last executing test programs:

1h57m1.382610665s ago: executing program 1 (id=162):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, <r4=>0xffffffffffffffff, 0x1})
write$eventfd(r4, &(0x7f00000001c0)=0xffffff7f, 0xff25)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f00000000c0)=@attr_riscv64=@attr_aplic={0x0, 0x1, @valid=0x1fdc, &(0x7f0000000080)=0x9})
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r8, 0xae03, 0x62)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x46, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x100001, 0xffc0000, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x93})
write$eventfd(r7, &(0x7f00000001c0)=0x3, 0xfdef)
r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x80000, 0x10000, 0x0, 0x2, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r10, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000180)={0x8, <r13=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r12, 0xae80, 0x0)
r14 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0x84000052, [0x5, 0x81, 0x9, 0x4, 0x2]}}, @hvc={0x32, 0x40, {0x8400000b, [0x4d5c, 0x800, 0x2, 0xb, 0xfff]}}], 0x80}, 0x0, 0x0)
ioctl$KVM_RUN(r15, 0xae80, 0x0)

1h56m48.954911013s ago: executing program 1 (id=165):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000340), 0xc0040, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000280)={0xffffffffffffffff, 0x2, 0x1})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r3, 0x400454c8, 0x40)
r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r6, 0xc018aec0, &(0x7f00000000c0)={0x1})
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x9, 0x10000, 0x0, 0xa, 0x2}}], 0xfffffffffffffee1}, 0x0, 0x0)
r9 = syz_kvm_vgic_v3_setup(r7, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x3a)
ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000080)={0xb, 0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x38)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3})
ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000300)=@attr_arm64={0x0, 0x3, 0x2, &(0x7f00000002c0)=0x48d})
r13 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x400454c9, 0x40)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r13, 0x4068aea3, &(0x7f0000000000))

1h56m41.310397784s ago: executing program 0 (id=166):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000780), 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, 0xfffffffffffffffe)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x10)

1h56m37.09854561s ago: executing program 1 (id=167):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) (async)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_vgic_v3_setup(r2, 0x3, 0x320)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x10)
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r5, 0x4068aea3, &(0x7f00000000c0))
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x5) (async)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000040)={0x6, <r8=>0xffffffffffffffff})
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x0, 0xa, 0x20010, r7, 0x0) (async)
r9 = ioctl$KVM_GET_STATS_FD_vm(r6, 0xaece)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000000)={0x1, 0x50000, 0x0, r9, 0x8}) (async)
ioctl$KVM_RUN(r7, 0xae80, 0x0) (async)
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x8933, 0x0)

1h56m34.830160172s ago: executing program 0 (id=168):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x23) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x8, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x67, 0x1, 0xb, 0x0, 0x0, 0x7, 0x1, 0xf, 0xa3, 0x0, 0x6, 0xaa, 0x0, 0x3, 0x6, 0x8, 0x9f, 0x4, 0x9, '\x00', 0x1, 0x1})
write$eventfd(r2, &(0x7f00000001c0)=0x9, 0x5d)

1h56m28.619702946s ago: executing program 0 (id=169):
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2a)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x5)
r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
r6 = mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r5, 0x300000a, 0x8010, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000100)="4652e7ba453fc5b5b197175286fb0403cdaf313c30d318fd1ee766e6da38acfd4bf5c677712c488649af902f3c2b817142884f27ccdb04ed695e19b07a553e100fc6d297bb9aab2a", 0x0, 0x48)
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000006c0)={0x0, &(0x7f0000000300)=[@eret={0xe6, 0x18, 0x9}, @svc={0x122, 0x40, {0x80008000, [0x5, 0x100, 0xd9, 0x3, 0x7f]}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x6}}, @msr={0x14, 0x20, {0x603000000013c213, 0x9}}, @smc={0x1e, 0x40, {0x8400000f, [0x5, 0xffffffffffff3bbf, 0x4, 0x7fffffffffffffff, 0x8]}}, @mrs={0xbe, 0x18, {0x6030000000138012}}, @memwrite={0x6e, 0x30, @generic={0x3000, 0x38a, 0x8}}, @eret={0xe6, 0x18}, @hvc={0x32, 0x40, {0x84000011, [0x0, 0x7f, 0xfffffffffffffff7, 0xc, 0x5]}}, @uexit={0x0, 0x18, 0xb}, @code={0xa, 0x6c, {"0000206e007008d5000000ba0004000fa0e09ed20080b8f2810180d2220180d2830180d2840180d2020000d4a0bf83d20080b8f2c10080d2c20080d2a30080d2240180d2020000d400000092008008d50000805a007008d5"}}, @uexit={0x0, 0x18, 0x7}, @smc={0x1e, 0x40, {0x8400000e, [0xfff, 0x4, 0x972, 0x8000000000000000, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x1, 0x5, 0x8, 0xe, 0x3}}, @uexit={0x0, 0x18, 0x4}, @svc={0x122, 0x40, {0x8400000f, [0x100000001, 0x2, 0x6, 0x6ee, 0x1]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x43}}, @svc={0x122, 0x40, {0x84000007, [0x9, 0x7, 0x8, 0x0, 0x9]}}, @smc={0x1e, 0x40, {0xc5000021, [0x5, 0xac7b, 0x2, 0x0, 0x401]}}, @mrs={0xbe, 0x18, {0x603000000013c529}}], 0x39c}, &(0x7f0000000700)=[@featur2={0x1, 0xa8}], 0x1)
mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r5, 0x100000a, 0x12, r7, 0x0)
r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x280000f, 0x100010, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000080)="fb0149dd033be3abf408020000001b0000005a9610fbff67521ce16f8f1f449a7ab2aa76c829d2262f00000000000000000200df38000000000000000020001e91114900", 0x0, 0xfda9)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r10, 0x4018aee3, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x100, 0x0)

1h56m27.766695752s ago: executing program 1 (id=170):
munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) (async)
r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000880)={0x0, &(0x7f00000002c0)=[@eret={0xe6, 0x18, 0xa9}, @smc={0x1e, 0x40, {0x40002013, [0x1, 0x9, 0x401, 0xd, 0x6]}}, @eret={0xe6, 0x18, 0x6}, @smc={0x1e, 0x40, {0x8400000a, [0x5b27, 0x1, 0x7, 0x1000, 0xa2c]}}, @eret={0xe6, 0x18, 0x8}, @msr={0x14, 0x20, {0x603000000013deab, 0x5}}, @hvc={0x32, 0x40, {0x84000007, [0x0, 0xc27c, 0xffffffffffffffff, 0x5]}}, @smc={0x1e, 0x40, {0xc4000010, [0x7, 0x9, 0xa4ef, 0x5, 0x5ba4]}}, @msr={0x14, 0x20, {0x603000000013c011, 0x5}}, @its_send_cmd={0xaa, 0x28, {0x6, 0x1, 0x4, 0x5, 0x80, 0x9}}, @msr={0x14, 0x20, {0x603000000013c02d, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x0, 0x9, 0x14f, 0x7fffffff, 0x2}}, @msr={0x14, 0x20, {0x603000000013debe, 0x1c}}, @uexit={0x0, 0x18, 0x7}, @smc={0x1e, 0x40, {0x2000050, [0xfffffffffffffffb, 0x69f, 0x5, 0x6d0, 0x200]}}, @memwrite={0x6e, 0x30, @generic={0x60000, 0x781, 0x9, 0x7}}, @svc={0x122, 0x40, {0x8400000d, [0x6, 0x2, 0x3, 0xfa13, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013e65d}}, @code={0xa, 0xb4, {"0014007f002cc01a007008d5000028d560f188d20040b8f2a10080d2a20180d2c30080d2e40080d2020000d4e0f48fd20080b0f2e10180d2c20180d2c30180d2040080d2020000d4204583d20020b8f2810180d2420180d2230180d2e40080d2020000d4a06287d20080b0f2c10180d2220080d2430180d2040180d2020000d4e05c8ad200a0b8f2610080d2c20080d2230180d2040180d2020000d400008012"}}, @code={0xa, 0x9c, {"000040bc008008d520c99ad200e0b8f2c10080d2020180d2030080d2440080d2020000d4e0679ad20060b8f2e10080d2e20180d2230080d2c40080d2020000d4c07b8ed20020b8f2a10080d2620180d2a30080d2440180d2020000d4000028d5000028d50098200e007008d560be8ed20020b8f2810180d2820180d2630080d2040180d2020000d4"}}, @svc={0x122, 0x40, {0x86000001, [0x2, 0x7fff, 0x80000001, 0x0, 0x1]}}, @code={0xa, 0x9c, {"60f89cd20060b8f2a10180d2820080d2a30180d2640180d2020000d4007008d5000008d50048215e00d8a00ee0129ad20040b0f2210080d2020080d2a30180d2640180d2020000d400c0651e403989d20060b8f2410180d2e20080d2c30080d2440080d2020000d4008008d5c0869bd200c0b8f2e10180d2220180d2430180d2640080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0x383}}, @msr={0x14, 0x20, {0x603000000013e521, 0x1}}, @uexit={0x0, 0x18, 0xf8}, @mrs={0xbe, 0x18, {0x603000000013df5d}}], 0x58c}, &(0x7f00000008c0)=[@featur1={0x1, 0x20}], 0x1)
mmap$KVM_VCPU(&(0x7f000052f000/0x4000)=nil, 0x930, 0xe, 0x8032, r0, 0x0)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) (async)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x408402, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5}) (async)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c006, &(0x7f0000000240)=0x2})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0xa)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000a, 0x11, r7, 0x0) (async)
mmap$KVM_VCPU(&(0x7f00004e0000/0x4000)=nil, 0x0, 0x800005, 0x10010, r7, 0x0) (async)
mmap$KVM_VCPU(&(0x7f00008a6000/0x2000)=nil, 0x0, 0x3000002, 0x13, r7, 0x0) (async)
r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x19, 0x9b, 0xf, 0x0, 0x5, 0x48, 0x82, 0x42, 0x48, 0x86, 0xdd, 0x5, 0x0, 0x100001, 0x12f, 0x0, 0x3, 0x1, 0x8, '\x00', 0x5, 0x80000008}) (async)
write$eventfd(r9, &(0x7f00000001c0)=0x3, 0x8e80) (async)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) (async)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000000)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x8400000e, [0x99b, 0x100000003, 0x5, 0x101, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r14, 0xae80, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000f54000/0x2000)=nil, r10, 0x2, 0x1010, r14, 0x0)

1h56m20.106366764s ago: executing program 0 (id=171):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b656cf3f1, 0xffffffffffffffff, 0x20000000)

1h56m19.927856454s ago: executing program 1 (id=172):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, 0x0, 0x1000004, 0x80010, r0, 0x0) (async)
r1 = mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, 0x0, 0x1000004, 0x80010, r0, 0x0)
munmap$KVM_VCPU(r1, 0x2)
ioctl$KVM_GET_REGS(r0, 0x8360ae81, &(0x7f0000000000)) (async)
ioctl$KVM_GET_REGS(r0, 0x8360ae81, &(0x7f0000000000))
ioctl$KVM_DIRTY_TLB(0xffffffffffffffff, 0x4010aeaa, &(0x7f00000000c0)={0x2d05b9a2, 0x4})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, r2, 0x2000008, 0x810, r3, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, r2, 0x2000008, 0x810, r3, 0x0)
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, r4, 0x2000003, 0x4000010, r0, 0x0) (async)
r5 = mmap$KVM_VCPU(&(0x7f0000003000/0x1000)=nil, r4, 0x2000003, 0x4000010, r0, 0x0)
r6 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
ioctl$KVM_CHECK_EXTENSION(r6, 0xae03, 0x8000000000000000)
ioctl$KVM_GET_SREGS(r6, 0x8000ae83, &(0x7f0000000100))
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000005c0)={0x0, &(0x7f0000000240)=[@its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x2, 0xb, 0xffffff40, 0x8f, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x1, 0x5, 0x200, 0x401, 0x2}}, @uexit={0x0, 0x18, 0x6}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x401, 0xb}}, @smc={0x1e, 0x40, {0x84000008, [0x5, 0x100000000, 0x0, 0x1, 0x4]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x216}}, @svc={0x122, 0x40, {0xffff, [0x0, 0x9, 0x5, 0x200, 0x100000001]}}, @code={0xa, 0x84, {"007008d5000028d5000092d20040b8f2e10180d2220180d2230180d2640080d2020000d4e0d28ad20060b8f2c10180d2e20180d2c30180d2640180d2020000d4008008d5000028d5007008d5a00787d200e0b8f2210080d2620080d2630080d2840080d2020000d4000880b8007008d5"}}, @uexit={0x0, 0x18, 0x6}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x3, 0xb, 0x1, 0xf, 0x2}}, @svc={0x122, 0x40, {0xc4000005, [0xa742, 0xbd35, 0xe7ea, 0x1, 0xfffffffffffffff9]}}, @eret={0xe6, 0x18, 0x8}, @msr={0x14, 0x20, {0x603000000013c685, 0x9}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x23b}}, @svc={0x122, 0x40, {0xc400000d, [0x0, 0x4, 0xeeef, 0x0, 0x2]}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x4, 0x1, 0x9, 0x4, 0x4}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x3e2}}, @eret={0xe6, 0x18, 0x7}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x3, 0x9, 0x0, 0x2c9, 0x2}}], 0x374}, &(0x7f0000000600)=[@featur1={0x1, 0x5a}], 0x1)
ioctl$KVM_GET_REGS(r6, 0x8360ae81, &(0x7f0000000640)) (async)
ioctl$KVM_GET_REGS(r6, 0x8360ae81, &(0x7f0000000640))
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000700)="9c0ead3a781e407482c0263686d0d58599e1df7224ec1ac59f7008553fa6121ca0d86f4796a68861ac45498b87bb7461844aee662dbc81d5458f24fa5ccda6374dc636356954892b", 0x0, 0x48)
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000003000/0x400000)=nil) (async)
r8 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000003000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000b80)={0x0, &(0x7f0000000780)=[@svc={0x122, 0x40, {0x8400000e, [0x3d, 0x400, 0x4, 0xe0, 0x2122]}}, @svc={0x122, 0x40, {0x84000009, [0x4, 0x8, 0x6, 0x7, 0x6]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x78, 0x5, 0x1e}}, @hvc={0x32, 0x40, {0x86000001, [0x1, 0x0, 0xf74, 0x4, 0x4]}}, @irq_setup={0x46, 0x18, {0x2, 0xb8}}, @hvc={0x32, 0x40, {0x84000053, [0x0, 0x8000000000000000, 0x3, 0x5, 0x3]}}, @msr={0x14, 0x20, {0x603000000013df4b, 0x10000}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x2b8}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x3, 0x7fff, 0x6}}, @irq_setup={0x46, 0x18, {0x4, 0x282}}, @hvc={0x32, 0x40, {0x3f000000, [0x80000000, 0x6e, 0x7, 0x3, 0x4]}}, @mrs={0xbe, 0x18, {0x603000000013deb4}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0x10, 0x8, 0x2, 0x3}}, @code={0xa, 0x6c, {"008008d5007008d500800048e03298d20020b0f2a10080d2c20080d2230080d2640080d2020000d440d682d20020b0f2e10080d2220080d2830080d2040180d2020000d4008008d50000407d00800048008008d5007008d5"}}, @svc={0x122, 0x40, {0x2000, [0x8, 0x7fffffff, 0x7, 0x1ff, 0x100]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1600, 0xffffffffffffffff, 0xb}}, @mrs={0xbe, 0x18, {0x603000000013df12}}, @msr={0x14, 0x20, {0x603000000013c01c, 0x2}}, @hvc={0x32, 0x40, {0xc400000d, [0x7, 0x9, 0x3, 0x2, 0x8]}}, @msr={0x14, 0x20, {0x603000000013de82, 0xfff}}], 0x3c4}, &(0x7f0000000bc0)=[@featur1={0x1, 0x40}], 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000c00)=@x86={0x5, 0x9, 0x3, 0x0, 0x4, 0xf, 0x1, 0x80, 0x6, 0x5, 0xf5, 0x0, 0x0, 0x4, 0x4d1, 0x5, 0x6, 0xa, 0xa, '\x00', 0x2, 0x8}) (async)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000c00)=@x86={0x5, 0x9, 0x3, 0x0, 0x4, 0xf, 0x1, 0x80, 0x6, 0x5, 0xf5, 0x0, 0x0, 0x4, 0x4d1, 0x5, 0x6, 0xa, 0xa, '\x00', 0x2, 0x8})
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000c40)=@arm64={0x9, 0x6e, 0x8, '\x00', 0x6})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000c80)="2f2a0dcce93499b8a8735bf332401ffe65b86e2fb9e654144716a33fa02ef48bf7ec83ebbbe5fdf9aeff631f594ce49f11dba44ca27b8e12a1c03876469bc5a0af1a6d3a9ff4292d", 0x0, 0x48)
munmap$KVM_VCPU(0x0, 0x4)
munmap$KVM_VCPU(r5, 0x799) (async)
munmap$KVM_VCPU(r5, 0x799)
ioctl$KVM_PRE_FAULT_MEMORY(r3, 0xc040aed5, &(0x7f0000000d00)={0xeeee8000, 0x11c000})
munmap(&(0x7f0000fff000/0x1000)=nil, 0x1000)
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000364000/0x400000)=nil) (async)
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000364000/0x400000)=nil)
write$eventfd(r6, &(0x7f0000000d40)=0xd04, 0x8)
munmap$KVM_VCPU(r5, 0x1)
mmap$KVM_VCPU(&(0x7f0000616000/0x4000)=nil, r2, 0x2000001, 0x4000010, r7, 0x0)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000000dc0)=@arm64_fp_extra={0x60200000001000d5, &(0x7f0000000d80)=0x6})

