Extracting prog: 42m32.817417895s Minimizing prog: 5h46m50.878266488s Simplifying prog options: 0s Extracting C: 5m55.980141493s Simplifying C: 39m40.033232847s extracting reproducer from 9 programs first checking the prog from the crash report single: executing 1 programs separately with timeout 45s testing program (duration=45s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-munmap-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program did not crash single: failed to extract reproducer bisect: bisecting 9 programs with base timeout 45s testing program (duration=47s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): [10, 9, 4, 13, 2, 7, 15, 25, 5] detailed listing: executing program 0: munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x28) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r2, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, r2, 0x2, 0x10010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) executing program 1: munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r0 = openat$kvm(0x0, 0x0, 0x0, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r1, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x18a900, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xae) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x51) executing program 1: munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x2000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xb2) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x0, 0x8032, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xe1) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x4020940d, 0xfffffffffffff4c2) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40400, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0xe, 0x32, 0xffffffffffffffff, 0x0) executing program 0: munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x700, 0x4f832, 0xffffffffffffffff, 0x1000000) executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r2, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x5d) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000540)={0x0, &(0x7f0000000040)=[@eret={0xe6, 0x18, 0xbf38}, @smc={0x1e, 0x40, {0x3f000000, [0x0, 0x3, 0xffffffff, 0xfff, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c684, 0x400}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x0, 0x6, 0x8}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x17c}}, @hvc={0x32, 0x40, {0x84000013, [0x18, 0xffffffffffff7134, 0x1, 0x1000, 0x3]}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x100}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x3e3}}, @msr={0x14, 0x20, {0x603000000013c64a, 0x10}}, @mrs={0xbe, 0x18, {0x603000000013e21b}}, @msr={0x14, 0x20, {0x603000000013c00f, 0xb4}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0xe1}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0x5, 0x1}}, @smc={0x1e, 0x40, {0x80000000, [0x1, 0x4, 0x82c, 0x4, 0xb19]}}, @svc={0x122, 0x40, {0x1000000, [0x9, 0x6, 0x6, 0x8, 0x30000000000]}}, @irq_setup={0x46, 0x18, {0x3, 0x68}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x61}}, @msr={0x14, 0x20, {0x603000000013df7e, 0x3}}, @hvc={0x32, 0x40, {0x8400000c, [0x75, 0x6, 0x80000000, 0x5, 0x1]}}, @svc={0x122, 0x40, {0x40000000, [0x3, 0xe1c7, 0xffff, 0x4, 0xffffffffffffff8b]}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x223}}, @smc={0x1e, 0x40, {0x80000000, [0x6, 0x100, 0x575, 0x4, 0xffffffff]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x4, 0x6, 0x80, 0x2, 0x1}}, @smc={0x1e, 0x40, {0x80008040, [0x5bfa, 0x5, 0x4, 0x5, 0x9]}}, @eret={0xe6, 0x18, 0x7}, @irq_setup={0x46, 0x18, {0x4, 0x1fb}}, @eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x31000000, [0x2, 0x7, 0x9, 0xffffffff, 0xfe]}}], 0x4c8}, &(0x7f0000000580)=[@featur2={0x1, 0x22}], 0x1) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000005c0)=0x2) executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x8521, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0x5452, 0x3a) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x66) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x17) mmap$KVM_VCPU(&(0x7f0000842000/0x1000)=nil, 0x930, 0x1000005, 0x5c1fd1b6164b3f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x1, 0xeeee0000, 0x2000, &(0x7f0000e64000/0x2000)=nil}) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) executing program 1: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) close(r0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r1, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) program did not crash replaying the whole log did not cause a kernel crash single: executing 1 programs separately with timeout 5m0s testing program (duration=5m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-munmap-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program did not crash single: failed to extract reproducer bisect: bisecting 9 programs with base timeout 5m0s testing program (duration=5m2s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): [10, 9, 4, 13, 2, 7, 15, 25, 5] detailed listing: executing program 0: munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x28) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r2, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x4000)=nil, r2, 0x2, 0x10010, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) executing program 1: munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) r0 = openat$kvm(0x0, 0x0, 0x0, 0x0) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f00006b4000/0x3000)=nil, r1, 0x100000d, 0x32, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x18a900, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xae) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x51) executing program 1: munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x2000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xb2) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x0, 0x8032, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0xe1) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r2, 0x4020940d, 0xfffffffffffff4c2) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x8) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40400, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0xe, 0x32, 0xffffffffffffffff, 0x0) executing program 0: munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x700, 0x4f832, 0xffffffffffffffff, 0x1000000) executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r2, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x5d) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000540)={0x0, &(0x7f0000000040)=[@eret={0xe6, 0x18, 0xbf38}, @smc={0x1e, 0x40, {0x3f000000, [0x0, 0x3, 0xffffffff, 0xfff, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c684, 0x400}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x0, 0x6, 0x8}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x17c}}, @hvc={0x32, 0x40, {0x84000013, [0x18, 0xffffffffffff7134, 0x1, 0x1000, 0x3]}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x100}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x3e3}}, @msr={0x14, 