0x20c/0x5e0 [ 6678.283344][ T6865] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6678.283605][ T6865] alloc_pages_mpol+0x204/0x4c8 [ 6678.283823][ T6865] alloc_pages_noprof+0x104/0x2ec [ 6678.284038][ T6865] get_free_pages_noprof+0x1c/0xc4 [ 6678.284270][ T6865] __kvm_mmu_topup_memory_cache+0x328/0x6d8 [ 6678.284514][ T6865] kvm_mmu_topup_memory_cache+0x2c/0x3c [ 6678.284718][ T6865] kvm_handle_guest_abort+0x1164/0x2e18 [ 6678.284991][ T6865] handle_exit+0x21c/0x3dc [ 6678.285191][ T6865] kvm_arch_vcpu_ioctl_run+0x11f8/0x2610 [ 6678.285461][ T6865] kvm_vcpu_ioctl+0x7dc/0xc2c [ 6678.285723][ T6865] __arm64_sys_ioctl+0x18c/0x244 [ 6678.285973][ T6865] invoke_syscall+0x90/0x2b4 [ 6678.286255][ T6865] el0_svc_common+0x180/0x2f4 [ 6678.286562][ T6865] do_el0_svc+0x58/0x74 [ 6678.286852][ T6865] el0_svc+0x58/0x164 [ 6678.287092][ T6865] el0t_64_sync_handler+0x84/0x12c [ 6678.287340][ T6865] el0t_64_sync+0x198/0x19c [ 6723.378460][ T6881] FAULT_INJECTION: forcing a failure. [ 6723.378460][ T6881] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 6723.407296][ T6881] CPU: 0 UID: 0 PID: 6881 Comm: syz.1.1388 Not tainted syzkaller #0 PREEMPT [ 6723.407693][ T6881] Hardware name: linux,dummy-virt (DT) [ 6723.407799][ T6881] Call trace: [ 6723.407874][ T6881] show_stack+0x2c/0x3c (C) [ 6723.408221][ T6881] __dump_stack+0x30/0x40 [ 6723.408448][ T6881] dump_stack_lvl+0xd8/0x12c [ 6723.408643][ T6881] dump_stack+0x1c/0x28 [ 6723.408829][ T6881] should_fail_ex+0x570/0x6e0 [ 6723.409055][ T6881] should_fail_alloc_page+0xd4/0xd8 [ 6723.409306][ T6881] prepare_alloc_pages+0x20c/0x5e0 [ 6723.409547][ T6881] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6723.409785][ T6881] alloc_pages_mpol+0x204/0x4c8 [ 6723.409992][ T6881] alloc_pages_noprof+0x104/0x2ec [ 6723.410199][ T6881] get_free_pages_noprof+0x1c/0xc4 [ 6723.410456][ T6881] __kvm_mmu_topup_memory_cache+0x328/0x6d8 [ 6723.410669][ T6881] kvm_mmu_topup_memory_cache+0x2c/0x3c [ 6723.410895][ T6881] kvm_handle_guest_abort+0x1164/0x2e18 [ 6723.411180][ T6881] handle_exit+0x21c/0x3dc [ 6723.411399][ T6881] kvm_arch_vcpu_ioctl_run+0x11f8/0x2610 [ 6723.411649][ T6881] kvm_vcpu_ioctl+0x7dc/0xc2c [ 6723.411905][ T6881] __arm64_sys_ioctl+0x18c/0x244 [ 6723.412160][ T6881] invoke_syscall+0x90/0x2b4 [ 6723.412471][ T6881] el0_svc_common+0x180/0x2f4 [ 6723.412755][ T6881] do_el0_svc+0x58/0x74 [ 6723.413027][ T6881] el0_svc+0x58/0x164 [ 6723.413251][ T6881] el0t_64_sync_handler+0x84/0x12c [ 6723.413510][ T6881] el0t_64_sync+0x198/0x19c [ 6829.176704][ T6938] kvm [6938]: Failed to find VMA for hva 0x20c01000 [ 6837.921449][ T6945] kvm [6945]: Failed to find VMA for hva 0x20c01000 [ 6857.358146][ T6953] kvm [6953]: Failed to find VMA for hva 0x20c01000 [ 6901.128408][ T6978] kvm [6978]: Failed to find VMA for hva 0x20c01000 [ 7052.960213][ T7068] FAULT_INJECTION: forcing a failure. [ 7052.960213][ T7068] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 7052.987826][ T7068] CPU: 0 UID: 0 PID: 7068 Comm: syz.2.1447 Not tainted syzkaller #0 PREEMPT [ 7052.988213][ T7068] Hardware name: linux,dummy-virt (DT) [ 7052.988333][ T7068] Call trace: [ 7052.988425][ T7068] show_stack+0x2c/0x3c (C) [ 7052.988777][ T7068] __dump_stack+0x30/0x40 [ 7052.988970][ T7068] dump_stack_lvl+0xd8/0x12c [ 7052.989159][ T7068] dump_stack+0x1c/0x28 [ 7052.989358][ T7068] should_fail_ex+0x570/0x6e0 [ 7052.989598][ T7068] should_fail_alloc_page+0xd4/0xd8 [ 7052.989837][ T7068] prepare_alloc_pages+0x20c/0x5e0 [ 