1h56m14.546978944s ago: executing program 1 (id=173):
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e)
ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r2, 0x4004aec2, &(0x7f0000000040)=0x5)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
r5 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8}) (async, rerun: 32)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f000000f000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0)
r9 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x6, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f0000000000)=@arm64_sve={0x6080000000150300, 0x0})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000680)={0x0, &(0x7f0000000700)=[@mrs={0xbe, 0x18, {0x603000000013804c}}, @msr={0x14, 0x20, {0x6030000000138007, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x100, 0x9, 0x5}}, @irq_setup={0x46, 0x18, {0x4, 0x182}}, @smc={0x1e, 0x40, {0x8400000b, [0x1, 0x0, 0x7, 0x101, 0x40]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x2c9}}, @eret={0xe6, 0x18, 0x6}, @smc={0x1e, 0x40, {0x2000, [0x7, 0x4, 0x5e6f, 0x2948, 0x7113]}}, @irq_setup={0x46, 0x18, {0x3, 0x23d}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x226}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x55}}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x3, 0x341}}, @eret={0xe6, 0x18, 0x6}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x2db}}, @svc={0x122, 0x40, {0x2000, [0xc, 0x3, 0x8000, 0x0, 0x6]}}, @uexit={0x0, 0x18, 0xf8c}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x1f4}}, @memwrite={0x6e, 0x30, @generic={0x3000, 0x76, 0x1, 0x7}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0xc3}}, @code={0xa, 0xb4, {"007008d5005489d20060b0f2a10080d2420180d2a30180d2e40080d2020000d460d784d20040b8f2810080d2820180d2430080d2640180d2020000d4807098d20000b0f2a10080d2020180d2a30080d2c40180d2020000d4000008d5007008d5c04893d200c0b8f2a10180d2020080d2e30180d2240080d2020000d40054c01a000008d5a0b881d20020b0f2c10180d2a20080d2630080d2440180d2020000d4"}}, @code={0xa, 0x9c, {"000028d5000028d5a0f585d200c0b0f2410080d2c20080d2a30080d2a40180d2020000d4c0c290d20020b0f2410180d2820080d2830180d2640180d2020000d4007008d5007008d5000008d5000028d5804d93d20000b8f2810080d2e20180d2630180d2640180d2020000d4e0588ed200a0b8f2810180d2820180d2830080d2a40080d2020000d4"}}, @uexit={0x0, 0x18, 0xee}, @uexit={0x0, 0x18, 0x3}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x27}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xc00, 0x2, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x8, 0x1}}], 0x4f8}, &(0x7f00000006c0)=[@featur2={0x1, 0x5}], 0x1)

1h56m11.979275402s ago: executing program 0 (id=174):
openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000000)={0xd290, 0xdddd1000})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x5, 0xffffffffffffffff, 0x1})
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x123100, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6100, 0x4, 0xa}}], 0x30}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x300)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000080)={0x3})
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r8 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x810, r7, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x9)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f0000000100)=@arm64_bitmap={0x6030000000160001, &(0x7f00000000c0)})
ioctl$KVM_CREATE_VM(r9, 0xae01, 0xf)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000ef0000/0x2000)=nil, 0x0, 0x2000001, 0x4010, r6, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)

1h56m1.43036121s ago: executing program 0 (id=175):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a5a000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0x100080001, 0x5, 0x101, 0x13]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a5a000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0x100080001, 0x5, 0x101, 0x13]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async)

1h55m28.568189342s ago: executing program 32 (id=173):
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e)
ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x30}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r2, 0x4004aec2, &(0x7f0000000040)=0x5)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
r5 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8}) (async, rerun: 32)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f000000f000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0)
r9 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x6, 0x0, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f0000000000)=@arm64_sve={0x6080000000150300, 0x0})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000680)={0x0, &(0x7f0000000700)=[@mrs={0xbe, 0x18, {0x603000000013804c}}, @msr={0x14, 0x20, {0x6030000000138007, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x100, 0x9, 0x5}}, @irq_setup={0x46, 0x18, {0x4, 0x182}}, @smc={0x1e, 0x40, {0x8400000b, [0x1, 0x0, 0x7, 0x101, 0x40]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x2c9}}, @eret={0xe6, 0x18, 0x6}, @smc={0x1e, 0x40, {0x2000, [0x7, 0x4, 0x5e6f, 0x2948, 0x7113]}}, @irq_setup={0x46, 0x18, {0x3, 0x23d}}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x226}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x55}}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x3, 0x341}}, @eret={0xe6, 0x18, 0x6}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x2db}}, @svc={0x122, 0x40, {0x2000, [0xc, 0x3, 0x8000, 0x0, 0x6]}}, @uexit={0x0, 0x18, 0xf8c}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x1f4}}, @memwrite={0x6e, 0x30, @generic={0x3000, 0x76, 0x1, 0x7}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0xc3}}, @code={0xa, 0xb4, {"007008d5005489d20060b0f2a10080d2420180d2a30180d2e40080d2020000d460d784d20040b8f2810080d2820180d2430080d2640180d2020000d4807098d20000b0f2a10080d2020180d2a30080d2c40180d2020000d4000008d5007008d5c04893d200c0b8f2a10180d2020080d2e30180d2240080d2020000d40054c01a000008d5a0b881d20020b0f2c10180d2a20080d2630080d2440180d2020000d4"}}, @code={0xa, 0x9c, {"000028d5000028d5a0f585d200c0b0f2410080d2c20080d2a30080d2a40180d2020000d4c0c290d20020b0f2410180d2820080d2830180d2640180d2020000d4007008d5007008d5000008d5000028d5804d93d20000b8f2810080d2e20180d2630180d2640180d2020000d4e0588ed200a0b8f2810180d2820180d2830080d2a40080d2020000d4"}}, @uexit={0x0, 0x18, 0xee}, @uexit={0x0, 0x18, 0x3}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x27}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xc00, 0x2, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x8, 0x1}}], 0x4f8}, &(0x7f00000006c0)=[@featur2={0x1, 0x5}], 0x1)

1h55m14.888536281s ago: executing program 33 (id=175):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a5a000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0x100080001, 0x5, 0x101, 0x13]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000a5a000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0x100080001, 0x5, 0x101, 0x13]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) (async)

49m37.526668636s ago: executing program 2 (id=742):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
r6 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r5, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r5, 0x0)
r7 = eventfd2(0x70, 0x0)
close(r7)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
write$eventfd(r7, &(0x7f0000000100)=0xfffffffffffffffe, 0x8)
r8 = eventfd2(0x0, 0x0)
close(r8)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r8, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CLEAR_DIRTY_LOG(r1, 0xc018aec0, &(0x7f0000000740)={0x10002, 0x1c0, 0x0, &(0x7f0000000340)=[0x5, 0x3cdf73e0, 0x9, 0x10, 0xc87c, 0xfffffffffffffffd, 0x2, 0x32, 0x8, 0x5, 0x100000001, 0x8a02, 0x7, 0xf9, 0x4, 0x100, 0x5, 0x9, 0x1c0, 0xffff, 0x2, 0x9, 0x100000001, 0x8000000000000001, 0xe, 0x1e, 0x7, 0x7ef, 0x10000, 0x4, 0x7, 0x2, 0x8, 0x1, 0xfffffffffffffffe, 0xff, 0x9, 0x9de6, 0x5, 0xa, 0x401, 0x6, 0x6, 0x1, 0x2, 0x7fffffff, 0x4, 0x3, 0x3, 0x4, 0xfffffffffffffff3, 0x2, 0xfffffffffffffffb, 0x5, 0x1, 0x6c, 0x6f09, 0xce7b, 0x8, 0x7ff, 0xfffffffffffffffb, 0x0, 0x38aa, 0x9, 0xffffffffffffffff, 0x400, 0xfff, 0x3ff, 0x7fff, 0x1, 0x2, 0x0, 0x7, 0x9, 0xbf, 0x800, 0x4, 0x3, 0x3, 0x6, 0x101, 0x80000001, 0x6, 0x487, 0x7cc2f64e, 0x6, 0x8, 0xffffffff, 0x7, 0x4, 0x6b, 0x2, 0x0, 0xa8, 0x4, 0xfffffffffffffff8, 0x5, 0x40, 0x8, 0xffffffffffffffff, 0x8000000000000002, 0x7ff, 0xffffffff, 0x7fff, 0x94f, 0x4, 0x9, 0x1, 0x4, 0x6, 0x0, 0x6, 0x84, 0xa2, 0x6, 0x9, 0x4, 0x5, 0x0, 0x8, 0x1, 0x5, 0x3, 0x1ff, 0x7fffffff, 0x900000000000, 0x6, 0x1]})
syz_kvm_add_vcpu$arm64(r9, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x81}], 0x1)
r10 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92)
syz_kvm_add_vcpu$arm64(r2, 0x0, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)

49m28.772917552s ago: executing program 3 (id=743):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x39d}}], 0x28}, 0x0, 0x0) (async)
syz_kvm_vgic_v3_setup(r1, 0xffffffffffbffffc, 0x120) (async)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async)
r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async)
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x26)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) (async)
syz_kvm_vgic_v3_setup(r8, 0x3, 0x200) (async)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000500)={0x0, 0x1, 0x25000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}], 0x28}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r11=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x4, 0x2, 0x0})

49m23.687669595s ago: executing program 2 (id=744):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x161681, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000000c0)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x4}], 0x1)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r6, 0x4008ae6a, &(0x7f0000000240)={0x3, 0x0, [{0x3, 0x5, 0x0, 0x0, @adapter={0xfff, 0x2, 0x10000, 0xf, 0x4}}, {0x49, 0x2, 0x1, 0x0, @msi={0x2, 0x40, 0xe3, 0x2}}, {0x7f, 0x3, 0x0, 0x0, @irqchip={0x5, 0xfff}}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000})
ioctl$KVM_CREATE_DEVICE(r4, 0xc018aec0, &(0x7f00000000c0)={0x1})
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x20}], 0x1, 0x0, 0x0, 0x0)

49m16.564541648s ago: executing program 3 (id=745):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, <r6=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x74, 0x86, 0xdd, 0x68, 0x0, 0x209, 0xfffffffc, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x400000000002})
write$eventfd(r6, &(0x7f00000001c0)=0x3, 0x50)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100)
ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000100)={0x1001ffd, 0x1})
ioctl$KVM_CAP_PTP_KVM(r1, 0x4068aea3, &(0x7f0000000000))
r7 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f0000000380)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffc}}, @msr={0x14, 0x20, {0x603000000013dce0, 0x7ffe}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2b)
ioctl$KVM_REGISTER_COALESCED_MMIO(r10, 0x4010ae67, &(0x7f0000000240)={0x1, 0xe000, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r10, 0x4010ae67, &(0x7f0000000080)={0x3000, 0x122000, 0x1})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r10, 0x4010ae68, &(0x7f0000001480)={0xfdfd, 0x13000, 0x1})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r10, 0x4010ae68, &(0x7f0000000080)={0x30000, 0x18000})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

49m11.889520145s ago: executing program 2 (id=746):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000000)={0x7})
r4 = eventfd2(0xfffffffc, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x0, r4})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000002c0)={0x0, 0x10000})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff, 0x1})
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000000)={0x6000})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f00000000c0)=0x200})

49m1.931695418s ago: executing program 3 (id=747):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000040)={0x0, &(0x7f0000000000)=[@irq_setup={0x46, 0x18, {0x2, 0x35d}}], 0xfffffffffffffea6}, &(0x7f0000000300)=[@featur2={0x1, 0x47}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
close(0x4)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x4)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r4, 0x4018aee3, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000080)={0x7, 0x2}})
close(0x5)

49m1.630548557s ago: executing program 2 (id=748):
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, 0x0, 0x8, 0x13, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x202600, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x8000000000000003)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, <r4=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x74, 0x86, 0xdd, 0x68, 0x0, 0x209, 0x0, 0x0, 0x3, 0x5, 0x5, '\x00', 0x1, 0x400000000002})
write$eventfd(r4, &(0x7f00000001c0)=0x3, 0x50)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x30}], 0x1)
syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x5, 0x4, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

48m53.711120101s ago: executing program 2 (id=749):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_ARM_SET_COUNTER_OFFSET(r2, 0x8040aeb6, 0xfffffffffffffffe)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$arm64(r4, 0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC=r3], 0x40}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0) (async)
r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x2, 0x0, 0xa, 0x1}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r8, 0x1, 0x100)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
r11 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, <r12=>0xffffffffffffffff, 0x1})
r13 = ioctl$KVM_CREATE_VM(r12, 0x800454d7, 0x110e22ffff)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
r14 = ioctl$KVM_GET_STATS_FD_vm(r4, 0xaece)
syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_vgic_v3_setup(r13, 0x3, 0x0) (async)
syz_kvm_vgic_v3_setup(r13, 0x3, 0x0)

48m53.161811096s ago: executing program 3 (id=750):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71ba470236fc044800fff7ffffffd249f297e87fd600000000000000002000e4ff000000f500", 0x0, 0x48)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, <r2=>0xffffffffffffffff, 0x1})
write$eventfd(r2, &(0x7f00000001c0)=0xffffff7f, 0xff25)

48m44.207245306s ago: executing program 3 (id=751):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, <r2=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r2, 0x801054db, 0x110d230008)
openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0)
r3 = syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x3, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x0, 0x0})
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000fed000/0x11000)=nil, r4, 0x8814092626858d9, 0x100010, r5, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_VM(r2, 0x801054db, 0x110d230008) (async)
openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0) (async)
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x3, 0x40) (async)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
mmap$KVM_VCPU(&(0x7f0000fed000/0x11000)=nil, r4, 0x8814092626858d9, 0x100010, r5, 0x0) (async)

48m41.590246153s ago: executing program 2 (id=752):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x33)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
r9 = ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0)
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000001c0)=@arm64_bitmap={0x6030000000160002, &(0x7f0000000180)=0x200}) (async)
ioctl$KVM_CREATE_VCPU(r9, 0xb702, 0x0)
openat$kvm(0x0, &(0x7f0000000080), 0x141001, 0x0) (async)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000100)) (async)
r13 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async)
r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@irq_setup={0x5, 0x18}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r13, 0x2, 0x100) (async)
ioctl$KVM_RUN(r15, 0xae80, 0x0)

48m33.211685207s ago: executing program 3 (id=753):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x1, 0x1ffff, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f00003af000/0x400000)=nil)
r8 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x29)
openat$kvm(0xffffffffffffff9c, 0x0, 0x800, 0x0)
ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
r11 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r10, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0)
r12 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
ioctl$KVM_CREATE_VM(r12, 0x541b, 0x2004001c)
eventfd2(0x0, 0x0)
r13 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r6, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000240)={0x8, <r14=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r13, 0xae80, 0x0)
munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000)
ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

47m55.590554886s ago: executing program 34 (id=752):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x33)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
r9 = ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0)
r10 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x1)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000001c0)=@arm64_bitmap={0x6030000000160002, &(0x7f0000000180)=0x200}) (async)
ioctl$KVM_CREATE_VCPU(r9, 0xb702, 0x0)
openat$kvm(0x0, &(0x7f0000000080), 0x141001, 0x0) (async)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000100)) (async)
r13 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async)
r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@irq_setup={0x5, 0x18}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r13, 0x2, 0x100) (async)
ioctl$KVM_RUN(r15, 0xae80, 0x0)

47m46.146978329s ago: executing program 35 (id=753):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000380)=[@its_setup={0x82, 0x28, {0x1, 0x1ffff, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f00003af000/0x400000)=nil)
r8 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x29)
openat$kvm(0xffffffffffffff9c, 0x0, 0x800, 0x0)
ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
r11 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r10, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0)
r12 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
ioctl$KVM_CREATE_VM(r12, 0x541b, 0x2004001c)
eventfd2(0x0, 0x0)
r13 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@its_setup={0x82, 0x28, {0x5, 0x3, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r6, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000240)={0x8, <r14=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r13, 0xae80, 0x0)
munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000)
ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)

36m33.538948446s ago: executing program 5 (id=791):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_S390_VCPU_FAULT(r0, 0x4008ae52, &(0x7f0000000000)=0xb6a4)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_SET_SREGS(r1, 0x4000ae84, &(0x7f0000000040)={{0x5000, 0x1001, 0xd, 0x8, 0x6d, 0x5, 0x36, 0xac, 0xb4, 0xff, 0x60, 0x7}, {0x80a0000, 0x2, 0xd, 0x1e, 0x6, 0x4, 0x4, 0x8, 0x5, 0xc3, 0x2, 0x6}, {0x8080000, 0x6000, 0xd, 0x3, 0x4, 0x1, 0x8, 0x9, 0x1, 0x6, 0x2, 0x8}, {0x100000, 0x6000, 0xd, 0x8, 0x4, 0x21, 0xe7, 0x8, 0x6, 0x40, 0x38, 0x4}, {0x2, 0xdddd1000, 0x8, 0x81, 0x5, 0x85, 0xbb, 0x2, 0x2, 0x74, 0x2, 0x3}, {0x54000, 0x202000, 0xe, 0x6, 0x2, 0xe4, 0x3, 0x3, 0x6, 0x9, 0x9, 0xff}, {0xd5d50000, 0x58000, 0x3, 0x80, 0xf, 0x8, 0x0, 0x80, 0x7, 0x93, 0x0, 0x18}, {0x2000, 0x8080000, 0x9, 0xff, 0x4c, 0xd, 0x8, 0x7, 0x81, 0x8, 0x5, 0x1}, {0x58000, 0x401}, {0x70000, 0x6}, 0x0, 0x0, 0x6000, 0x80, 0xe, 0x1000, 0x25000, [0x566b795f, 0x5, 0xed0, 0x4]})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x400000, 0x0)
r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG_arm64(r4, 0x4208ae9b, &(0x7f00000001c0)={0x0, 0x0, {[0x8, 0x2, 0x7fffffffffffffff, 0x7, 0x100000001, 0x7fffffffffffffff, 0xe031, 0x5, 0x1, 0x2, 0xec4e, 0xffffffff, 0x5, 0x33, 0xfffffffffffff801, 0x9], [0x5, 0x8, 0x8, 0xff8000000000, 0x200, 0x3646, 0x7fffffff, 0x0, 0xffffffffffffffff, 0x80000001, 0x7fff, 0x8, 0x1000, 0x81, 0x4, 0x90], [0x9, 0x1, 0x1, 0xffffffffffffff54, 0x3, 0x6, 0x81, 0xf1, 0x6, 0x9, 0x80000000, 0xfffffffffffffff7, 0x9, 0x9, 0x4, 0x7], [0x2, 0x10001, 0x2, 0x192, 0x2, 0x4, 0xa, 0x6, 0x101, 0x4, 0x100000000, 0x0, 0x4, 0x1000, 0x0, 0x3]}})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x16)
r6 = ioctl$KVM_GET_STATS_FD_cpu(r4, 0xaece)
r7 = eventfd2(0x7ff, 0x800)
ioctl$KVM_IRQFD(r5, 0x4020ae76, &(0x7f0000000400)={r6, 0xe9b, 0x2, r7})
munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x400100, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000480)={0x2})
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r3, 0x5, 0x80010, r1, 0x0)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, r9, 0x9, 0x12, r6, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r5, 0x4068aea3, &(0x7f00000004c0))
ioctl$KVM_GET_REGS(r1, 0x8360ae81, &(0x7f0000000540))
ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead)
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000600)=@x86={0xc, 0x2, 0x6, 0x0, 0x4, 0x9, 0x7, 0x0, 0x6c, 0x40, 0x6, 0x10, 0x0, 0x4, 0x6, 0x0, 0x4, 0x7, 0x4, '\x00', 0x5})
ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000680)=@riscv64_f={0x8020000005000000, &(0x7f0000000640)=0x480f})
openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x101000, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_FINALIZE(r10, 0x4004aec2, &(0x7f0000000700)=0x1)
ioctl$KVM_GET_SREGS(r1, 0x8000ae83, &(0x7f0000000740))
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r1, 0x4018aee2, &(0x7f0000000880)=@attr_pmu_init)
ioctl$KVM_CAP_ARM_MTE(0xffffffffffffffff, 0x4068aea3, &(0x7f00000008c0))

36m29.127822568s ago: executing program 4 (id=792):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x81, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r3 = syz_kvm_vgic_v3_setup(r2, 0x3, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x6, 0x382bc663, &(0x7f0000000200)=0xffffffff})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0x2, 0x10000000000000)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, 0x0)

36m21.007779388s ago: executing program 5 (id=793):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x7)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0x2, 0x2020000c)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x403ffc)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vm(r2, 0x4018aee2, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000180)={0x7, 0x2, 0x1}})
r5 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000100)={0x8})
ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1})
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x5, 0x1, 0x1000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r8, 0x8040aeb6, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
syz_kvm_setup_cpu$arm64(r6, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000840)=[{0x0, 0x0, 0x248}], 0x1, 0x0, 0x0, 0x0)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f00002cd000/0xe000)=nil, r9, 0xd, 0x40010, r4, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000500)={0x5, 0x1, 0xeeee0000, 0x2000, &(0x7f0000000000/0x2000)=nil})
munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_riscv64=@attr_config={0x0, 0x1, 0x0, &(0x7f00000000c0)=0x8})
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)

36m11.734717534s ago: executing program 4 (id=794):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x38)
ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000000)={0x2, 0x0, &(0x7f0000ffa000/0x3000)=nil}) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x1abd42, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000240)={0x1fe, 0x3, 0xffff1000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) (async, rerun: 64)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x10001, 0x6, 0xeeee0000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) (async, rerun: 64)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000001c0)={0x3, 0x0, 0x6000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (async, rerun: 32)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) (rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x2710, 0x3, 0x200000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) (async)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0) (async)
syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000240)="57ffe02b199233af1c100f993e9c1541d69a2077275a13cf", 0x0, 0x18) (async)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, 0x0) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) (async, rerun: 64)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x20080, 0x0) (rerun: 64)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, <r8=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x800000, 0x0, 0x3, 0x5, 0x8, '\x00', 0x9, 0x93}) (async)
write$eventfd(r8, &(0x7f00000001c0)=0x3, 0xfdef)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r9, 0xae03, 0x59) (async)
munmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000)

35m59.730515707s ago: executing program 5 (id=795):
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100026, &(0x7f00000001c0)=0x100000001})
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x4, 0x1, 0x0, 0x1000, &(0x7f0000ee6000/0x1000)=nil})
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f0000000380)=[@msr={0x14, 0x20, {0x603000000013d801, 0x81}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

35m58.047673691s ago: executing program 4 (id=796):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x3, 0x40000000, 0x10000, 0x0, 0x105, 0x2}}], 0x50}, 0x0, 0x0) (async, rerun: 64)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async, rerun: 64)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0) (async)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) (async)
r6 = eventfd2(0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (rerun: 32)
close(r6) (async)
r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
r11 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async)
ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0x5})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x88c80, 0x0) (async)
ioctl$KVM_SET_GUEST_DEBUG_arm64(r3, 0x4208ae9b, &(0x7f0000000340)={0x20002, 0x0, {[0x1, 0xfffffffffffffffa, 0x6, 0x10, 0x1000, 0x0, 0x0, 0x75e, 0x5, 0x3, 0xffff, 0x9, 0x5, 0x5, 0x380, 0x9], [0x8c1, 0x100000001, 0xfffffffffffffff9, 0x8, 0x80000001, 0x3ff, 0x5, 0x9, 0x3, 0x0, 0x50000000, 0x9, 0x9, 0x3, 0x80000000, 0x6], [0x0, 0x7, 0x8, 0x9, 0x1, 0x9, 0x26, 0x5, 0x8000000000000000, 0x8, 0x8, 0x7, 0x0, 0x3, 0x6, 0x5], [0x2, 0x2c8, 0x5c6, 0x10000, 0x9, 0x0, 0x8000, 0xe7, 0x7f, 0x4, 0x4, 0x1, 0x3, 0x5, 0x98, 0x2]}}) (async, rerun: 64)
r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) (rerun: 64)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, r12, 0x2000004, 0x2011, r6, 0x0) (async, rerun: 64)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bbd000/0x400000)=nil) (rerun: 64)
eventfd2(0x0, 0x0)

35m47.191008586s ago: executing program 5 (id=797):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f00000001c0)=@arm64_fp={0x6040000000100067, &(0x7f0000000200)=0x4})
ioctl$KVM_INTERRUPT(r4, 0x4004ae86, &(0x7f00000000c0)=0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000000)={0x5})
r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000000)=@x86={0x1, 0x80, 0x7, 0x0, 0x0, 0x2, 0x6e, 0xf8, 0x46, 0x3, 0x8, 0xb9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x9, '\x00', 0xff, 0x80000001})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0xc4000053, [0x9, 0x0, 0x0, 0x6, 0x800]}}], 0x40}, 0x0, 0x0)
ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18})
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0)
ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r5, 0x4068aea3, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r5, 0x4004aec2, &(0x7f0000000100)=0x4)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0xb, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)

35m41.986257467s ago: executing program 4 (id=798):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x9)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000040)={0x3, <r4=>0xffffffffffffffff, 0x2})
ioctl$KVM_CREATE_VM(r4, 0x8927, 0x110c230004)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x9) (async)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000040)={0x3, 0xffffffffffffffff, 0x2}) (async)
ioctl$KVM_CREATE_VM(r4, 0x8927, 0x110c230004) (async)

35m27.147748405s ago: executing program 5 (id=799):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0xeffffffd, 0x801)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x2, r2, 0x3})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0x3, 0x0, 0x2, r2, 0xb})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x26)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000000)={0xa, <r5=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000080)=@attr_arm64={0x0, 0x6, 0x3, &(0x7f0000000040)})
ioctl$KVM_HAS_DEVICE_ATTR(r5, 0x4018aee3, &(0x7f0000000100)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f00000000c0)=0x8000000000000000})
r6 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_REG_LIST(r7, 0xc008aeb0, &(0x7f0000000180))

35m25.538131948s ago: executing program 4 (id=800):
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x2, 0x5548, &(0x7f0000000080)=0x1000})
r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, r3, 0x0, 0x30, r2, 0x0)

35m10.363917388s ago: executing program 4 (id=801):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2e)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x11})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c807, &(0x7f0000000280)=0x1})
ioctl$KVM_KVMCLOCK_CTRL(r8, 0xaead)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000080)=@arm64={0xe6, 0x7, 0x8, '\x00', 0xff})
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000000)={0x5})
r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8, <r12=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x98, &(0x7f0000000000)=0x10})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
ioctl$KVM_RUN(r9, 0xae80, 0x0)

35m9.978702643s ago: executing program 5 (id=802):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r1, 0x4018aee3, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0xeffffffd, 0x801)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x200, 0x4000, 0x4, r5, 0x1})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x8)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x2, r5, 0x3})
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r5, 0xf})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

34m22.711258686s ago: executing program 36 (id=802):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32)
ioctl$KVM_HAS_DEVICE_ATTR_vm(r1, 0x4018aee3, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = eventfd2(0xeffffffd, 0x801)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x200, 0x4000, 0x4, r5, 0x1})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x8)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x2, r5, 0x3})
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r5, 0xf})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

34m18.209677593s ago: executing program 37 (id=801):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2e)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1)
ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x11})
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c807, &(0x7f0000000280)=0x1})
ioctl$KVM_KVMCLOCK_CTRL(r8, 0xaead)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000080)=@arm64={0xe6, 0x7, 0x8, '\x00', 0xff})
r9 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000000)={0x5})
r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8, <r12=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x98, &(0x7f0000000000)=0x10})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
ioctl$KVM_RUN(r9, 0xae80, 0x0)

15m35.648163737s ago: executing program 7 (id=866):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xfffdffffc1af0ec0}}], 0x20}, 0x0, 0xffffffffffffff92)
syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r5, 0x4018aee2, &(0x7f0000000100)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x1})
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000000)={0x5})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = openat$kvm(0x0, 0x0, 0x101282, 0x0)
r10 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
r11 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece)
ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f0000000040)=0xffffffffffffffff})
r12 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r13, 0xae03, 0xe5)
r14 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r14, 0x2000003, 0x11, r12, 0x0)
r15 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r14, 0x4, 0x10, r15, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

15m8.571316744s ago: executing program 7 (id=867):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x21)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
r5 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r4, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000fff000/0x1000)=nil, 0x930, 0x200000d, 0x110, r4, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x4c4882, 0xfffe)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x10000, 0x0, 0xa, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r8, 0x1, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
r11 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r14 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r15 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
r17 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0xffffffffffffffd3)
r18 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r13, 0xae04)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r18, 0x3, 0x11, r16, 0x0)
mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r18, 0x3, 0x11, r17, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
r19 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r19, 0x0)