7052.990064][ T7068] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 7052.990306][ T7068] alloc_pages_mpol+0x204/0x4c8 [ 7052.990537][ T7068] alloc_pages_noprof+0x104/0x2ec [ 7052.990744][ T7068] get_free_pages_noprof+0x1c/0xc4 [ 7052.991013][ T7068] __kvm_mmu_topup_memory_cache+0x328/0x6d8 [ 7052.991231][ T7068] kvm_mmu_topup_memory_cache+0x2c/0x3c [ 7052.991474][ T7068] kvm_handle_guest_abort+0x1164/0x2e18 [ 7052.991752][ T7068] handle_exit+0x21c/0x3dc [ 7052.991952][ T7068] kvm_arch_vcpu_ioctl_run+0x11f8/0x2610 [ 7052.992193][ T7068] kvm_vcpu_ioctl+0x7dc/0xc2c [ 7052.992485][ T7068] __arm64_sys_ioctl+0x18c/0x244 [ 7052.992740][ T7068] invoke_syscall+0x90/0x2b4 [ 7052.993027][ T7068] el0_svc_common+0x180/0x2f4 [ 7052.993327][ T7068] do_el0_svc+0x58/0x74 [ 7052.993674][ T7068] el0_svc+0x58/0x164 [ 7052.993921][ T7068] el0t_64_sync_handler+0x84/0x12c [ 7052.994154][ T7068] el0t_64_sync+0x198/0x19c [ 7058.733535][ T7072] FAULT_INJECTION: forcing a failure. [ 7058.733535][ T7072] name failslab, interval 1, probability 0, space 0, times 0 [ 7058.760105][ T7072] CPU: 0 UID: 0 PID: 7072 Comm: syz.2.1449 Not tainted syzkaller #0 PREEMPT [ 7058.760481][ T7072] Hardware name: linux,dummy-virt (DT) [ 7058.760589][ T7072] Call trace: [ 7058.760671][ T7072] show_stack+0x2c/0x3c (C) [ 7058.761023][ T7072] __dump_stack+0x30/0x40 [ 7058.761219][ T7072] dump_stack_lvl+0xd8/0x12c [ 7058.761437][ T7072] dump_stack+0x1c/0x28 [ 7058.761625][ T7072] should_fail_ex+0x570/0x6e0 [ 7058.761853][ T7072] should_failslab+0xb8/0xec [ 7058.762087][ T7072] __kmalloc_noprof+0xdc/0x4b8 [ 7058.762307][ T7072] tomoyo_realpath_from_path+0xdc/0x628 [ 7058.762542][ T7072] tomoyo_path_number_perm+0x13c/0x33c [ 7058.762851][ T7072] tomoyo_file_ioctl+0x2c/0x3c [ 7058.763092][ T7072] security_file_ioctl+0xe8/0x2f0 [ 7058.763347][ T7072] __arm64_sys_ioctl+0xd0/0x244 [ 7058.763641][ T7072] invoke_syscall+0x90/0x2b4 [ 7058.763934][ T7072] el0_svc_common+0x180/0x2f4 [ 7058.764212][ T7072] do_el0_svc+0x58/0x74 [ 7058.764513][ T7072] el0_svc+0x58/0x164 [ 7058.764742][ T7072] el0t_64_sync_handler+0x84/0x12c [ 7058.764971][ T7072] el0t_64_sync+0x198/0x19c [ 7058.877928][ T7072] ERROR: Out of memory at tomoyo_realpath_from_path. [ 7076.961984][ T7082] FAULT_INJECTION: forcing a failure. [ 7076.961984][ T7082] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 7076.969499][ T7082] CPU: 0 UID: 0 PID: 7082 Comm: syz.2.1453 Not tainted syzkaller #0 PREEMPT [ 7076.969876][ T7082] Hardware name: linux,dummy-virt (DT) [ 7076.969984][ T7082] Call trace: [ 7076.970059][ T7082] show_stack+0x2c/0x3c (C) [ 7076.970443][ T7082] __dump_stack+0x30/0x40 [ 7076.970652][ T7082] dump_stack_lvl+0xd8/0x12c [ 7076.970865][ T7082] dump_stack+0x1c/0x28 [ 7076.971066][ T7082] should_fail_ex+0x570/0x6e0 [ 7076.971313][ T7082] should_fail_alloc_page+0xd4/0xd8 [ 7076.971577][ T7082] prepare_alloc_pages+0x20c/0x5e0 [ 7076.971809][ T7082] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 7076.972042][ T7082] alloc_pages_mpol+0x204/0x4c8 [ 7076.972246][ T7082] alloc_pages_noprof+0x104/0x2ec [ 7076.972479][ T7082] get_free_pages_noprof+0x1c/0xc4 [ 7076.972713][ T7082] __kvm_mmu_topup_memory_cache+0x328/0x6d8 [ 7076.972921][ T7082] kvm_mmu_topup_memory_cache+0x2c/0x3c [ 7076.973120][ T7082] kvm_handle_guest_abort+0x1164/0x2e18 [ 7076.973425][ T7082] handle_exit+0x21c/0x3dc [ 7076.973651][ T7082] kvm_arch_vcpu_ioctl_run+0x11f8/0x2610 [ 7076.973903][ T7082] kvm_vcpu_ioctl+0x7dc/0xc2c [ 7076.974162][ T7082] __arm64_sys_ioctl+0x18c/0x244 [ 7076.974438][ T7082] invoke_syscall+0x90/0x2b4 [ 7076.974723][ T7082] el0_svc_common+0x180/0x2f4 [ 7076.975042][ T7082] do_el0_svc+0x58/0x74 [ 7076.975339][ T7082] el0_svc+0x58/0x164 [ 7076.975586][ T7082] el0t_64_sync_handler+0x84/0x12c [ 7076.975820][ T7082] el0t_64_sync+0x198/0x19c [ 7138.803223][ T7120] kvm [7120]: Failed to find VMA for hva 0x20c01000 [ 7195.448433][ T7142] kvm [7142]: Failed to find VMA for hva 0x20c01000 [ 7304.647231][ T7211] kvm [7211]: Failed to find VMA for hva 0x20c01000 [ 7549.820931][ T7350] kvm [7350]: Failed to find VMA for hva 0x20c01000 [ 7549.902123][ T7352] kvm [7352]: Failed to find VMA for hva 0x20c01000 [ 8213.167382][ T7737] kvm [7737]: Failed to find VMA for hva 0x20c01000 [ 8245.217541][ T7754] kvm [7754]: Failed to find VMA for hva 0x20c01000 [ 8315.340724][ T7778] kvm [7778]: Failed to find VMA for hva 0x20db6000 [ 8383.676901][ T7819] kvm [7819]: Failed to find VMA for hva 0x20c01000 [ 8580.487398][ T7950] kvm [7950]: Failed to find VMA for hva 0x20c01000 [ 8597.618722][ T7960] kvm [7960]: Failed to find VMA for hva 0x20c01000 [ 8998.137912][ T8205] kvm [8205]: Failed to find VMA for hva 0x20c01000 [ 9046.999509][ T8238] kvm [8238]: Failed to find VMA for hva 0x20c01000 [ 9080.778058][ T8254] kvm [8254]: Failed to find VMA for hva 0x20c01000 [ 9099.307285][ T8268] FAULT_INJECTION: forcing a failure. [ 9099.307285][ T8268] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 9099.335435][ T8268] CPU: 0 UID: 0 PID: 8268 Comm: syz.1.1843 Not tainted syzkaller #0 PREEMPT [ 9099.335829][ T8268] Hardware name: linux,dummy-virt (DT) [ 9099.335935][ T8268] Call trace: [ 9099.336013][ T8268] show_stack+0x2c/0x3c (C) [ 9099.336405][ T8268] __dump_stack+0x30/0x40 [ 9099.336618][ T8268] dump_stack_lvl+0xd8/0x12c [ 9099.336818][ T8268] dump_stack+0x1c/0x28 [ 9099.337011][ T8268] should_fail_ex+0x570/0x6e0 [ 9099.337244][ T8268] should_fail+0x14/0x24 [ 9099.337494][ T8268] should_fail_usercopy+0x20/0x30 [ 9099.337740][ T8268] _copy_from_iter+0x1a0/0x187c [ 9099.337967][ T8268] copy_page_from_iter+0x214/0x2fc [ 9099.338197][ T8268] anon_pipe_write+0x93c/0x1224 [ 9099.338512][ T8268] vfs_write+0xa34/0xb1c [ 9099.338789][ T8268] ksys_write+0x100/0x1f4 [ 9099.339097][ T8268] __arm64_sys_write+0x98/0xcc [ 9099.339414][ T8268] invoke_syscall+0x90/0x2b4 [ 9099.339727][ T8268] el0_svc_common+0x180/0x2f4 [ 9099.340021][ T8268] do_el0_svc+0x58/0x74 [ 9099.340324][ T8268] el0_svc+0x58/0x164 [ 9099.340568][ T8268] el0t_64_sync_handler+0x84/0x12c [ 9099.340805][ T8268] el0t_64_sync+0x198/0x19c [ 9131.711769][ T8293] FAULT_INJECTION: forcing a failure. [ 9131.711769][ T8293] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 9131.727255][ T8293] CPU: 0 UID: 0 PID: 8293 Comm: syz.1.1852 Not tainted syzkaller #0 PREEMPT [ 9131.727680][ T8293] Hardware name: linux,dummy-virt (DT) [ 9131.727789][ T8293] Call trace: [ 9131.727868][ T8293] show_stack+0x2c/0x3c (C) [ 9131.728226][ T8293] __dump_stack+0x30/0x40 [ 9131.728449][ T8293] dump_stack_lvl+0xd8/0x12c [ 9131.728663][ T8293] dump_stack+0x1c/0x28 [ 9131.728857][ T8293] should_fail_ex+0x570/0x6e0 [ 9131.729092][ T8293] should_fail+0x14/0x24 [ 9131.729327][ T8293] should_fail_usercopy+0x20/0x30 [ 9131.729577][ T8293] simple_read_from_buffer+0xd0/0x298 [ 9131.729814][ T8293] proc_fail_nth_read+0x184/0x218 [ 9131.730052][ T8293] vfs_read+0x220/0x9a8 [ 9131.730352][ T8293] ksys_read+0x100/0x1f4 [ 9131.730654][ T8293] __arm64_sys_read+0x98/0xcc [ 9131.730972][ T8293] invoke_syscall+0x90/0x2b4 [ 9131.731288][ T8293] el0_svc_common+0x180/0x2f4 [ 9131.731596][ T8293] do_el0_svc+0x58/0x74 [ 9131.731884][ T8293] el0_svc+0x58/0x164 [ 9131.732120][ T8293] el0t_64_sync_handler+0x84/0x12c [ 9131.732375][ T8293] el0t_64_sync+0x198/0x19c [ 9178.889496][ T8319] kvm [8319]: Failed to find VMA for hva 0x20c01000 [ 9321.700756][ T8411] FAULT_INJECTION: forcing a failure. [ 9321.700756][ T8411] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 9321.735048][ T8411] CPU: 0 UID: 0 PID: 8411 Comm: syz.1.1892 Not tainted syzkaller #0 PREEMPT [ 9321.735459][ T8411] Hardware name: linux,dummy-virt (DT) [ 9321.735572][ T8411] Call trace: [ 9321.735649][ T8411] show_stack+0x2c/0x3c (C) [ 9321.736003][ T8411] __dump_stack+0x30/0x40 [ 9321.736200][ T8411] dump_stack_lvl+0xd8/0x12c [ 9321.736428][ T8411] dump_stack+0x1c/0x28 [ 9321.736626][ T8411] should_fail_ex+0x570/0x6e0 [ 9321.736860][ T8411] should_fail_alloc_page+0xd4/0xd8 [ 9321.737109][ T8411] prepare_alloc_pages+0x20c/0x5e0 [ 9321.737368][ T8411] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 9321.737619][ T8411] alloc_pages_mpol+0x204/0x4c8 [ 9321.737834][ T8411] alloc_pages_noprof+0x104/0x2ec [ 9321.738044][ T8411] anon_pipe_write+0xdcc/0x1224 [ 9321.738349][ T8411] vfs_write+0xa34/0xb1c [ 9321.738629][ T8411] ksys_write+0x100/0x1f4 [ 9321.738925][ T8411] __arm64_sys_write+0x98/0xcc [ 9321.739206][ T8411] invoke_syscall+0x90/0x2b4 [ 9321.739527][ T8411] el0_svc_common+0x180/0x2f4 [ 9321.739810][ T8411] do_el0_svc+0x58/0x74 [ 9321.740087][ T8411] el0_svc+0x58/0x164 [ 9321.740328][ T8411] el0t_64_sync_handler+0x84/0x12c [ 9321.740573][ T8411] el0t_64_sync+0x198/0x19c [ 9357.468573][ T8427] FAULT_INJECTION: forcing a failure. [ 9357.468573][ T8427] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 9357.487497][ T8427] CPU: 0 UID: 0 PID: 8427 Comm: syz.2.1897 Not tainted syzkaller #0 PREEMPT [ 9357.487883][ T8427] Hardware name: linux,dummy-virt (DT) [ 9357.487991][ T8427] Call trace: [ 9357.488066][ T8427] show_stack+0x2c/0x3c (C) [ 9357.488434][ T8427] __dump_stack+0x30/0x40 [ 9357.488660][ T8427] dump_stack_lvl+0xd8/0x12c [ 9357.488862][ T8427] dump_stack+0x1c/0x28 [ 9357.489049][ T8427] should_fail_ex+0x570/0x6e0 [ 9357.489291][ T8427] should_fail+0x14/0x24 [ 9357.489526][ T8427] should_fail_usercopy+0x20/0x30 [ 9357.489771][ T8427] _copy_from_iter+0x1a0/0x187c [ 9357.490000][ T8427] copy_page_from_iter+0x214/0x2fc [ 9357.490223][ T8427] anon_pipe_write+0x93c/0x1224 [ 9357.490532][ T8427] vfs_write+0xa34/0xb1c [ 9357.490806][ T8427] ksys_write+0x100/0x1f4 [ 9357.491102][ T8427] __arm64_sys_write+0x98/0xcc [ 9357.491391][ T8427] invoke_syscall+0x90/0x2b4 [ 9357.491699][ T8427] el0_svc_common+0x180/0x2f4 [ 9357.491981][ T8427] do_el0_svc+0x58/0x74 [ 9357.492259][ T8427] el0_svc+0x58/0x164 [ 9357.492518][ T8427] el0t_64_sync_handler+0x84/0x12c [ 9357.492758][ T8427] el0t_64_sync+0x198/0x19c [ 9425.203048][ T5939] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9426.526525][ T5939] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9427.567482][ T5939] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9428.821744][ T5939] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9446.207370][ T5939] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 9446.667258][ T5939] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 9446.907879][ T5939] bond0 (unregistering): Released all slaves [ 9450.397800][ T5939] hsr_slave_0: left promiscuous mode [ 9450.478657][ T5939] hsr_slave_1: left promiscuous mode [ 9451.166548][ T5939] veth1_macvtap: left promiscuous mode [ 9451.182523][ T5939] veth0_macvtap: left promiscuous mode [ 9451.202854][ T5939] veth1_vlan: left promiscuous mode [ 9451.256831][ T5939] veth0_vlan: left promiscuous mode [ 9526.178910][ T8461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 9526.486930][ T8461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 9554.081747][ T8461] hsr_slave_0: entered promiscuous mode [ 9554.161503][ T8461] hsr_slave_1: entered promiscuous mode [ 9577.322048][ T8461] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 9577.806104][ T8461] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 9578.386694][ T8461] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 9579.077020][ T8461] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 9604.488541][ T8461] 8021q: adding VLAN 0 to HW filter on device bond0 [ 9610.687057][ T8601] kvm [8601]: Failed to find VMA for hva 0x20c01000 [ 9639.992270][ T8625] FAULT_INJECTION: forcing a failure. [ 9639.992270][ T8625] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 9640.028061][ T8625] CPU: 0 UID: 0 PID: 8625 Comm: syz.1.1933 Not tainted syzkaller #0 PREEMPT [ 9640.028474][ T8625] Hardware name: linux,dummy-virt (DT) [ 9640.028584][ T8625] Call trace: [ 9640.028663][ T8625] show_stack+0x2c/0x3c (C) [ 9640.029013][ T8625] __dump_stack+0x30/0x40 [ 9640.029206][ T8625] dump_stack_lvl+0xd8/0x12c [ 9640.029427][ T8625] dump_stack+0x1c/0x28 [ 9640.029620][ T8625] should_fail_ex+0x570/0x6e0 [ 9640.029847][ T8625] should_fail+0x14/0x24 [ 9640.030060][ T8625] should_fail_usercopy+0x20/0x30 [ 9640.030302][ T8625] _copy_from_iter+0x1a0/0x187c [ 9640.030540][ T8625] copy_page_from_iter+0x214/0x2fc [ 9640.030771][ T8625] anon_pipe_write+0x93c/0x1224 [ 9640.031086][ T8625] vfs_write+0xa34/0xb1c [ 9640.031386][ T8625] ksys_write+0x100/0x1f4 [ 9640.031657][ T8625] __arm64_sys_write+0x98/0xcc [ 9640.031923][ T8625] invoke_syscall+0x90/0x2b4 [ 9640.032207][ T8625] el0_svc_common+0x180/0x2f4 [ 9640.032516][ T8625] do_el0_svc+0x58/0x74 [ 9640.032798][ T8625] el0_svc+0x58/0x164 [ 9640.033024][ T8625] el0t_64_sync_handler+0x84/0x12c [ 9640.033262][ T8625] el0t_64_sync+0x198/0x19c [ 9699.510342][ T8461] veth0_vlan: entered promiscuous mode [ 9700.155202][ T8461] veth1_vlan: entered promiscuous mode [ 9702.912685][ T8461] veth0_macvtap: entered promiscuous mode [ 9703.508966][ T8461] veth1_macvtap: entered promiscuous mode [ 9706.612902][ T8230] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 9706.625800][ T8230] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 9706.656543][ T8230] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 9706.660215][ T8230] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 9727.259518][ T8484] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9728.777746][ T8484] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9730.083018][ T8484] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9731.269363][ T8484] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 9750.287449][ T8484] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 9750.662217][ T8484] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 9750.988353][ T8484] bond0 (unregistering): Released all slaves [ 9753.430873][ T8484] hsr_slave_0: left promiscuous mode [ 9753.566224][ T8484] hsr_slave_1: left promiscuous mode [ 9754.359224][ T8484] veth1_macvtap: left promiscuous mode [ 9754.386101][ T8484] veth0_macvtap: left promiscuous mode [ 9754.392712][ T8484] veth1_vlan: left promiscuous mode [ 9754.440352][ T8484] veth0_vlan: left promiscuous mode [ 9831.702297][ T8684] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 9832.049561][ T8684] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 9860.127437][ T8684] hsr_slave_0: entered promiscuous mode [ 9860.208558][ T8684] hsr_slave_1: entered promiscuous mode [ 9860.303608][ T8684] debugfs: 'hsr0' already exists in 'hsr' [ 9860.309270][ T8684] Cannot create hsr debugfs directory [ 9885.827161][ T8684] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 9886.317418][ T8684] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 9886.708703][ T8684] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 9887.159383][ T8684] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 9911.460615][ T8684] 8021q: adding VLAN 0 to HW filter on device bond0 [ 9997.852275][ T8684] veth0_vlan: entered promiscuous mode [ 9998.577203][ T8684] veth1_vlan: entered promiscuous mode [10001.088386][ T8684] veth0_macvtap: entered promiscuous mode [10001.484592][ T8684] veth1_macvtap: entered promiscuous mode [10004.087450][ T6511] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [10004.105853][ T6511] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [10004.137139][ T6511] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [10004.149049][ T6511] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [10309.177362][ T9101] FAULT_INJECTION: forcing a failure. [10309.177362][ T9101] name fail_usercopy, interval 1, probability 0, space 0, times 0 [10309.186963][ T9101] CPU: 0 UID: 0 PID: 9101 Comm: syz.1.2031 Not tainted syzkaller #0 PREEMPT [10309.187385][ T9101] Hardware name: linux,dummy-virt (DT) [10309.187499][ T9101] Call trace: [10309.187574][ T9101] show_stack+0x2c/0x3c (C) [10309.187947][ T9101] __dump_stack+0x30/0x40 [10309.188147][ T9101] dump_stack_lvl+0xd8/0x12c [10309.188375][ T9101] dump_stack+0x1c/0x28 [10309.188587][ T9101] should_fail_ex+0x570/0x6e0 [10309.188825][ T9101] should_fail+0x14/0x24 [10309.189048][ T9101] should_fail_usercopy+0x20/0x30 [10309.189298][ T9101] simple_read_from_buffer+0xd0/0x298 [10309.189532][ T9101] proc_fail_nth_read+0x184/0x218 [10309.189743][ T9101] vfs_read+0x220/0x9a8 [10309.190016][ T9101] ksys_read+0x100/0x1f4 [10309.190282][ T9101] __arm64_sys_read+0x98/0xcc [10309.190580][ T9101] invoke_syscall+0x90/0x2b4 [10309.190920][ T9101] el0_svc_common+0x180/0x2f4 [10309.191230][ T9101] do_el0_svc+0x58/0x74 [10309.191560][ T9101] el0_svc+0x58/0x164 [10309.191801][ T9101] el0t_64_sync_handler+0x84/0x12c [10309.192037][ T9101] el0t_64_sync+0x198/0x19c [10436.215015][ T9165] ================================================================== [10436.215641][ T9165] BUG: KASAN: invalid-access in __kvm_pgtable_walk+0x8e4/0xa68 [10436.216102][ T9165] Read of size 8 at addr c2f000001fe74000 by task syz.1.2050/9165 [10436.216346][ T9165] Pointer tag: [c2], memory tag: [fe] [10436.216480][ T9165] [10436.216682][ T9165] CPU: 0 UID: 0 PID: 9165 Comm: syz.1.2050 Not tainted syzkaller #0 PREEMPT [10436.216908][ T9165] Hardware name: linux,dummy-virt (DT) [10436.217002][ T9165] Call trace: [10436.217115][ T9165] show_stack+0x2c/0x3c (C) [10436.217460][ T9165] __dump_stack+0x30/0x40 [10436.217657][ T9165] dump_stack_lvl+0xd8/0x12c [10436.217843][ T9165] print_address_description+0xac/0x288 [10436.218097][ T9165] print_report+0x84/0xa0 [10436.218348][ T9165] kasan_report+0xb0/0x110 [10436.218571][ T9165] kasan_tag_mismatch+0x28/0x3c [10436.218799][ T9165] __hwasan_tag_mismatch+0x30/0x60 [10436.219111][ T9165] __kvm_pgtable_walk+0x8e4/0xa68 [10436.219400][ T9165] kvm_pgtable_walk+0x294/0x468 [10436.219654][ T9165] kvm_pgtable_stage2_destroy_range+0x60/0xb4 [10436.219929][ T9165] kvm_free_stage2_pgd+0x198/0x28c [10436.220193][ T9165] kvm_uninit_stage2_mmu+0x20/0x38 [10436.220475][ T9165] kvm_arch_flush_shadow_all+0x1a8/0x1e0 [10436.220749][ T9165] kvm_mmu_notifier_release+0x48/0xa8 [10436.221005][ T9165] mmu_notifier_unregister+0x128/0x42c [10436.221249][ T9165] kvm_put_kvm+0x6a0/0xfa8 [10436.221475][ T9165] kvm_vm_release+0x58/0x78 [10436.221720][ T9165] __fput+0x4ac/0x980 [10436.221910][ T9165] ____fput+0x20/0x58 [10436.222092][ T9165] task_work_run+0x1bc/0x254 [10436.222308][ T9165] do_notify_resume+0x1bc/0x270 [10436.222681][ T9165] el0_svc+0xb8/0x164 [10436.222949][ T9165] el0t_64_sync_handler+0x84/0x12c [10436.223191][ T9165] el0t_64_sync+0x198/0x19c [10436.223467][ T9165] [10436.223655][ T9165] The buggy address belongs to the physical page: [10436.224756][ T9165] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5fe74 [10436.225127][ T9165] flags: 0x1ffcf4000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x3d) [10436.226274][ T9165] raw: 01ffcf4000000000 ffffc1ffc04cc908 ffffc1ffc060cb48 0000000000000000 [10436.226534][ T9165] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [10436.226738][ T9165] page dumped because: kasan: bad access detected [10436.226890][ T9165] [10436.226996][ T9165] Memory state around the buggy address: [10436.227367][ T9165] fff000001fe73e00: a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 [10436.227569][ T9165] fff000001fe73f00: a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 a5 [10436.227754][ T9165] >fff000001fe74000: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [10436.227886][ T9165] ^ [10436.228120][ T9165] fff000001fe74100: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [10436.228309][ T9165] fff000001fe74200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [10436.228519][ T9165] ================================================================== [10436.444915][ T9165] Disabling lock debugging due to kernel taint [10436.445762][ T9165] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5fe74 [10436.446190][ T9165] flags: 0x1ffcf4000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x3d) [10436.446643][ T9165] raw: 01ffcf4000000000 ffffc1ffc04cc908 ffffc1ffc060cb48 0000000000000000 [10436.446992][ T9165] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [10436.447248][ T9165] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0) [10436.448322][ T9165] ------------[ cut here ]------------ [10436.448470][ T9165] kernel BUG at ./include/linux/mm.h:1036! [10436.449365][ T9165] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP [10436.459073][ T9165] Modules linked in: [10436.460826][ T9165] CPU: 0 UID: 0 PID: 9165 Comm: syz.1.2050 Tainted: G B syzkaller #0 PREEMPT [10436.462255][ T9165] Tainted: [B]=BAD_PAGE [10436.462922][ T9165] Hardware name: linux,dummy-virt (DT) [10436.463915][ T9165] pstate: 60402009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [10436.465170][ T9165] pc : kvm_s2_put_page+0x374/0x3a0 [10436.466175][ T9165] lr : kvm_s2_put_page+0x374/0x3a0 [10436.467153][ T9165] sp : ffff80008e807830 [10436.467858][ T9165] x29: ffff80008e807830 x28: c2f000001fe74000 