15m7.607382158s ago: executing program 6 (id=868):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x12)
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0x1, <r1=>0xffffffffffffffff, 0x1})
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x15)
ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000040))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CAP_PTP_KVM(r0, 0x4068aea3, &(0x7f00000000c0))
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000140)={0xa, 0x0, [{0x74, 0x3, 0x0, 0x0, @sint={0x6, 0x4}}, {0x5, 0x2, 0x0, 0x0, @sint={0x2, 0xc90}}, {0x2, 0x1, 0x1, 0x0, @msi={0x6, 0x9, 0x1, 0x9}}, {0x6ab, 0x4, 0x0, 0x0, @sint={0x8001, 0xaa}}, {0x3, 0x1, 0x1, 0x0, @sint={0x8, 0x1}}, {0x8, 0x3, 0x0, 0x0, @sint={0x5, 0x2}}, {0x8, 0x5, 0x1, 0x0, @irqchip={0x0, 0x6}}, {0x1, 0x0, 0x1, 0x0, @sint={0x5, 0x9}}, {0x60fcba4, 0x5, 0x1, 0x0, @sint={0x7ff, 0x71e}}, {0x8, 0x1, 0x1, 0x0, @msi={0x5, 0x0, 0x4}}]})
eventfd2(0x0, 0x80000)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
close(r3)
ioctl$KVM_PPC_ALLOCATE_HTAB(r0, 0xc004aea7, &(0x7f0000000340)=0x81)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000380)={0xb, <r4=>0xffffffffffffffff, 0x1})
ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000000400)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f00000003c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000980)={0x0, &(0x7f0000000440)=[@irq_setup={0x46, 0x18, {0x2, 0x68}}, @svc={0x122, 0x40, {0x80000002, [0x5, 0x8, 0x66, 0x5, 0x101]}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x73}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x0, 0x1, 0x2, 0x6, 0x4}}, @hvc={0x32, 0x40, {0x1000000, [0x5, 0x4f3, 0xf7a7, 0xfffffffffffffffa]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x0, 0x7, 0xfffff900, 0x2}}, @uexit={0x0, 0x18, 0xfffffffffffffff7}, @msr={0x14, 0x20, {0x603000000013e6df, 0x8}}, @svc={0x122, 0x40, {0x80004002, [0x1ad, 0x3ff, 0x1, 0x3fffffff800, 0x2]}}, @code={0xa, 0x84, {"e06182d20020b8f2810180d2a20180d2630180d2440180d2020000d40080600d00086078407893d20040b8f2610180d2420180d2a30180d2c40180d2020000d4000028d50080400de00300cb00003fd6a0399bd200e0b0f2610180d2620180d2a30180d2a40180d2020000d4000008d5"}}, @hvc={0x32, 0x40, {0x8600ff01, [0x0, 0x8b7, 0x7000000000, 0x8, 0x401]}}, @svc={0x122, 0x40, {0x80000001, [0x4000000000000000, 0xbe9c, 0x5fec, 0x8, 0x780]}}, @mrs={0xbe, 0x18, {0x603000000013c807}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x0, 0x8, 0x8e, 0x1}}, @mrs={0xbe, 0x18, {0xa050000000345ad6}}, @smc={0x1e, 0x40, {0x84000005, [0x3, 0xe, 0x2, 0xffffffffffffffff, 0xf]}}, @uexit={0x0, 0x18, 0xe}, @its_send_cmd={0xaa, 0x28, {0x0, 0x0, 0x2, 0xe, 0x3, 0x7}}, @uexit={0x0, 0x18, 0x5}, @hvc={0x32, 0x40, {0xc4000053, [0x7, 0xfffffffffffffffd, 0x1a, 0x8]}}, @code={0xa, 0xb4, {"60299bd20040b0f2e10080d2e20180d2a30080d2640080d2020000d4200188d20060b8f2010180d2620180d2030080d2c40080d2020000d4007008d580c390d20060b8f2010080d2220180d2030080d2240080d2020000d4c04b9fd20080b0f2210180d2c20180d2230080d2240180d2020000d480b59bd200a0b0f2c10080d2620080d2830180d2040080d2020000d4000000530078205e010000d4000000ab"}}, @uexit={0x0, 0x18}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x254}}, @svc={0x122, 0x40, {0x84000008, [0x4, 0x0, 0x3ff, 0x3, 0xe4e7]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x3, 0x0, 0x7}}], 0x518}, &(0x7f00000009c0), 0x1)
ioctl$KVM_DIRTY_TLB(r5, 0x4010aeaa, &(0x7f0000000a00)={0xfffffffffffffbe7, 0x1})
ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000a80)=@attr_arm64={0x0, 0x2, 0x4, &(0x7f0000000a40)=0x7})
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, r6, 0x1, 0x20010, r5, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bff000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000fc0)={0x0, &(0x7f0000000ac0)=[@its_setup={0x82, 0x28, {0x2, 0x3, 0x1f2}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x0, 0xfffffffffffffffe, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x1, 0x6, 0x2, 0x0, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1000, 0x13, 0x3}}, @hvc={0x32, 0x40, {0xc5000021, [0x7, 0x7, 0x6, 0x3, 0x2]}}, @hvc={0x32, 0x40, {0xc4000010, [0x2, 0x2, 0xfffffffffffffffc, 0x4, 0x1ff]}}, @uexit={0x0, 0x18, 0x4}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6090, 0x3, 0x2}}, @eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x86000001, [0x7fff, 0x5, 0x5, 0x80000000, 0xffffffffffffffa0]}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x5c}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x2, 0xa, 0x8, 0xa}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1400, 0x9, 0x6}}, @msr={0x14, 0x20, {0x603000000013deea, 0x90}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0xffffffffffff8001, 0x4}}, @eret={0xe6, 0x18, 0x3}, @msr={0x14, 0x20, {0x603000000013e703, 0x9}}, @uexit={0x0, 0x18, 0x7}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x7, 0xa}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x28a}}, @eret={0xe6, 0x18, 0xfffffffffffffffa}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x2, 0xf, 0x1, 0x3}}, @memwrite={0x6e, 0x30, @generic={0x5000, 0x45e, 0x80}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x62}}, @mrs={0xbe, 0x18, {0x603000000013c666}}, @code={0xa, 0x84, {"00c69dd200a0b8f2610080d2020080d2830180d2640180d2020000d400409f0d000008d5008008d50030204ec0439dd20040b0f2a10180d2c20080d2630180d2c40180d2020000d40000002f008008d5608e8fd20020b8f2010180d2e20080d2030080d2a40080d2020000d4000cc01a"}}, @irq_setup={0x46, 0x18, {0x1, 0xb9}}, @smc={0x1e, 0x40, {0x84000052, [0x15, 0x7fff, 0x42, 0x6, 0x9]}}], 0x4d4}, &(0x7f0000001000)=[@featur1={0x1, 0x6a}], 0x1)
syz_kvm_setup_cpu$arm64(r0, r5, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000001300)=[{0x0, &(0x7f0000001040)=[@irq_setup={0x46, 0x18, {0x4, 0x386}}, @code={0xa, 0xb4, {"a09f90d20040b8f2a10180d2620180d2830180d2a40180d2020000d460049cd200c0b8f2e10080d2020180d2230080d2a40080d2020000d4007008d5000008d500084078e0b780d20060b8f2e10180d2c20180d2630080d2840080d2020000d480389dd20040b0f2810080d2c20080d2430080d2240180d2020000d4003e88d20000b8f2a10080d2a20180d2a30180d2840180d2020000d4000028d50008203c"}}, @code={0xa, 0x54, {"007008d5000000340024c01a000020aa0070000c007008d50008e038008008d5000028d5e0f997d200e0b8f2a10180d2220080d2a30180d2e40080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0xa3}}, @svc={0x122, 0x40, {0xc4000053, [0x2, 0xfff, 0x9, 0x19, 0x4]}}, @irq_setup={0x46, 0x18, {0x4, 0x2c0}}, @svc={0x122, 0x40, {0x18d00003b, [0x6, 0x1, 0x9, 0x1, 0x5]}}, @irq_setup={0x46, 0x18, {0x0, 0x155}}, @irq_setup={0x46, 0x18, {0x3, 0x159}}, @smc={0x1e, 0x40, {0xc400000c, [0x8, 0xb62, 0x8001, 0xb, 0x400]}}, @irq_setup={0x46, 0x18, {0x4, 0x3c2}}, @svc={0x122, 0x40, {0x84000051, [0x6, 0x10ec, 0xffffffffffffffff, 0x0, 0x6]}}, @eret={0xe6, 0x18, 0xffffffffffffff80}], 0x2b0}], 0x1, 0x0, &(0x7f0000001340)=[@featur1={0x1, 0x90}], 0x1)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f00000013c0)=@attr_other={0x0, 0x101, 0x7, &(0x7f0000001380)=0x5})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000001400), 0x20000, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04)
r9 = syz_kvm_vgic_v3_setup(r0, 0x4, 0x360)
close(r9)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000001440)={0x6, 0xffffffffffffffff, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000001480)={0xeeee8000, 0x2000})
syz_kvm_add_vcpu$arm64(r7, &(0x7f0000001700)={0x0, &(0x7f00000014c0)=[@smc={0x1e, 0x40, {0x40000000, [0x1ff, 0xfffffffffffffffb, 0x4, 0x1f6, 0x7fffffffffffffff]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x4, 0x3, 0x3}}, @svc={0x122, 0x40, {0x80000001, [0x6, 0xc58, 0xec8, 0x3, 0xc]}}, @code={0xa, 0x9c, {"203e9fd20080b0f2010080d2820080d2230180d2640080d2020000d420e197d20080b8f2410180d2a20080d2a30080d2e40180d2020000d4a0e58cd20080b8f2010180d2620080d2430080d2c40080d2020000d400d4a07ea0e093d20000b0f2e10080d2220180d2030180d2840080d2020000d4007008d5008008d5000028d500d4a02e007008d5"}}, @code={0xa, 0x9c, {"00008092601b98d20060b8f2e10180d2020180d2030080d2c40180d2020000d480e480d200c0b0f2010080d2620080d2630080d2240180d2020000d40074202e603581d200e0b8f2e10180d2020180d2630180d2c40080d2020000d40000c039007008d520f88cd200c0b8f2e10080d2220180d2230080d2c40080d2020000d4000028d50044202e"}}, @msr={0x14, 0x20, {0x603000000013e658, 0x7fffffff}}], 0x208}, &(0x7f0000001740)=[@featur2={0x1, 0x20}], 0x1)

14m55.789717745s ago: executing program 6 (id=869):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x60c0, 0x0) (async)
r1 = eventfd2(0x0, 0x0)
write$eventfd(r1, &(0x7f0000000100)=0x8, 0x8) (async)
r2 = eventfd2(0x0, 0x0)
close(r2) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x30)
r5 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (async)
ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000000)={0x1, 0x0, &(0x7f0000ffb000/0x3000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0) (async)
r7 = openat$kvm(0x0, 0x0, 0x400, 0x0)
ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
munmap$KVM_VCPU(r5, 0x3) (async)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x9, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x4000000000807})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, <r10=>0xffffffffffffffff, 0x1})
write$eventfd(r10, &(0x7f00000001c0)=0x3, 0xfdef) (async)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r11 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r12 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
ioctl$KVM_GET_ONE_REG(r12, 0x4010aeab, &(0x7f0000000040)=@riscv64_smstateen_csr={0x0, &(0x7f0000000000)=0x5000000})
r13 = syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013d000, 0x9}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r13, 0xae80, 0x0)

14m46.394342116s ago: executing program 7 (id=870):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x6, <r2=>0xffffffffffffffff})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d)
ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000000)={0x4, 0x2})
ioctl$KVM_CREATE_VM(r2, 0x400454d1, 0x40000110c230004)

14m16.45238009s ago: executing program 7 (id=871):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000aba000/0x400000)=nil) (async)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000aba000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000cc0)={0x0, 0x0}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000cc0)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000300)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x3, 0x121}}], 0x28}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000300)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x3, 0x121}}], 0x28}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000780)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xf6}}], 0x28}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000780)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xf6}}], 0x28}, 0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) (async)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r4, 0x3, 0xa0) (async)
syz_kvm_vgic_v3_setup(r4, 0x3, 0xa0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000100)={0x8, <r7=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000})
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0})
r8 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000001380)={0x0, &(0x7f0000000d00)=[@mrs={0xbe, 0x18, {0x603000000013df50}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x258}}, @hvc={0x32, 0x40, {0x1000000, [0x9, 0x65e, 0xe59, 0x9, 0x4]}}, @mrs={0xbe, 0x18, {0x603000000013f200}}, @hvc={0x32, 0x40, {0x2000, [0x8, 0xf, 0x9, 0x1, 0x9]}}, @irq_setup={0x46, 0x18, {0x0, 0x3b7}}, @eret={0xe6, 0x18, 0x2}, @code={0xa, 0x9c, {"000028d5000008d520bc96d20060b0f2e10080d2020180d2230180d2e40080d2020000d4007008d5000008d5604494d20020b0f2210180d2620080d2430080d2440180d2020000d4402e87d200c0b8f2210180d2a20080d2e30180d2440080d2020000d4007008d520728fd20040b0f2410180d2020080d2c30180d2640180d2020000d4007008d5"}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x4, 0x9, 0x5, 0x4, 0x4}}, @smc={0x1e, 0x40, {0xc4000003, [0x2, 0x4, 0x4, 0x6, 0x3]}}, @smc={0x1e, 0x40, {0x400, [0x3ff, 0xffff, 0x5, 0x5, 0x1]}}, @eret={0xe6, 0x18, 0x7}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x267}}, @hvc={0x32, 0x40, {0x8400000e, [0x8, 0x0, 0x1, 0x9, 0x8000000000000001]}}, @mrs={0xbe, 0x18, {0x603000000013c524}}, @eret={0xe6, 0x18, 0x5}, @eret={0xe6, 0x18, 0xffffffffffffffff}, @svc={0x122, 0x40, {0xc4000012, [0x1, 0x2, 0xa, 0x6dd]}}, @hvc={0x32, 0x40, {0x84000004, [0x9, 0x0, 0x8d59, 0x5, 0x2]}}, @smc={0x1e, 0x40, {0x80008000, [0x100, 0x0, 0xffff, 0xfdf0, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013dead}}, @irq_setup={0x46, 0x18, {0x1, 0x25d}}, @smc={0x1e, 0x40, {0x80000000, [0x4, 0x91, 0x5e40, 0xc1, 0x8]}}, @mrs={0xbe, 0x18, {0x603000000013e6c6}}, @hvc={0x32, 0x40, {0x8400000e, [0x2, 0x7, 0x7fffffff, 0x2, 0x7]}}, @hvc={0x32, 0x40, {0x10000fffe, [0x9, 0x1, 0x5, 0x8, 0xffff]}}, @smc={0x1e, 0x40, {0x84000003, [0x7, 0x8, 0xffffffffffffffff, 0x100000001, 0x6]}}, @code={0xa, 0x9c, {"0000009100008092008008d51020601ec0038bd20040b8f2e10180d2820080d2630080d2440180d2020000d460de95d20080b0f2c10180d2220180d2a30180d2e40080d2020000d4000008d5601498d200e0b0f2810080d2420080d2e30180d2640080d2020000d400a0000d000d8cd200a0b0f2e10180d2220180d2e30180d2040080d2020000d4"}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x4, 0xd, 0x3, 0x6aa6d8cd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff0, 0x3, 0x9}}, @hvc={0x32, 0x40, {0x17, [0x8000, 0x1, 0x60, 0x2, 0xffffffffffffffff]}}], 0x668}, &(0x7f00000013c0)=[@featur2={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_kvm_vgic_v3_setup(r1, 0xff7ffffffffffffd, 0x360)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8})
r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x25)
r11 = eventfd2(0x1, 0x1)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000000)={r11, 0xb, 0x2, r11})
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f00000001c0)={0x8, <r12=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)})
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
eventfd2(0x0, 0x0) (async)
eventfd2(0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x100000, 0x2000, &(0x7f0000b47000/0x2000)=nil})

14m16.204498264s ago: executing program 6 (id=872):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000040)={0x5, 0x8})
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000b7b000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000280)=@arm64_core={0x6030000000100042, &(0x7f0000000100)=0x17})

14m2.217257456s ago: executing program 6 (id=873):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
r4 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000440)={0x0, &(0x7f00000002c0)=[@irq_setup={0x46, 0x18, {0x1, 0x2a2}}, @mrs={0xbe, 0x18, {0x603000000013c2b1}}, @mrs={0xbe, 0x18, {0x603000000013debb}}, @msr={0x14, 0x20, {0x603000000013c804, 0x3}}, @hvc={0x32, 0x40, {0x32000000, [0x5, 0x2, 0x7fffffff, 0x7be, 0xfffffffffffffffd]}}, @mrs={0xbe, 0x18, {0x603000000013c4cf}}, @code={0xa, 0xb4, {"804794d20040b0f2810180d2a20080d2c30080d2440080d2020000d4000008d560da8dd20020b8f2c10180d2820080d2830180d2c40080d2020000d4007008d5408086d200e0b8f2810180d2820080d2c30180d2640180d2020000d4009098d200e0b8f2210180d2020080d2a30080d2a40080d2020000d4007008d50000659e000008d5a04580d20020b8f2810180d2a20180d2830080d2640080d2020000d4"}}], 0x174}, &(0x7f0000000480)=[@featur1={0x1, 0x18}], 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7, 0xb, 0x89, 0x0, 0x7, 0x4, 0x20, 0x8, 0x2, 0x7, 0x1, 0x7, 0x0, 0x104007e, 0x81, 0x4, 0x45, 0x7, 0xb1, '\x00', 0xdf, 0x3})
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000001c0)={0x5000, 0x12000, 0x81})
write$eventfd(r3, &(0x7f00000001c0)=0x8100000001, 0x51a8)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xe6)
r5 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x100)
ioctl$KVM_SIGNAL_MSI(r7, 0x4020aea5, &(0x7f0000000280)={0x100000, 0x6000, 0x0, 0x2000000})
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x10201, 0x5, 0xa000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})

13m38.262481813s ago: executing program 6 (id=874):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x1010, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3abf408020000001b0000005a9610fbff67521ce16f8f1f449a7ab2aa76c829d2262f00000000000000000200df38000000000000000020001e91114900", 0x0, 0xfda9)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_GUEST_MEMFD(r6, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3})
r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r8, 0x2000003, 0x2013, r7, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r12, 0x4010aeab, &(0x7f0000000180)=@arm64_core={0x603000000010001c, &(0x7f0000000200)=0x100})
r13 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r14, 0x4020ae46, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r15, 0x4020aeae, &(0x7f0000000040)={0x5})
ioctl$KVM_SET_ONE_REG(r15, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013c119, &(0x7f0000000000)=0xe2})
mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r8, 0x1, 0x810, r15, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x600657af12600f2, 0x0)

13m36.519095112s ago: executing program 7 (id=875):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, 0xffffffffffffffff, 0x0)
r3 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x0, 0x80)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x27)
r6 = syz_kvm_vgic_v3_setup(r5, 0xf, 0x40)
ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f0000000280)=@attr_other={0x0, 0x4, 0x6, 0x0})
r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r8, 0xae03, 0xe5)
ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000100)=@arm64_fw={0x6030000000140005, &(0x7f0000000000)=0xfffffffffffffffd})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b656cf3f1, 0xffffffffffffffff, 0x20000000)

13m15.106425648s ago: executing program 7 (id=876):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0})
r3 = eventfd2(0x8801, 0x800)
r4 = eventfd2(0x3ff, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r4, 0x5, 0x2, r4})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r4, 0x5, 0x2, r3})
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, <r12=>0xffffffffffffffff, 0x1})
write$eventfd(r12, &(0x7f00000001c0)=0x3, 0x10)
r13 = eventfd2(0x5, 0x800)
write$eventfd(r13, &(0x7f0000000000)=0xffffffffffffffff, 0x8)
r14 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1)
r15 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r14, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f0000000180)="f30138dd56bf00e2004b584bd92e00000f00000000000100010000020000000083f402000000235acbd98700000000000200", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r14, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x40305839, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x100000000000000, 0x0})

13m14.136993263s ago: executing program 6 (id=877):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x3)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000000000/0x400000)=nil, &(0x7f00000003c0)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0x401c5820, 0x20000007)
r6 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000000)={0x0, 0xddd8c000, 0x3, 0x0, 0x1})
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
r9 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r8, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r8, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
close(0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000003000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000640)={0x0, &(0x7f0000000940)=[@smc={0x1e, 0x40, {0x8400000a, [0x81, 0xf, 0x6, 0x9, 0x5]}}, @mrs={0xbe, 0x18, {0x603000000013c4d1}}, @memwrite={0x6e, 0x30, @generic={0xf000, 0xfaf, 0x5, 0x4}}, @msr={0x14, 0x20, {0x603000000013c00f, 0x9}}, @hvc={0x32, 0x40, {0x2, [0x6, 0x2, 0x80, 0x8000000000000001]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x38d}}, @svc={0x122, 0x40, {0x84000012, [0x400000000004, 0x3, 0x407f, 0x5, 0x80000000]}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x20f}}, @msr={0x14, 0x20, {0x50280000001a26c2, 0x2}}, @svc={0x122, 0x40, {0x2000, [0x3, 0x0, 0x2, 0xffff, 0x800000006]}}, @irq_setup={0x46, 0x18, {0x3, 0x9d}}, @msr={0x14, 0x20, {0x603000000013e6d8, 0x1200000000000}}, @smc={0x1e, 0x40, {0x8600ff01, [0x5, 0x4, 0x179a, 0x1, 0x20000000]}}, @msr={0x14, 0x20, {0x603000000013de92, 0x6}}, @eret={0xe6, 0x18, 0x400003}], 0x288}, &(0x7f0000000680)=[@featur1={0x1, 0x85}], 0x1)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, 0xffffffffffffffff, 0x0)

12m26.778101035s ago: executing program 38 (id=876):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x0, 0x0})
r3 = eventfd2(0x8801, 0x800)
r4 = eventfd2(0x3ff, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r4, 0x5, 0x2, r4})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r4, 0x5, 0x2, r3})
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, <r12=>0xffffffffffffffff, 0x1})
write$eventfd(r12, &(0x7f00000001c0)=0x3, 0x10)
r13 = eventfd2(0x5, 0x800)
write$eventfd(r13, &(0x7f0000000000)=0xffffffffffffffff, 0x8)
r14 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1)
r15 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r14, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r15, 0x20, &(0x7f0000000180)="f30138dd56bf00e2004b584bd92e00000f00000000000100010000020000000083f402000000235acbd98700000000000200", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r14, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x40305839, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x100000000000000, 0x0})

12m19.698126558s ago: executing program 39 (id=877):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x3)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
r4 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000000000/0x400000)=nil, &(0x7f00000003c0)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0x401c5820, 0x20000007)
r6 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000000)={0x0, 0xddd8c000, 0x3, 0x0, 0x1})
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x2)
r9 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r8, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r8, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
close(0xffffffffffffffff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xc0c82, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000003000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000640)={0x0, &(0x7f0000000940)=[@smc={0x1e, 0x40, {0x8400000a, [0x81, 0xf, 0x6, 0x9, 0x5]}}, @mrs={0xbe, 0x18, {0x603000000013c4d1}}, @memwrite={0x6e, 0x30, @generic={0xf000, 0xfaf, 0x5, 0x4}}, @msr={0x14, 0x20, {0x603000000013c00f, 0x9}}, @hvc={0x32, 0x40, {0x2, [0x6, 0x2, 0x80, 0x8000000000000001]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x38d}}, @svc={0x122, 0x40, {0x84000012, [0x400000000004, 0x3, 0x407f, 0x5, 0x80000000]}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x20f}}, @msr={0x14, 0x20, {0x50280000001a26c2, 0x2}}, @svc={0x122, 0x40, {0x2000, [0x3, 0x0, 0x2, 0xffff, 0x800000006]}}, @irq_setup={0x46, 0x18, {0x3, 0x9d}}, @msr={0x14, 0x20, {0x603000000013e6d8, 0x1200000000000}}, @smc={0x1e, 0x40, {0x8600ff01, [0x5, 0x4, 0x179a, 0x1, 0x20000000]}}, @msr={0x14, 0x20, {0x603000000013de92, 0x6}}, @eret={0xe6, 0x18, 0x400003}], 0x288}, &(0x7f0000000680)=[@featur1={0x1, 0x85}], 0x1)
mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, 0xffffffffffffffff, 0x0)

3m18.00818204s ago: executing program 9 (id=879):
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0)
openat$kvm(0x0, 0x0, 0x400, 0x0) (async)
r2 = openat$kvm(0x0, 0x0, 0x400, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x9, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x4000000000807})
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0)=0x3, 0xfdef)
r6 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000340)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1800, 0x3, 0x1}}], 0x30}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101080, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000040)={0x4, <r10=>0xffffffffffffffff})
ioctl$KVM_HAS_DEVICE_ATTR(r10, 0x4018aee3, 0x0) (async)
ioctl$KVM_HAS_DEVICE_ATTR(r10, 0x4018aee3, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x3, 0x100000, 0x2000, &(0x7f000000f000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x3, 0x100000, 0x2000, &(0x7f000000f000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xcccc0000, 0x1000, &(0x7f0000f15000/0x1000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xcccc0000, 0x1000, &(0x7f0000f15000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x0, 0xb000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f00000002c0)={0x2710, 0x3, 0x200000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x100010, r13, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x100010, r13, 0x0)

3m8.341809328s ago: executing program 8 (id=878):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
munmap$KVM_VCPU(0x0, 0x1000000000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000000)=@attr_other={0x0, 0x0, 0x4, &(0x7f0000000240)=0xffffffff})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0)
ioctl$KVM_GET_REGS(r7, 0x8360ae81, &(0x7f0000000000))
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000001000/0x400000)=nil)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2a)

2m50.792476186s ago: executing program 9 (id=880):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0x7})
r3 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x0, 0x6000, 0x2, r3})
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000002c0)={0x0, 0x10000})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000000c0)={0x8})
ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x6000})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x2, 0x8000000, 0x2000, &(0x7f0000ecf000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)

2m44.5708751s ago: executing program 8 (id=881):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0)
r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, 0x0, 0x0)
r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
r14 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x5, 0x4, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r14, 0xae80, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r8, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000940)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000980)=[@featur2={0x1, 0x10}], 0x1)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
r15 = eventfd2(0x0, 0x0)
close(r15)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r16 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r16, 0x2000004, 0x2011, r15, 0x0)
r17 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r17, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0xb4, 0x1, 0x0})

2m24.806161205s ago: executing program 9 (id=882):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee1, 0x0)
openat$kvm(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
openat$kvm(0x0, 0x0, 0x0, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c801, &(0x7f00000000c0)=0x1000001})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x200, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x28)
r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r9, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000080)={0x5})
ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c006, &(0x7f0000000240)=0x2})
r11 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffb}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r5, 0x4068aea3, &(0x7f0000000280)={0xdf, 0x0, 0x2000})
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
r13 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r14 = syz_kvm_vgic_v3_setup(r9, 0x1, 0x80)
ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000380)=@attr_other={0x0, 0xa, 0x2, &(0x7f0000000040)=0x400000000})
syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000540)={0x0, 0x0}, 0x0, 0x0)

2m15.43758781s ago: executing program 8 (id=883):
openat$kvm(0x0, &(0x7f00000000c0), 0xc0000, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000000), 0x2, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r1, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000002, 0x810, 0xffffffffffffffff, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x8000000000000200)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0)
r7 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a97f2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x0, {0x603000000013df11, 0x3}}], 0x28}, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r7, 0x401c5820, 0x20000007)
r8 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000e4b000/0x4000)=nil, r8, 0x1, 0x2012, r3, 0x0)
r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1)
syz_kvm_vgic_v3_setup(r10, 0x1, 0x0)

1m49.936922517s ago: executing program 9 (id=884):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x2900, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0x9, 0x0, 0x2, 0x6, 0x6, 0x9, 0x3, 0x88, 0xa8, 0x9, 0x0, 0x9, 0x6, 0xe6, 0x3, 0x6, 0x0, '\x00', 0x10, 0x6}) (async)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
write$eventfd(r3, &(0x7f00000001c0)=0xffffffffffffffff, 0xfdef)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013dce4, 0x1}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async)
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x180, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
r10 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000040)={0x0, &(0x7f0000000000)=[@its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0xa, 0x7, 0x2}}], 0x28}, &(0x7f00000000c0)=[@featur1={0x1, 0x20}], 0x1) (async)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0) (async)
r13 = syz_kvm_vgic_v3_setup(r12, 0x3, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f0000000200)=@attr_other={0x0, 0x6, 0x382bc666, &(0x7f0000000140)=0xffffffff}) (async)
r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0)
r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r15, r16, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_ONE_REG(r16, 0x4010aeac, &(0x7f00000002c0)=@arm64_sys={0x603000000013df11, &(0x7f0000000280)=0x80000001}) (async)
ioctl$KVM_RUN(r16, 0xae80, 0x0)
ioctl$KVM_DIRTY_TLB(r10, 0x4010aeaa, &(0x7f0000000240)={0x2, 0x80})
ioctl$KVM_GET_DEVICE_ATTR(r9, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x8, 0x40000000000000, 0x0}) (async)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1m49.328065086s ago: executing program 8 (id=885):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r4, 0x1, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f00000000c0)=@arm64_ccsidr={0x6020000000110005, &(0x7f0000000140)=0x91})
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0})
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xc0002, 0x0)
ioctl$KVM_CHECK_EXTENSION(r10, 0xae03, 0x1e)
r11 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x18010, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0)
r12 = eventfd2(0x1, 0x0)
close(r12)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x20001, 0x0)
ioctl$KVM_CREATE_VM(r13, 0x5421, 0x20004000)
write$eventfd(r12, &(0x7f0000000100)=0xfffffffffffffffe, 0x8)
r14 = eventfd2(0x0, 0x0)
close(r14)
eventfd2(0x0, 0x0)

1m25.428275444s ago: executing program 9 (id=886):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x1a1000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r2, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000002000/0x400000)=nil)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x40, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0), 0xe80)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x5})
r6 = eventfd2(0x574, 0x801)
write$eventfd(r6, &(0x7f0000000000)=0x7, 0x8)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0xa0000, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, <r9=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000040)={0xb, <r10=>0xffffffffffffffff, 0x1})
close(r10)
ioctl$KVM_CREATE_VM(r9, 0x8004b708, 0x20000000000f)
openat$kvm(0x0, 0x0, 0x0, 0x0)

1m23.164898865s ago: executing program 8 (id=887):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000000)={0x5})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_vgic_v3_setup(r4, 0x1, 0x100)
ioctl$KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x3, 0xffffffffffffffff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0xb, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0)

57.674567409s ago: executing program 8 (id=888):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bff000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000080)=[@uexit={0x0, 0x18, 0x7fffffff}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1})
mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0)

57.276534641s ago: executing program 9 (id=889):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x34) (async)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x28)
ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f0000000180)={0x2, 0x0, [{0x5, 0x2, 0x0, 0x0, @msi={0xebb, 0x394c794c, 0x41, 0x800}}, {0xff, 0x2, 0x0, 0x0, @sint={0x9, 0x80000001}}]}) (async, rerun: 32)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) (rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000000)={0x5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r6, 0x4004aec2, &(0x7f0000000100)=0x4) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0xb, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async, rerun: 32)
close(r2) (async, rerun: 32)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0xdddd0000, 0x13000, 0x1}) (async, rerun: 64)
openat$kvm(0x0, &(0x7f0000000080), 0x121200, 0x0) (async, rerun: 64)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) (async, rerun: 64)
ioctl$KVM_IRQ_LINE_STATUS(r7, 0xc008ae67, &(0x7f0000000040)={0x10004, 0x10001}) (async, rerun: 64)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r8, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7}) (async)
r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async, rerun: 32)
r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x603000000013c006}}], 0x18}, 0x0, 0x0) (rerun: 32)
ioctl$KVM_RUN(r10, 0xae80, 0x0)

8.890187031s ago: executing program 40 (id=889):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x34) (async)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x28)
ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f0000000180)={0x2, 0x0, [{0x5, 0x2, 0x0, 0x0, @msi={0xebb, 0x394c794c, 0x41, 0x800}}, {0xff, 0x2, 0x0, 0x0, @sint={0x9, 0x80000001}}]}) (async, rerun: 32)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) (rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000000)={0x5})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r6, 0x4004aec2, &(0x7f0000000100)=0x4) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0xb, 0x23ac5f9b426ec4b2, 0xffffffffffffffff, 0x0)
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async, rerun: 32)
close(r2) (async, rerun: 32)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0xdddd0000, 0x13000, 0x1}) (async, rerun: 64)
openat$kvm(0x0, &(0x7f0000000080), 0x121200, 0x0) (async, rerun: 64)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1) (async, rerun: 64)
ioctl$KVM_IRQ_LINE_STATUS(r7, 0xc008ae67, &(0x7f0000000040)={0x10004, 0x10001}) (async, rerun: 64)
r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r8, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7}) (async)
r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async, rerun: 32)
r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x603000000013c006}}], 0x18}, 0x0, 0x0) (rerun: 32)
ioctl$KVM_RUN(r10, 0xae80, 0x0)

0s ago: executing program 41 (id=888):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bff000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000080)=[@uexit={0x0, 0x18, 0x7fffffff}], 0x18}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8090040, 0x0, 0x0, 0x1})
mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