x27: c2f000001fe74000 [10436.469452][ T9165] x26: 00000000000000ff x25: ffff800087396000 x24: ffffc1ffc0000000 [10436.470745][ T9165] x23: ffffc1ffc07f9d08 x22: 0000000000000000 x21: ffffc1ffc07f9d34 [10436.471998][ T9165] x20: 0000000000000000 x19: ffffc1ffc07f9d00 x18: 0000000000001b80 [10436.473327][ T9165] x17: 00000000057ec480 x16: 00000000ed9a6206 x15: fff0000072d7e404 [10436.474607][ T9165] x14: 0000000000000000 x13: fff000001e349d88 x12: 0000000000000001 [10436.475917][ T9165] x11: 0000000000000000 x10: 0000000000ff0100 x9 : 9e0f24da336ef600 [10436.477388][ T9165] x8 : 9e0f24da336ef600 x7 : 0000000000000000 x6 : ffff80008048ab34 [10436.478698][ T9165] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80008074aff8 [10436.480003][ T9165] x2 : 0000000000000002 x1 : 0000000100000000 x0 : 000000000000003e [10436.481377][ T9165] Call trace: [10436.482026][ T9165] kvm_s2_put_page+0x374/0x3a0 (P) [10436.482986][ T9165] stage2_free_walker+0xdc/0x264 [10436.483927][ T9165] __kvm_pgtable_walk+0x7d8/0xa68 [10436.484840][ T9165] kvm_pgtable_walk+0x294/0x468 [10436.485722][ T9165] kvm_pgtable_stage2_destroy_range+0x60/0xb4 [10436.486687][ T9165] kvm_free_stage2_pgd+0x198/0x28c [10436.487594][ T9165] kvm_uninit_stage2_mmu+0x20/0x38 [10436.488488][ T9165] kvm_arch_flush_shadow_all+0x1a8/0x1e0 [10436.489428][ T9165] kvm_mmu_notifier_release+0x48/0xa8 [10436.490397][ T9165] mmu_notifier_unregister+0x128/0x42c [10436.491353][ T9165] kvm_put_kvm+0x6a0/0xfa8 [10436.492149][ T9165] kvm_vm_release+0x58/0x78 [10436.493016][ T9165] __fput+0x4ac/0x980 [10436.493769][ T9165] ____fput+0x20/0x58 [10436.494523][ T9165] task_work_run+0x1bc/0x254 [10436.495350][ T9165] do_notify_resume+0x1bc/0x270 [10436.496238][ T9165] el0_svc+0xb8/0x164 [10436.497045][ T9165] el0t_64_sync_handler+0x84/0x12c [10436.497941][ T9165] el0t_64_sync+0x198/0x19c [10436.499326][ T9165] Code: 900377c1 910e9421 aa1303e0 97f9c9f2 (d4210000) [10436.501076][ T9165] ---[ end trace 0000000000000000 ]--- [10436.502619][ T9165] Kernel panic - not syncing: Oops - BUG: Fatal exception [10436.504601][ T9165] Kernel Offset: disabled [10436.505266][ T9165] CPU features: 0x000000,0001a300,5f7c67c1,057ffe1f [10436.506335][ T9165] Memory Limit: none [10436.508002][ T9165] Rebooting in 86400 seconds.. VM DIAGNOSIS: 12:09:54 Registers: info registers vcpu 0 CPU#0 PC=ffff800082159154 X00=0000000000000003 X01=0000000000000002 X02=0000000000000001 X03=ffff800082159050 X04=0000000000000001 X05=0000000000000001 X06=0000000000000000 X07=ffff800081f1ef70 X08=10f000000d9b9d80 X09=0000000000000000 X10=0000000000ff0100 X11=00000000000000fe X12=0000000000000002 X13=0000000000000002 X14=0000000000000000 X15=0000000000000307 X16=0000000000000010 X17=0000000000000000 X18=000000000032ac00 X19=efff800000000000 X20=f5f000000dcb4880 X21=84ff80008c4bb018 X22=0000000000000002 X23=f5f000000dcb497c X24=00000000000000f5 X25=f5f000000dcb4ac8 X26=f5f000000dcb48c8 X27=00000000000000f5 X28=00000000000000f5 X29=ffff80008c4f7b40 X30=ffff800082159154 SP=ffff80008c4f7b30 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0f00000000000000:0f00000000000000 Z01=0000000f00000000:0000000000000000 Z02=000000000000000f:0000000000000000 Z03=00d000a800000000:0000000000000000 Z04=0000000000000000:0000000000000002 Z05=000000000000000f:0000000000000002 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffe7a4b350:0000ffffe7a4b350 Z17=ffffff80ffffffd0:0000ffffe7a4b320 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000