[  368.766282][   T24] audit: type=1400 audit(367.930:76): avc:  denied  { write } for  pid=3262 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  371.339532][ T3204] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.856659][   T24] audit: type=1400 audit(379.050:77): avc:  denied  { write } for  pid=3270 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  384.910843][   T24] audit: type=1400 audit(384.110:78): avc:  denied  { write } for  pid=3273 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  400.260905][   T24] audit: type=1400 audit(399.460:79): avc:  denied  { write } for  pid=3278 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  403.945864][   T24] audit: type=1400 audit(403.140:80): avc:  denied  { write } for  pid=3281 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  414.046081][   T24] audit: type=1400 audit(413.210:81): avc:  denied  { write } for  pid=3286 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  418.117345][   T24] audit: type=1400 audit(417.320:82): avc:  denied  { write } for  pid=3289 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  420.727487][ T3204] eql: remember to turn off Van-Jacobson compression on your slave devices
[  428.975665][   T24] audit: type=1400 audit(428.170:83): avc:  denied  { write } for  pid=3294 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  432.605467][   T24] audit: type=1400 audit(431.800:84): avc:  denied  { write } for  pid=3297 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  446.084863][   T24] audit: type=1400 audit(445.270:85): avc:  denied  { write } for  pid=3303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  451.067868][   T24] audit: type=1400 audit(450.220:86): avc:  denied  { write } for  pid=3306 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  458.305361][   T24] audit: type=1400 audit(457.450:87): avc:  denied  { write } for  pid=3308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  462.119924][   T24] audit: type=1400 audit(461.320:88): avc:  denied  { write } for  pid=3311 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  468.025438][   T24] audit: type=1400 audit(467.220:89): avc:  denied  { write } for  pid=3314 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  471.774766][   T24] audit: type=1400 audit(470.930:90): avc:  denied  { write } for  pid=3317 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  478.864791][   T24] audit: type=1400 audit(478.050:91): avc:  denied  { write } for  pid=3320 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  482.476525][   T24] audit: type=1400 audit(481.670:92): avc:  denied  { write } for  pid=3323 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  491.918678][   T24] audit: type=1400 audit(491.090:93): avc:  denied  { write } for  pid=3327 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  495.802313][   T24] audit: type=1400 audit(495.000:94): avc:  denied  { write } for  pid=3330 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  516.877021][   T24] audit: type=1400 audit(516.060:95): avc:  denied  { write } for  pid=3339 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  521.540192][   T24] audit: type=1400 audit(520.740:96): avc:  denied  { write } for  pid=3342 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  533.905586][   T24] audit: type=1400 audit(533.100:97): avc:  denied  { write } for  pid=3348 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  537.654788][   T24] audit: type=1400 audit(536.830:98): avc:  denied  { write } for  pid=3351 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  548.334252][   T24] audit: type=1400 audit(547.530:99): avc:  denied  { write } for  pid=3355 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  552.114245][   T24] audit: type=1400 audit(551.300:100): avc:  denied  { write } for  pid=3358 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
Warning: Permanently added '[localhost]:48313' (ED25519) to the list of known hosts.
[  588.820401][   T24] audit: type=1400 audit(588.020:101): avc:  denied  { name_bind } for  pid=3363 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  589.637646][   T24] audit: type=1400 audit(588.840:102): avc:  denied  { execute } for  pid=3364 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  589.659008][   T24] audit: type=1400 audit(588.850:103): avc:  denied  { execute_no_trans } for  pid=3364 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  614.192393][   T24] audit: type=1400 audit(613.390:104): avc:  denied  { mounton } for  pid=3364 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  614.228740][   T24] audit: type=1400 audit(613.430:105): avc:  denied  { mount } for  pid=3364 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  614.314508][ T3364] cgroup: Unknown subsys name 'net'
[  614.368941][   T24] audit: type=1400 audit(613.570:106): avc:  denied  { unmount } for  pid=3364 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  614.772821][ T3364] cgroup: Unknown subsys name 'cpuset'
[  614.901364][ T3364] cgroup: Unknown subsys name 'rlimit'
[  615.767259][   T24] audit: type=1400 audit(614.970:107): avc:  denied  { setattr } for  pid=3364 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  615.784767][   T24] audit: type=1400 audit(614.980:108): avc:  denied  { mounton } for  pid=3364 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  615.807239][   T24] audit: type=1400 audit(615.000:109): avc:  denied  { mount } for  pid=3364 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  616.802295][ T3367] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  616.821749][   T24] audit: type=1400 audit(616.020:110): avc:  denied  { relabelto } for  pid=3367 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  616.854751][   T24] audit: type=1400 audit(616.040:111): avc:  denied  { write } for  pid=3367 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  617.039313][   T24] audit: type=1400 audit(616.230:112): avc:  denied  { read } for  pid=3364 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  617.052696][   T24] audit: type=1400 audit(616.250:113): avc:  denied  { open } for  pid=3364 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  617.107446][ T3364] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  675.098783][   T24] audit: type=1400 audit(674.300:114): avc:  denied  { execmem } for  pid=3368 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  678.932548][   T24] audit: type=1400 audit(678.130:116): avc:  denied  { open } for  pid=3370 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  678.961788][   T24] audit: type=1400 audit(678.120:115): avc:  denied  { read } for  pid=3371 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  679.039565][   T24] audit: type=1400 audit(678.220:117): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  679.270325][   T24] audit: type=1400 audit(678.470:119): avc:  denied  { module_request } for  pid=3370 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  679.281759][   T24] audit: type=1400 audit(678.460:118): avc:  denied  { module_request } for  pid=3371 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  680.295177][   T24] audit: type=1400 audit(679.490:120): avc:  denied  { sys_module } for  pid=3370 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  705.437338][ T3370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  705.710715][ T3370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  705.959758][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  706.258847][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  717.457832][ T3370] hsr_slave_0: entered promiscuous mode
[  717.485369][ T3370] hsr_slave_1: entered promiscuous mode
[  718.617751][ T3371] hsr_slave_0: entered promiscuous mode
[  718.659378][ T3371] hsr_slave_1: entered promiscuous mode
[  718.688918][ T3371] debugfs: 'hsr0' already exists in 'hsr'
[  718.704730][ T3371] Cannot create hsr debugfs directory
[  724.091218][   T24] audit: type=1400 audit(723.290:121): avc:  denied  { create } for  pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  724.130898][   T24] audit: type=1400 audit(723.330:122): avc:  denied  { write } for  pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  724.176172][   T24] audit: type=1400 audit(723.370:123): avc:  denied  { read } for  pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  724.319620][ T3370] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  724.612141][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  724.691317][ T3370] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  724.935571][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  724.961313][ T3370] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  725.052237][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  725.165925][ T3370] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  725.319570][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  727.142679][ T3371] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  727.356121][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  727.391593][ T3371] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  727.518740][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  727.578146][ T3371] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  727.706185][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  727.760862][ T3371] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  727.904392][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  738.735523][ T3370] 8021q: adding VLAN 0 to HW filter on device bond0
[  741.769192][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0
[  792.930779][ T3370] veth0_vlan: entered promiscuous mode
[  793.392624][ T3370] veth1_vlan: entered promiscuous mode
[  795.447604][ T3370] veth0_macvtap: entered promiscuous mode
[  795.851000][ T3370] veth1_macvtap: entered promiscuous mode
[  796.279453][ T3371] veth0_vlan: entered promiscuous mode
[  797.159767][ T3371] veth1_vlan: entered promiscuous mode
[  798.481895][ T3450] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  798.499080][ T3450] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  798.515440][ T3450] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  798.551093][ T3450] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  799.991277][ T3371] veth0_macvtap: entered promiscuous mode
[  800.755704][ T3371] veth1_macvtap: entered promiscuous mode
[  800.922068][   T24] audit: type=1400 audit(800.120:124): avc:  denied  { mount } for  pid=3370 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  801.221744][   T24] audit: type=1400 audit(800.350:125): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/syzkaller.OMrD7W/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  801.307293][   T24] audit: type=1400 audit(800.500:126): avc:  denied  { mount } for  pid=3370 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  801.632687][   T24] audit: type=1400 audit(800.830:127): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/syzkaller.OMrD7W/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  801.829285][   T24] audit: type=1400 audit(801.020:128): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/syzkaller.OMrD7W/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3746 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  802.615907][   T24] audit: type=1400 audit(801.780:129): avc:  denied  { unmount } for  pid=3370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  802.898680][   T24] audit: type=1400 audit(802.100:130): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  802.952642][   T24] audit: type=1400 audit(802.150:131): avc:  denied  { mount } for  pid=3370 comm="syz-executor" name="/" dev="gadgetfs" ino=3756 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  803.032757][   T47] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  803.065770][   T47] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  803.075053][   T47] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  803.081678][   T47] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  803.395701][   T24] audit: type=1400 audit(802.590:132): avc:  denied  { mount } for  pid=3370 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  803.429505][   T24] audit: type=1400 audit(802.630:133): avc:  denied  { mounton } for  pid=3370 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  805.151421][ T3370] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  806.197002][   T24] kauditd_printk_skb: 1 callbacks suppressed
[  806.215833][   T24] audit: type=1400 audit(805.380:135): avc:  denied  { read write } for  pid=3370 comm="syz-executor" name="loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  806.274682][   T24] audit: type=1400 audit(805.460:136): avc:  denied  { open } for  pid=3370 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  806.314616][   T24] audit: type=1400 audit(805.510:137): avc:  denied  { ioctl } for  pid=3370 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  816.237844][   T24] audit: type=1400 audit(815.420:138): avc:  denied  { read } for  pid=3521 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  816.255126][   T24] audit: type=1400 audit(815.420:139): avc:  denied  { open } for  pid=3521 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  817.004345][   T24] audit: type=1400 audit(816.190:140): avc:  denied  { ioctl } for  pid=3521 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  818.977038][   T24] audit: type=1400 audit(818.100:141): avc:  denied  { execute } for  pid=3521 comm="syz.1.2" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3829 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  834.652181][   T24] audit: type=1400 audit(833.850:142): avc:  denied  { setattr } for  pid=3530 comm="syz.0.3" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  843.242609][   T24] audit: type=1400 audit(842.440:143): avc:  denied  { write } for  pid=3542 comm="syz.1.7" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  853.574635][   T24] audit: type=1400 audit(852.760:144): avc:  denied  { append } for  pid=3549 comm="syz.0.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  854.147152][   T24] audit: type=1400 audit(853.270:145): avc:  denied  { create } for  pid=3549 comm="syz.0.9" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  854.169762][   T24] audit: type=1400 audit(853.370:146): avc:  denied  { map } for  pid=3549 comm="syz.0.9" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4210 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  854.234227][   T24] audit: type=1400 audit(853.420:147): avc:  denied  { read } for  pid=3549 comm="syz.0.9" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4210 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  854.490749][   T24] audit: type=1400 audit(853.680:148): avc:  denied  { write } for  pid=3549 comm="syz.0.9" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=4210 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  880.255515][   T24] audit: type=1400 audit(879.440:149): avc:  denied  { ioctl } for  pid=3565 comm="syz.1.14" path="net:[4026532627]" dev="nsfs" ino=4026532627 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  893.510648][   T24] audit: type=1400 audit(892.710:150): avc:  denied  { write } for  pid=3571 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  902.012264][   T24] audit: type=1400 audit(901.170:151): avc:  denied  { write } for  pid=3581 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  957.324341][   T24] audit: type=1400 audit(956.480:152): avc:  denied  { execute } for  pid=3623 comm="syz.0.27" path=2F31312F10FBFF67525673312B0104 dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1163.072285][ T3745] kvm [3745]: Failed to find VMA for hva 0x20c01000
[ 1173.727881][   T24] audit: type=1400 audit(1172.900:153): avc:  denied  { write } for  pid=3749 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1183.187249][   T24] audit: type=1400 audit(1182.380:154): avc:  denied  { write } for  pid=3756 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1336.032720][   T24] audit: type=1400 audit(1335.230:155): avc:  denied  { ioctl } for  pid=3844 comm="syz.0.100" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=9740 ioctlcmd=0xae49 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1499.651738][ T3938] kvm [3938]: Failed to find VMA for hva 0x20c79000
[ 1507.485551][ T3944] KVM: debugfs: duplicate directory 3944-5
[ 1546.250201][   T24] audit: type=1400 audit(1545.340:156): avc:  denied  { write } for  pid=3968 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1555.956472][   T24] audit: type=1400 audit(1555.060:157): avc:  denied  { write } for  pid=3977 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1785.354330][   T30] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1786.566914][   T30] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1788.145335][   T30] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1789.555617][   T30] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1802.461358][   T30] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1802.557434][   T30] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1802.602626][   T30] bond0 (unregistering): Released all slaves
[ 1803.736511][   T30] hsr_slave_0: left promiscuous mode
[ 1803.825838][   T30] hsr_slave_1: left promiscuous mode
[ 1804.205771][   T30] veth1_macvtap: left promiscuous mode
[ 1804.227673][   T30] veth0_macvtap: left promiscuous mode
[ 1804.244746][   T30] veth1_vlan: left promiscuous mode
[ 1804.252065][   T30] veth0_vlan: left promiscuous mode
[ 1823.657067][   T30] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1825.021465][   T30] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1825.414441][   T24] audit: type=1400 audit(1824.560:158): avc:  denied  { write } for  pid=4122 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1826.619587][   T30] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1827.741016][   T30] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1831.814182][   T24] audit: type=1400 audit(1830.990:159): avc:  denied  { write } for  pid=4128 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1841.844889][   T30] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1842.002165][   T30] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1842.095319][   T30] bond0 (unregistering): Released all slaves
[ 1843.492150][ T3204] 8021q: adding VLAN 0 to HW filter on device eth1
[ 1843.987486][   T30] hsr_slave_0: left promiscuous mode
[ 1844.297006][   T30] hsr_slave_1: left promiscuous mode
[ 1844.896115][   T30] veth1_macvtap: left promiscuous mode
[ 1844.924762][   T30] veth0_macvtap: left promiscuous mode
[ 1844.926412][   T30] veth1_vlan: left promiscuous mode
[ 1844.939801][   T30] veth0_vlan: left promiscuous mode
[ 1857.659919][ T4084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1857.908939][ T4084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1868.164842][   T24] audit: type=1400 audit(1867.360:160): avc:  denied  { write } for  pid=4154 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1870.810814][ T4095] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1871.068244][ T4095] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1872.474285][   T24] audit: type=1400 audit(1871.630:161): avc:  denied  { write } for  pid=4161 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1875.605878][ T3204] 8021q: adding VLAN 0 to HW filter on device eth2
[ 1876.327613][ T4084] hsr_slave_0: entered promiscuous mode
[ 1876.361086][ T4084] hsr_slave_1: entered promiscuous mode
[ 1884.415924][   T24] audit: type=1400 audit(1883.590:162): avc:  denied  { write } for  pid=4173 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1887.889600][ T4084] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1888.204852][ T4084] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1888.252021][ T4084] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1888.437802][ T4084] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1888.755624][ T4084] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1888.905808][ T4084] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1889.034655][ T4084] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1889.229593][ T4084] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1889.446752][   T24] audit: type=1400 audit(1888.590:163): avc:  denied  { write } for  pid=4180 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1890.900488][ T4095] hsr_slave_0: entered promiscuous mode
[ 1890.968182][ T4095] hsr_slave_1: entered promiscuous mode
[ 1890.992141][ T4095] debugfs: 'hsr0' already exists in 'hsr'
[ 1891.038140][ T4095] Cannot create hsr debugfs directory
[ 1892.139439][ T3204] 8021q: adding VLAN 0 to HW filter on device eth3
[ 1903.852820][   T24] audit: type=1400 audit(1903.050:164): avc:  denied  { write } for  pid=4194 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1905.511142][ T4095] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1905.902118][ T4095] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1905.991249][ T4095] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1906.221920][ T4095] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1906.366994][ T4095] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1906.596210][ T4095] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1906.682366][ T4095] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1906.977979][ T4095] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1912.437954][   T24] audit: type=1400 audit(1911.620:165): avc:  denied  { write } for  pid=4207 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1914.420056][ T4084] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1918.442402][ T3204] 8021q: adding VLAN 0 to HW filter on device eth4
[ 1931.235329][   T24] audit: type=1400 audit(1930.420:166): avc:  denied  { write } for  pid=4223 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1931.360186][ T4095] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1938.997777][   T24] audit: type=1400 audit(1938.200:167): avc:  denied  { write } for  pid=4229 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1943.177052][ T3204] 8021q: adding VLAN 0 to HW filter on device eth5
[ 1956.667370][   T24] audit: type=1400 audit(1955.870:168): avc:  denied  { write } for  pid=4243 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1963.990831][   T24] audit: type=1400 audit(1963.190:169): avc:  denied  { write } for  pid=4252 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1969.371688][ T3204] 8021q: adding VLAN 0 to HW filter on device eth6
[ 1984.194573][   T24] audit: type=1400 audit(1983.390:170): avc:  denied  { write } for  pid=4269 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1990.845465][   T24] audit: type=1400 audit(1990.010:171): avc:  denied  { write } for  pid=4278 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 1995.349150][ T3204] 8021q: adding VLAN 0 to HW filter on device eth7
[ 2002.061576][ T4084] veth0_vlan: entered promiscuous mode
[ 2002.967544][ T4084] veth1_vlan: entered promiscuous mode
[ 2005.748164][ T4084] veth0_macvtap: entered promiscuous mode
[ 2006.136243][ T4084] veth1_macvtap: entered promiscuous mode
[ 2009.229285][ T3473] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2009.256252][   T30] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2009.275111][   T30] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2009.288120][   T30] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2010.308752][   T24] audit: type=1400 audit(2009.510:172): avc:  denied  { write } for  pid=4292 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2012.909991][   T24] audit: type=1400 audit(2012.050:173): avc:  denied  { unmount } for  pid=4084 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 2018.334378][   T24] audit: type=1400 audit(2017.510:174): avc:  denied  { write } for  pid=4299 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2022.942135][ T4095] veth0_vlan: entered promiscuous mode
[ 2024.418132][ T4095] veth1_vlan: entered promiscuous mode
[ 2026.616335][ T3204] 8021q: adding VLAN 0 to HW filter on device eth8
[ 2028.487678][ T4095] veth0_macvtap: entered promiscuous mode
[ 2029.316490][ T4095] veth1_macvtap: entered promiscuous mode
[ 2033.485305][   T47] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2033.488674][   T47] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2033.579501][ T4099] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2033.630309][ T4099] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2075.911626][   T24] audit: type=1400 audit(2075.110:175): avc:  denied  { write } for  pid=4330 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2086.790506][   T24] audit: type=1400 audit(2085.980:176): avc:  denied  { write } for  pid=4341 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2115.247816][   T24] audit: type=1400 audit(2114.440:177): avc:  denied  { write } for  pid=4360 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2124.594146][   T24] audit: type=1400 audit(2123.720:178): avc:  denied  { write } for  pid=4368 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2145.561954][   T24] audit: type=1400 audit(2144.750:179): avc:  denied  { write } for  pid=4382 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2157.156316][   T24] audit: type=1400 audit(2156.340:180): avc:  denied  { write } for  pid=4392 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2176.194520][   T24] audit: type=1400 audit(2175.390:181): avc:  denied  { write } for  pid=4399 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2186.259221][   T24] audit: type=1400 audit(2185.430:182): avc:  denied  { write } for  pid=4406 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2212.257248][   T24] audit: type=1400 audit(2211.450:183): avc:  denied  { write } for  pid=4422 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2223.379245][   T24] audit: type=1400 audit(2222.530:184): avc:  denied  { write } for  pid=4428 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2249.362443][   T24] audit: type=1400 audit(2248.560:185): avc:  denied  { write } for  pid=4447 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2258.512351][   T24] audit: type=1400 audit(2257.670:186): avc:  denied  { write } for  pid=4456 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2295.368507][   T24] audit: type=1400 audit(2294.540:187): avc:  denied  { write } for  pid=4478 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2305.075209][   T24] audit: type=1400 audit(2304.210:188): avc:  denied  { write } for  pid=4488 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2325.200257][   T24] audit: type=1400 audit(2324.400:189): avc:  denied  { write } for  pid=4499 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2335.575932][ T4502] kvm [4502]: Failed to find VMA for hva 0x20a71000
[ 2336.624259][   T24] audit: type=1400 audit(2335.820:190): avc:  denied  { write } for  pid=4507 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2359.182845][   T24] audit: type=1400 audit(2358.240:191): avc:  denied  { write } for  pid=4516 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2369.527771][   T24] audit: type=1400 audit(2368.700:192): avc:  denied  { write } for  pid=4529 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2624.260992][   T24] audit: type=1400 audit(2623.460:193): avc:  denied  { write } for  pid=4672 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2635.217066][   T24] audit: type=1400 audit(2634.330:194): avc:  denied  { write } for  pid=4684 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 2650.084557][   T24] audit: type=1400 audit(2649.280:195): avc:  denied  { map } for  pid=4687 comm="syz.3.261" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 2650.170916][   T24] audit: type=1400 audit(2649.300:196): avc:  denied  { execute } for  pid=4687 comm="syz.3.261" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 3077.196724][   T24] audit: type=1400 audit(3076.380:197): avc:  denied  { write } for  pid=4928 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3087.064743][   T24] audit: type=1400 audit(3086.250:198): avc:  denied  { write } for  pid=4937 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3328.111837][   T24] audit: type=1400 audit(3327.310:199): avc:  denied  { write } for  pid=5081 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3337.908888][   T24] audit: type=1400 audit(3337.110:200): avc:  denied  { write } for  pid=5089 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3547.500655][   T24] audit: type=1400 audit(3546.700:201): avc:  denied  { write } for  pid=5190 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3556.775095][   T24] audit: type=1400 audit(3555.830:202): avc:  denied  { write } for  pid=5199 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3889.556411][   T24] audit: type=1400 audit(3888.680:203): avc:  denied  { write } for  pid=5372 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3900.664513][   T24] audit: type=1400 audit(3899.850:204): avc:  denied  { write } for  pid=5383 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 3931.889327][ T5400] kvm [5400]: Failed to find VMA for hva 0x20c01000
[ 4306.104984][ T5619] kvm [5619]: Failed to find VMA for hva 0x20c01000
[ 4405.187602][ T5677] kvm [5677]: Failed to find VMA for hva 0x20d8d000
[ 4436.584625][   T24] audit: type=1400 audit(4435.720:205): avc:  denied  { write } for  pid=5693 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4446.825134][   T24] audit: type=1400 audit(4446.020:206): avc:  denied  { write } for  pid=5703 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4644.699177][ T5795] kvm [5795]: Failed to find VMA for hva 0x20c01000
[ 4715.218720][   T24] audit: type=1400 audit(4714.420:207): avc:  denied  { execute } for  pid=5832 comm="syz.3.587" path="/sys/kernel/debug/kcov" dev="debugfs" ino=108 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1
[ 4739.691936][   T24] audit: type=1400 audit(4738.830:208): avc:  denied  { write } for  pid=5843 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4751.354868][   T24] audit: type=1400 audit(4750.440:209): avc:  denied  { write } for  pid=5854 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4966.046459][   T24] audit: type=1400 audit(4965.240:210): avc:  denied  { write } for  pid=5977 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 4976.978198][   T24] audit: type=1400 audit(4976.160:211): avc:  denied  { write } for  pid=5989 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5477.724553][   T24] audit: type=1400 audit(5476.910:212): avc:  denied  { write } for  pid=6265 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5487.408440][   T24] audit: type=1400 audit(5486.500:213): avc:  denied  { write } for  pid=6278 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5601.248394][   T24] audit: type=1400 audit(5600.400:214): avc:  denied  { map } for  pid=6332 comm="syz.3.725" path="pipe:[14132]" dev="pipefs" ino=14132 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[ 5862.379548][ T5265] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5864.036805][ T5265] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5865.161213][ T5265] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5866.330214][ T5265] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5885.041328][ T5265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 5885.537563][ T5265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 5885.702303][ T5265] bond0 (unregistering): Released all slaves
[ 5887.639430][ T5265] hsr_slave_0: left promiscuous mode
[ 5887.728904][ T5265] hsr_slave_1: left promiscuous mode
[ 5888.307146][ T5265] veth1_macvtap: left promiscuous mode
[ 5888.308226][ T5265] veth0_macvtap: left promiscuous mode
[ 5888.325684][ T5265] veth1_vlan: left promiscuous mode
[ 5888.345547][ T5265] veth0_vlan: left promiscuous mode
[ 5906.002195][ T6438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 5906.477111][ T6438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 5909.710066][ T5265] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5912.305996][ T5265] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5913.461823][ T5265] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5915.811018][ T5265] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 5918.775260][   T24] audit: type=1400 audit(5917.910:215): avc:  denied  { write } for  pid=6490 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5926.864319][   T24] audit: type=1400 audit(5926.050:216): avc:  denied  { write } for  pid=6502 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5934.827031][ T5265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 5935.250931][ T5265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 5935.396072][ T5265] bond0 (unregistering): Released all slaves
[ 5937.201550][ T3204] 8021q: adding VLAN 0 to HW filter on device eth9
[ 5937.605534][ T5265] hsr_slave_0: left promiscuous mode
[ 5937.749945][ T5265] hsr_slave_1: left promiscuous mode
[ 5938.171548][ T5265] veth1_macvtap: left promiscuous mode
[ 5938.219899][ T5265] veth0_macvtap: left promiscuous mode
[ 5938.236028][ T5265] veth1_vlan: left promiscuous mode
[ 5938.261240][ T5265] veth0_vlan: left promiscuous mode
[ 5955.048630][ T6446] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 5955.847919][ T6446] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 5959.402308][ T6438] hsr_slave_0: entered promiscuous mode
[ 5959.508588][   T24] audit: type=1400 audit(5958.690:217): avc:  denied  { write } for  pid=6511 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5959.522390][ T6438] hsr_slave_1: entered promiscuous mode
[ 5964.854380][   T24] audit: type=1400 audit(5964.040:218): avc:  denied  { write } for  pid=6518 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5972.725509][ T6438] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 5972.982444][ T6438] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 5973.088257][ T6438] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 5973.267358][ T6438] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 5973.351031][ T6438] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 5973.508380][ T6438] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 5973.671015][ T6438] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 5973.899051][ T6438] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 5980.711306][ T6446] hsr_slave_0: entered promiscuous mode
[ 5980.768446][ T6446] hsr_slave_1: entered promiscuous mode
[ 5980.841339][ T6446] debugfs: 'hsr0' already exists in 'hsr'
[ 5980.849389][ T6446] Cannot create hsr debugfs directory
[ 5981.084224][   T24] audit: type=1400 audit(5980.190:219): avc:  denied  { write } for  pid=6535 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5986.796571][   T24] audit: type=1400 audit(5985.970:220): avc:  denied  { write } for  pid=6542 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 5990.905563][ T3204] 8021q: adding VLAN 0 to HW filter on device eth10
[ 5997.737142][ T6446] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 5998.117445][ T6446] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 5998.406586][ T6446] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 5998.790109][ T6446] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 5999.105616][ T6446] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 5999.370184][ T6446] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 5999.541202][ T6446] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 5999.782098][ T6446] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 6002.792856][ T6438] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6006.954292][   T24] audit: type=1400 audit(6006.150:221): avc:  denied  { write } for  pid=6550 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6015.704453][   T24] audit: type=1400 audit(6014.800:222): avc:  denied  { write } for  pid=6566 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6021.466954][ T3204] 8021q: adding VLAN 0 to HW filter on device eth11
[ 6031.760813][ T6446] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6037.427076][   T24] audit: type=1400 audit(6036.620:223): avc:  denied  { write } for  pid=6576 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6044.711104][   T24] audit: type=1400 audit(6043.910:224): avc:  denied  { write } for  pid=6585 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6049.689413][ T3204] 8021q: adding VLAN 0 to HW filter on device eth12
[ 6068.308484][   T24] audit: type=1400 audit(6067.420:225): avc:  denied  { write } for  pid=6600 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6077.014134][   T24] audit: type=1400 audit(6076.120:226): avc:  denied  { write } for  pid=6610 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6083.059650][ T3204] 8021q: adding VLAN 0 to HW filter on device eth13
[ 6097.628646][   T24] audit: type=1400 audit(6096.800:227): avc:  denied  { write } for  pid=6626 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6105.195018][   T24] audit: type=1400 audit(6104.310:228): avc:  denied  { write } for  pid=6636 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6110.169055][ T3204] 8021q: adding VLAN 0 to HW filter on device eth14
[ 6127.432852][ T6438] veth0_vlan: entered promiscuous mode
[ 6128.569937][ T6438] veth1_vlan: entered promiscuous mode
[ 6133.566887][ T6438] veth0_macvtap: entered promiscuous mode
[ 6134.350974][ T6438] veth1_macvtap: entered promiscuous mode
[ 6136.244489][   T24] audit: type=1400 audit(6135.420:229): avc:  denied  { write } for  pid=6655 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6138.245964][ T6269] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 6138.260037][ T6269] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 6138.299736][ T6449] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 6138.550364][ T5784] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 6147.345054][   T24] audit: type=1400 audit(6146.470:230): avc:  denied  { write } for  pid=6662 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6154.140255][ T3204] 8021q: adding VLAN 0 to HW filter on device eth16
[ 6160.622278][ T6446] veth0_vlan: entered promiscuous mode
[ 6161.797718][ T6446] veth1_vlan: entered promiscuous mode
[ 6165.421740][ T6446] veth0_macvtap: entered promiscuous mode
[ 6166.049406][ T6446] veth1_macvtap: entered promiscuous mode
[ 6169.772673][ T5784] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 6169.805901][ T5784] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 6169.836618][ T5784] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 6169.928069][ T5265] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 6181.368039][   T24] audit: type=1400 audit(6180.410:231): avc:  denied  { write } for  pid=6680 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6194.965946][   T24] audit: type=1400 audit(6194.150:232): avc:  denied  { write } for  pid=6692 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6204.259132][ T3204] 8021q: adding VLAN 0 to HW filter on device eth15
[ 6240.204367][   T24] audit: type=1400 audit(6239.390:233): avc:  denied  { write } for  pid=6712 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6252.946370][   T24] audit: type=1400 audit(6252.090:234): avc:  denied  { write } for  pid=6721 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6283.044353][   T24] audit: type=1400 audit(6282.240:235): avc:  denied  { write } for  pid=6735 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6293.981002][   T24] audit: type=1400 audit(6293.180:236): avc:  denied  { write } for  pid=6750 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6328.078020][   T24] audit: type=1400 audit(6327.250:237): avc:  denied  { write } for  pid=6762 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6340.081556][   T24] audit: type=1400 audit(6339.270:238): avc:  denied  { write } for  pid=6772 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6371.262323][   T24] audit: type=1400 audit(6370.460:239): avc:  denied  { write } for  pid=6787 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6384.398023][   T24] audit: type=1400 audit(6383.580:240): avc:  denied  { write } for  pid=6799 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6425.835435][   T24] audit: type=1400 audit(6425.010:241): avc:  denied  { write } for  pid=6818 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6439.614720][   T24] audit: type=1400 audit(6438.660:242): avc:  denied  { write } for  pid=6830 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6472.311160][   T24] audit: type=1400 audit(6471.500:243): avc:  denied  { write } for  pid=6844 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6484.676273][   T24] audit: type=1400 audit(6483.790:244): avc:  denied  { write } for  pid=6854 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6519.787463][   T24] audit: type=1400 audit(6518.950:245): avc:  denied  { write } for  pid=6870 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6530.804591][   T24] audit: type=1400 audit(6529.940:246): avc:  denied  { write } for  pid=6880 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6560.314708][   T24] audit: type=1400 audit(6559.380:247): avc:  denied  { write } for  pid=6899 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6573.606052][   T24] audit: type=1400 audit(6572.750:248): avc:  denied  { write } for  pid=6908 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6596.061614][   T24] audit: type=1400 audit(6595.260:249): avc:  denied  { write } for  pid=6918 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6604.055991][   T24] audit: type=1400 audit(6603.220:250): avc:  denied  { write } for  pid=6921 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6625.246234][   T24] audit: type=1400 audit(6624.420:251): avc:  denied  { write } for  pid=6924 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6633.028431][   T24] audit: type=1400 audit(6632.190:252): avc:  denied  { write } for  pid=6929 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6677.704434][ T4918] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6680.199940][ T4918] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6683.680671][ T4918] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6685.681129][ T4918] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6701.436977][ T4918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6701.522597][ T4918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6701.641256][ T4918] bond0 (unregistering): Released all slaves
[ 6703.988308][ T4918] hsr_slave_0: left promiscuous mode
[ 6704.121711][ T4918] hsr_slave_1: left promiscuous mode
[ 6704.690455][ T4918] veth1_macvtap: left promiscuous mode
[ 6704.704273][ T4918] veth0_macvtap: left promiscuous mode
[ 6704.708259][ T4918] veth1_vlan: left promiscuous mode
[ 6704.766156][ T4918] veth0_vlan: left promiscuous mode
[ 6731.768088][ T4918] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6733.849652][ T4918] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6735.476844][ T4918] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6737.671240][ T4918] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6747.538812][   T24] audit: type=1400 audit(6746.740:253): avc:  denied  { write } for  pid=6968 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6754.398882][   T24] audit: type=1400 audit(6753.600:254): avc:  denied  { write } for  pid=6977 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6757.285946][ T4918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6757.498050][ T4918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6757.657010][ T4918] bond0 (unregistering): Released all slaves
[ 6760.432374][ T3204] 8021q: adding VLAN 0 to HW filter on device eth17
[ 6760.810306][ T4918] hsr_slave_0: left promiscuous mode
[ 6760.920325][ T4918] hsr_slave_1: left promiscuous mode
[ 6761.582770][ T4918] veth1_macvtap: left promiscuous mode
[ 6761.655534][ T4918] veth0_macvtap: left promiscuous mode
[ 6761.670392][ T4918] veth1_vlan: left promiscuous mode
[ 6761.671548][ T4918] veth0_vlan: left promiscuous mode
[ 6799.106634][ T6933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6799.388394][   T24] audit: type=1400 audit(6798.590:255): avc:  denied  { write } for  pid=6996 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6799.902469][ T6933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6800.841247][ T6931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6801.034820][ T6931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6805.057063][   T24] audit: type=1400 audit(6804.260:256): avc:  denied  { write } for  pid=7001 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6809.439906][ T3204] 8021q: adding VLAN 0 to HW filter on device eth18
[ 6823.248833][   T24] audit: type=1400 audit(6822.450:257): avc:  denied  { write } for  pid=7015 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6827.388844][ T6933] hsr_slave_0: entered promiscuous mode
[ 6827.451505][ T6933] hsr_slave_1: entered promiscuous mode
[ 6829.004901][   T24] audit: type=1400 audit(6828.190:258): avc:  denied  { write } for  pid=7023 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6830.467797][ T6931] hsr_slave_0: entered promiscuous mode
[ 6830.567885][ T6931] hsr_slave_1: entered promiscuous mode
[ 6830.626398][ T6931] debugfs: 'hsr0' already exists in 'hsr'
[ 6830.664317][ T6931] Cannot create hsr debugfs directory
[ 6833.752284][ T3204] 8021q: adding VLAN 0 to HW filter on device eth19
[ 6849.630518][ T6933] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 6850.310151][ T6933] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 6850.560565][ T6933] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 6851.142123][ T6933] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 6851.517140][ T6933] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 6852.112369][ T6933] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 6853.348065][ T6933] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 6854.016504][ T6933] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 6855.005436][   T24] audit: type=1400 audit(6854.140:259): avc:  denied  { write } for  pid=7030 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6859.238174][ T6931] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 6859.587989][ T6931] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 6859.692695][ T6931] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 6860.235613][ T6931] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 6860.407518][ T6931] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 6860.827678][ T6931] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 6861.010912][ T6931] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 6861.428020][ T6931] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 6864.832711][   T24] audit: type=1400 audit(6864.000:260): avc:  denied  { write } for  pid=7043 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6870.998153][ T3204] 8021q: adding VLAN 0 to HW filter on device eth20
[ 6887.795851][ T6933] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6888.878798][   T24] audit: type=1400 audit(6888.070:261): avc:  denied  { write } for  pid=7064 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6893.219501][ T6931] 8021q: adding VLAN 0 to HW filter on device bond0
[ 6899.245325][   T24] audit: type=1400 audit(6898.430:262): avc:  denied  { write } for  pid=7070 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6906.398249][ T3204] 8021q: adding VLAN 0 to HW filter on device eth21
[ 6940.744693][   T24] audit: type=1400 audit(6939.930:263): avc:  denied  { write } for  pid=7088 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6950.147946][   T24] audit: type=1400 audit(6949.350:264): avc:  denied  { write } for  pid=7097 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6956.410987][ T3204] 8021q: adding VLAN 0 to HW filter on device eth22
[ 6982.501513][   T24] audit: type=1400 audit(6981.700:265): avc:  denied  { write } for  pid=7117 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6993.598918][   T24] audit: type=1400 audit(6992.690:266): avc:  denied  { write } for  pid=7127 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 6999.862055][ T3204] 8021q: adding VLAN 0 to HW filter on device eth23
[ 7033.507903][   T24] audit: type=1400 audit(7032.680:267): avc:  denied  { write } for  pid=7150 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7044.755762][   T24] audit: type=1400 audit(7043.940:268): avc:  denied  { write } for  pid=7161 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7045.868576][ T6933] veth0_vlan: entered promiscuous mode
[ 7047.289121][ T6933] veth1_vlan: entered promiscuous mode
[ 7053.131073][ T3204] 8021q: adding VLAN 0 to HW filter on device eth24
[ 7053.367477][ T6931] veth0_vlan: entered promiscuous mode
[ 7054.059244][ T6933] veth0_macvtap: entered promiscuous mode
[ 7055.338417][ T6933] veth1_macvtap: entered promiscuous mode
[ 7056.048907][ T6931] veth1_vlan: entered promiscuous mode
[ 7061.306300][ T6560] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7061.312511][ T6560] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7061.590443][ T6560] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7061.681136][ T6481] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7062.940609][ T6931] veth0_macvtap: entered promiscuous mode
[ 7064.110742][ T6931] veth1_macvtap: entered promiscuous mode
[ 7070.335019][ T6020] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 7070.338031][ T6020] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 7070.487073][ T5784] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 7070.512623][ T5784] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 7072.612539][   T24] audit: type=1400 audit(7071.800:269): avc:  denied  { write } for  pid=7167 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7087.235898][   T24] audit: type=1400 audit(7086.390:270): avc:  denied  { write } for  pid=7174 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7130.748032][   T24] audit: type=1400 audit(7129.940:271): avc:  denied  { write } for  pid=7195 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7143.747653][   T24] audit: type=1400 audit(7142.920:272): avc:  denied  { write } for  pid=7205 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7178.017219][   T24] audit: type=1400 audit(7177.100:273): avc:  denied  { write } for  pid=7216 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7188.058466][   T24] audit: type=1400 audit(7187.250:274): avc:  denied  { write } for  pid=7223 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7216.035428][   T24] audit: type=1400 audit(7215.210:275): avc:  denied  { write } for  pid=7232 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7231.721524][   T24] audit: type=1400 audit(7230.920:276): avc:  denied  { write } for  pid=7244 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7290.437802][   T24] audit: type=1400 audit(7289.490:277): avc:  denied  { write } for  pid=7271 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7305.654642][   T24] audit: type=1400 audit(7304.690:278): avc:  denied  { write } for  pid=7283 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7355.416137][   T24] audit: type=1400 audit(7354.550:279): avc:  denied  { write } for  pid=7303 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7369.719912][   T24] audit: type=1400 audit(7368.900:280): avc:  denied  { write } for  pid=7312 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7410.845154][   T24] audit: type=1400 audit(7410.000:281): avc:  denied  { write } for  pid=7332 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7426.045918][   T24] audit: type=1400 audit(7425.230:282): avc:  denied  { write } for  pid=7345 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7463.816812][   T24] audit: type=1400 audit(7462.980:283): avc:  denied  { write } for  pid=7361 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7478.809353][   T24] audit: type=1400 audit(7478.010:284): avc:  denied  { write } for  pid=7371 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7508.317247][   T24] audit: type=1400 audit(7507.510:285): avc:  denied  { write } for  pid=7384 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7522.807073][   T24] audit: type=1400 audit(7521.990:286): avc:  denied  { write } for  pid=7395 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7555.181676][   T24] audit: type=1400 audit(7554.380:287): avc:  denied  { write } for  pid=7405 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7570.395097][   T24] audit: type=1400 audit(7569.590:288): avc:  denied  { write } for  pid=7417 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7750.811041][ T7485] KVM: debugfs: duplicate directory 7485-5
[ 7957.651019][ T6020] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7959.978223][ T6020] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7962.656675][ T6020] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7964.211991][ T6020] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 7983.124371][   T24] audit: type=1400 audit(7982.310:289): avc:  denied  { write } for  pid=7551 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7992.664892][ T6020] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 7993.039640][ T6020] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 7993.287034][ T6020] bond0 (unregistering): Released all slaves
[ 7994.285376][   T24] audit: type=1400 audit(7993.480:290): avc:  denied  { write } for  pid=7561 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 7998.786195][ T6020] hsr_slave_0: left promiscuous mode
[ 7999.420616][ T6020] hsr_slave_1: left promiscuous mode
[ 8000.824788][ T6020] veth1_macvtap: left promiscuous mode
[ 8000.825830][ T6020] veth0_macvtap: left promiscuous mode
[ 8000.829425][ T6020] veth1_vlan: left promiscuous mode
[ 8000.830493][ T6020] veth0_vlan: left promiscuous mode
[ 8034.936617][ T7550] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 8036.956428][ T7550] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 8038.669281][ T7550] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 8040.461649][ T7550] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 8054.876738][   T24] audit: type=1400 audit(8054.060:291): avc:  denied  { write } for  pid=7579 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8064.847690][   T24] audit: type=1400 audit(8063.940:292): avc:  denied  { write } for  pid=7586 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8067.249352][ T7550] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 8067.846958][ T7550] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 8068.438078][ T7550] bond0 (unregistering): Released all slaves
[ 8070.672017][ T7550] hsr_slave_0: left promiscuous mode
[ 8070.767714][ T7550] hsr_slave_1: left promiscuous mode
[ 8071.289250][ T7550] veth1_macvtap: left promiscuous mode
[ 8071.345408][ T7550] veth0_macvtap: left promiscuous mode
[ 8071.347321][ T7550] veth1_vlan: left promiscuous mode
[ 8071.368223][ T7550] veth0_vlan: left promiscuous mode
[ 8091.320026][ T3204] 8021q: adding VLAN 0 to HW filter on device eth25
[ 8113.986771][   T24] audit: type=1400 audit(8113.190:293): avc:  denied  { write } for  pid=7596 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8122.152631][   T24] audit: type=1400 audit(8121.350:294): avc:  denied  { write } for  pid=7605 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8128.239783][ T3204] 8021q: adding VLAN 0 to HW filter on device eth26
[ 8143.332644][ T7548] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8144.450165][ T7548] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8145.261396][   T24] audit: type=1400 audit(8144.460:295): avc:  denied  { write } for  pid=7622 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8145.698593][ T7545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8147.088736][ T7545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8152.946796][   T24] audit: type=1400 audit(8152.150:296): avc:  denied  { write } for  pid=7628 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8158.551171][ T3204] 8021q: adding VLAN 0 to HW filter on device eth27
[ 8183.694157][   T24] audit: type=1400 audit(8182.860:297): avc:  denied  { write } for  pid=7645 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8183.862147][ T7548] hsr_slave_0: entered promiscuous mode
[ 8184.008662][ T7548] hsr_slave_1: entered promiscuous mode
[ 8189.096064][ T7545] hsr_slave_0: entered promiscuous mode
[ 8189.142049][ T7545] hsr_slave_1: entered promiscuous mode
[ 8189.276860][ T7545] debugfs: 'hsr0' already exists in 'hsr'
[ 8189.294571][ T7545] Cannot create hsr debugfs directory
[ 8192.205089][   T24] audit: type=1400 audit(8191.290:298): avc:  denied  { write } for  pid=7650 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8196.950951][ T3204] 8021q: adding VLAN 0 to HW filter on device eth28
[ 8207.677241][ T7548] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 8208.328833][ T7548] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 8208.568664][ T7548] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 8209.315639][ T7548] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 8209.626038][ T7548] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 8210.061673][ T7548] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 8211.145029][ T7548] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 8211.508579][ T7548] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 8217.071066][ T7545] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 8217.769977][ T7545] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 8217.862774][ T7545] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 8218.380254][ T7545] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 8218.590549][ T7545] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 8219.120398][ T7545] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 8219.445367][ T7545] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 8219.939337][ T7545] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 8220.974403][   T24] audit: type=1400 audit(8220.160:299): avc:  denied  { write } for  pid=7658 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8234.124723][   T24] audit: type=1400 audit(8233.290:300): avc:  denied  { write } for  pid=7679 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8242.240596][ T3204] 8021q: adding VLAN 0 to HW filter on device eth29
[ 8258.222942][ T7548] 8021q: adding VLAN 0 to HW filter on device bond0
[ 8265.018669][ T7545] 8021q: adding VLAN 0 to HW filter on device bond0
[ 8274.194866][   T24] audit: type=1400 audit(8273.370:301): avc:  denied  { write } for  pid=7692 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8285.935571][   T24] audit: type=1400 audit(8285.130:302): avc:  denied  { write } for  pid=7703 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8296.120753][ T3204] 8021q: adding VLAN 0 to HW filter on device eth30
[ 8328.996880][   T24] audit: type=1400 audit(8328.070:303): avc:  denied  { write } for  pid=7716 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8340.195599][   T24] audit: type=1400 audit(8339.390:304): avc:  denied  { write } for  pid=7726 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8349.038255][ T3204] 8021q: adding VLAN 0 to HW filter on device eth31
[ 8367.806312][   T24] audit: type=1400 audit(8366.980:305): avc:  denied  { write } for  pid=7736 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8380.514563][   T24] audit: type=1400 audit(8379.710:306): avc:  denied  { write } for  pid=7747 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8414.954782][   T24] audit: type=1400 audit(8414.130:307): avc:  denied  { write } for  pid=7763 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8428.255664][   T24] audit: type=1400 audit(8427.430:308): avc:  denied  { write } for  pid=7772 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8437.369807][ T3204] 8021q: adding VLAN 0 to HW filter on device eth32
[ 8447.080446][ T7548] veth0_vlan: entered promiscuous mode
[ 8448.631850][ T7548] veth1_vlan: entered promiscuous mode
[ 8454.368164][ T7548] veth0_macvtap: entered promiscuous mode
[ 8456.017377][ T7548] veth1_macvtap: entered promiscuous mode
[ 8456.471964][ T7545] veth0_vlan: entered promiscuous mode
[ 8459.008737][ T7545] veth1_vlan: entered promiscuous mode
[ 8464.318370][ T4099] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 8464.325943][ T4099] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 8464.387983][ T6481] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 8464.422740][ T7526] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 8469.438782][ T7545] veth0_macvtap: entered promiscuous mode
[ 8471.240902][ T7545] veth1_macvtap: entered promiscuous mode
[ 8479.065108][ T6481] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 8479.090705][ T6963] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 8479.119642][ T7111] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 8479.205019][ T7111] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 8536.276889][   T24] audit: type=1400 audit(8535.410:309): avc:  denied  { write } for  pid=7810 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8553.864981][   T24] audit: type=1400 audit(8553.040:310): avc:  denied  { write } for  pid=7819 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8601.666017][   T24] audit: type=1400 audit(8600.840:311): avc:  denied  { write } for  pid=7837 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8619.565431][   T24] audit: type=1400 audit(8618.730:312): avc:  denied  { write } for  pid=7847 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8655.668057][   T24] audit: type=1400 audit(8654.850:313): avc:  denied  { write } for  pid=7860 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8666.334921][   T24] audit: type=1400 audit(8665.520:314): avc:  denied  { write } for  pid=7863 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8692.035992][   T24] audit: type=1400 audit(8691.220:315): avc:  denied  { write } for  pid=7867 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8704.145472][   T24] audit: type=1400 audit(8703.310:316): avc:  denied  { write } for  pid=7871 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8734.508953][   T24] audit: type=1400 audit(8733.640:317): avc:  denied  { write } for  pid=7879 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8750.485169][   T24] audit: type=1400 audit(8749.590:318): avc:  denied  { write } for  pid=7890 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8833.864640][   T24] audit: type=1400 audit(8832.860:319): avc:  denied  { write } for  pid=7918 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8848.747698][   T24] audit: type=1400 audit(8847.910:320): avc:  denied  { write } for  pid=7928 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8871.820440][ T7873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8874.216596][ T7873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8876.578076][ T7876] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 8876.678315][   T24] audit: type=1400 audit(8875.860:321): avc:  denied  { write } for  pid=7939 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8877.148135][ T7876] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 8891.077211][   T24] audit: type=1400 audit(8890.270:322): avc:  denied  { write } for  pid=7944 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8932.636932][   T24] audit: type=1400 audit(8931.800:323): avc:  denied  { write } for  pid=7957 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8940.920061][ T7873] hsr_slave_0: entered promiscuous mode
[ 8941.142823][ T7873] hsr_slave_1: entered promiscuous mode
[ 8941.425916][ T7873] debugfs: 'hsr0' already exists in 'hsr'
[ 8941.441480][ T7873] Cannot create hsr debugfs directory
[ 8946.215474][   T24] audit: type=1400 audit(8945.410:324): avc:  denied  { write } for  pid=7965 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8949.262551][ T7876] hsr_slave_0: entered promiscuous mode
[ 8949.492390][ T7876] hsr_slave_1: entered promiscuous mode
[ 8949.580951][ T7876] debugfs: 'hsr0' already exists in 'hsr'
[ 8949.684485][ T7876] Cannot create hsr debugfs directory
[ 8975.345549][   T24] audit: type=1400 audit(8974.530:325): avc:  denied  { write } for  pid=7969 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 8990.162487][   T24] audit: type=1400 audit(8989.360:326): avc:  denied  { write } for  pid=7973 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 9028.170153][ T7873] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 9028.940966][   T24] audit: type=1400 audit(9028.080:327): avc:  denied  { write } for  pid=7979 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 9029.499303][ T7873] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 9029.642633][ T7873] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 9030.877961][ T7873] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 9031.360063][ T7873] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 9032.127053][ T7873] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 9032.272594][ T7873] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 9032.971702][ T7873] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 9043.730159][ T7876] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 9044.361589][ T7876] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 9044.591303][ T7876] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 9045.155896][   T24] audit: type=1400 audit(9044.330:328): avc:  denied  { write } for  pid=7990 comm="rm" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 9045.395860][ T7876] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 9045.654997][ T7876] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 9046.288568][ T7876] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 9046.579315][ T7876] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 9047.322349][ T7876] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 9071.559711][   T24] audit: type=1400 audit(9070.700:329): avc:  denied  { write } for  pid=8003 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=130 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 9072.017030][   T26] INFO: task syz.8.888:7849 blocked for more than 430 seconds.
[ 9072.171726][   T26]       Not tainted syzkaller #0
[ 9072.197956][   T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 9072.198608][   T26] task:syz.8.888       state:D stack:0     pid:7849  tgid:7849  ppid:7545   task_flags:0x400040 flags:0x00000011
[ 9072.200067][   T26] Call trace:
[ 9072.200578][   T26]  __switch_to+0x5e0/0xb5c (T)
[ 9072.202864][   T26]  __schedule+0x1f54/0x38a8
[ 9072.345134][   T26]  schedule+0xac/0x27c
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 9072.386623][   T26]  schedule_timeout+0x68/0x1ec
[ 9072.404539][   T26]  do_wait_for_common+0x28c/0x440
[ 9072.405195][   T26]  wait_for_completion+0x44/0x5c
[ 9072.405678][   T26]  __synchronize_srcu+0x1b4/0x1f4
[ 9072.406212][   T26]  synchronize_srcu+0x668/0x8dc
[ 9072.406737][   T26]  mmu_notifier_unregister+0x320/0x428
[ 9072.407229][   T26]  kvm_put_kvm+0x698/0xbb8
[ 9072.407661][   T26]  kvm_vm_release+0x58/0x78
[ 9072.408118][   T26]  __fput+0x4ac/0x978
[ 9072.408585][   T26]  ____fput+0x20/0x30
[ 9072.408997][   T26]  task_work_run+0x1b8/0x250
[ 9072.409472][   T26]  exit_to_user_mode_loop+0x110/0x188
[ 9072.409956][   T26]  el0_svc+0x184/0x238
[ 9072.410425][   T26]  el0t_64_sync_handler+0x84/0x12c
[ 9072.410874][   T26]  el0t_64_sync+0x198/0x19c
[ 9072.412594][   T26] 
[ 9072.412594][   T26] Showing all locks held in the system:
[ 9072.625507][   T26] 1 lock held by khungtaskd/26:
[ 9072.646616][   T26]  #0: ffff800087dc47f8 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44
[ 9072.650104][   T26] 2 locks held by getty/3234:
[ 9072.650526][   T26]  #0: 50f000001277a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c
[ 9072.652164][   T26]  #1: d2ff80008cb5b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x310/0x1284
[ 9072.756828][   T26] 2 locks held by syz-executor/3364:
[ 9072.757220][   T26] 3 locks held by kworker/u4:0/4918:
[ 9072.757648][   T26] 3 locks held by kworker/u4:1/7370:
[ 9072.757980][   T26] 2 locks held by kworker/u4:6/7526:
[ 9072.758306][   T26]  #0: 63f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80
[ 9072.760250][   T26]  #1: ffff80008fa67ca8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80
[ 9072.761870][   T26] 2 locks held by kworker/u4:9/7550:
[ 9072.762197][   T26] 3 locks held by kworker/u4:11/7565:
[ 9072.762543][   T26] 2 locks held by kworker/u4:15/7687:
[ 9072.762833][   T26]  #0: 63f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d80
[ 9072.868066][   T26]  #1: ffff80008f4d7ca8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d80
[ 9072.869721][   T26] 2 locks held by syz.9.889/7852:
[ 9072.870106][   T26] 2 locks held by dhcpcd-run-hook/8003:
[ 9072.870452][   T26] 4 locks held by modprobe/8008:
[ 9072.870742][   T26] 1 lock held by modprobe/8009:
[ 9073.022066][   T26] 
[ 9073.022801][   T26] =============================================
[ 9073.022801][   T26] 
[ 9073.025153][   T26] Kernel panic - not syncing: hung_task: blocked tasks
[ 9073.030314][   T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT 
[ 9073.031899][   T26] Hardware name: linux,dummy-virt (DT)
[ 9073.032936][   T26] Call trace:
[ 9073.033751][   T26]  show_stack+0x2c/0x3c (C)
[ 9073.034832][   T26]  __dump_stack+0x30/0x40
[ 9073.035864][   T26]  dump_stack_lvl+0x30/0x12c
[ 9073.036863][   T26]  dump_stack+0x1c/0x28
[ 9073.037824][   T26]  vpanic+0x4d0/0x848
[ 9073.038720][   T26]  vpanic+0x0/0x848
[ 9073.039578][   T26]  hung_task_panic+0x0/0x2c
[ 9073.040630][   T26]  kthread+0x4d4/0x51c
[ 9073.041577][   T26]  ret_from_fork+0x10/0x20
[ 9073.043509][   T26] Kernel Offset: disabled
[ 9073.044341][   T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f
[ 9073.045558][   T26] Memory Limit: none
[ 9073.047844][   T26] Rebooting in 86400 seconds..