0x20, {0x603000000013c64a, 0x10}}, @mrs={0xbe, 0x18, {0x603000000013e21b}}, @msr={0x14, 0x20, {0x603000000013c00f, 0xb4}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0xe1}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0x5, 0x1}}, @smc={0x1e, 0x40, {0x80000000, [0x1, 0x4, 0x82c, 0x4, 0xb19]}}, @svc={0x122, 0x40, {0x1000000, [0x9, 0x6, 0x6, 0x8, 0x30000000000]}}, @irq_setup={0x46, 0x18, {0x3, 0x68}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x61}}, @msr={0x14, 0x20, {0x603000000013df7e, 0x3}}, @hvc={0x32, 0x40, {0x8400000c, [0x75, 0x6, 0x80000000, 0x5, 0x1]}}, @svc={0x122, 0x40, {0x40000000, [0x3, 0xe1c7, 0xffff, 0x4, 0xffffffffffffff8b]}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x223}}, @smc={0x1e, 0x40, {0x80000000, [0x6, 0x100, 0x575, 0x4, 0xffffffff]}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x4, 0x6, 0x80, 0x2, 0x1}}, @smc={0x1e, 0x40, {0x80008040, [0x5bfa, 0x5, 0x4, 0x5, 0x9]}}, @eret={0xe6, 0x18, 0x7}, @irq_setup={0x46, 0x18, {0x4, 0x1fb}}, @eret={0xe6, 0x18, 0x7}, @svc={0x122, 0x40, {0x31000000, [0x2, 0x7, 0x9, 0xffffffff, 0xfe]}}], 0x4c8}, &(0x7f0000000580)=[@featur2={0x1, 0x22}], 0x1) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000005c0)=0x2) executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x8521, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0x5452, 0x3a) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x66) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x17) mmap$KVM_VCPU(&(0x7f0000842000/0x1000)=nil, 0x930, 0x1000005, 0x5c1fd1b6164b3f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x1, 0xeeee0000, 0x2000, &(0x7f0000e64000/0x2000)=nil}) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) executing program 1: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) close(r0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r1, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) program did not crash replaying the whole log did not cause a kernel crash single: executing 1 programs separately with timeout 16m0s testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-munmap-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception single: successfully extracted reproducer found reproducer with 25 syscalls minimizing guilty program testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-munmap-mmap$KVM_VCPU detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0x0, 0x32, 0xffffffffffffffff, 0x0) program did not crash testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000080)=@arm64_fw={0x6030000000140001, &(0x7f0000000000)=0x7914}) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) r2 = eventfd2(0x0, 0x80000) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r3, 0x2000000, 0x10, r2, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_GET_VCPU_MMAP_SIZE-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) eventfd2(0x0, 0x80000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-eventfd2-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) eventfd2(0x0, 0x80000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-munmap-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CHECK_EXTENSION-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0x40086602, 0x110e227ffe) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-ioctl$KVM_GET_REG_LIST-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f00000000c0)={0x1, [0x0]}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x21) program did not crash testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-syz_kvm_add_vcpu$arm64-openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x18b080, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: r0 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program did not crash extracting C reproducer testing compiled C program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception simplifying C reproducer testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM program crashed: kernel panic: Unhandled exception testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception validation run: crashed=true testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception validation run: crashed=true testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM detailed listing: executing program 0: r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x21) program crashed: kernel panic: Unhandled exception validation run: crashed=true reproducing took 7h54m22.650187434s repro crashed as (corrupted=false): x8 : 8af000001fc90000 x7 : ffff800080aba4c0 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff80008e437ac0 x3 : 0000000000000004 x2 : 0000000000013d94 x1 : 0000000000000000 x0 : 00000000c600001b Kernel panic - not syncing: Unhandled exception CPU: 0 UID: 0 PID: 3626 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT Hardware name: linux,dummy-virt (DT) Call trace: show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C) __dump_stack+0x30/0x40 lib/dump_stack.c:94 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 vpanic+0x22c/0x59c kernel/panic.c:430 vpanic+0x0/0x59c kernel/panic.c:566 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P) kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline] kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline] kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:598 [inline] __se_sys_ioctl fs/ioctl.c:584 [inline] __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 Kernel Offset: disabled CPU features: 0x00000,000068c0,17de33e1,057ffe1f Memory Limit: none ================================ WARNING: inconsistent lock state syzkaller #0 Not tainted -------------------------------- inconsistent {INITIAL USE} -> {IN-NMI} usage. syz.2.17/3626 [HC1[1]:SC0[0]:HE0:SE1] takes: aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: spin_lock include/linux/spinlock.h:351 [inline] aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: bus_to_subsys drivers/base/bus.c:68 [inline] aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359 {INITIAL USE} state was registered at: lock_acquire+0x14c/0x2e0 kernel/locking/lockdep.c:5868 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] kobj_kset_join lib/kobject.c:180 [inline] kobject_add_internal+0x46c/0xee4 lib/kobject.c:231 kobject_add_varg lib/kobject.c:374 [inline] kobject_add+0x10c/0x1d0 lib/kobject.c:426 device_add+0x494/0xd78 drivers/base/core.c:3627 device_register+0x28/0x38 drivers/base/core.c:3771 faux_bus_init+0x1c/0x88 drivers/base/faux.c:238 driver_init+0x30/0x58 drivers/base/init.c:35 do_basic_setup+0x1c/0xa8 init/main.c:1363 kernel_init_freeable+0x244/0x330 init/main.c:1579 kernel_init+0x24/0x1d0 init/main.c:1469 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:844 irq event stamp: 1604 hardirqs last enabled at (1603): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (1603): [] _raw_spin_unlock_irqrestore+0x44/0xbc kernel/locking/spinlock.c:194 hardirqs last disabled at (1604): [] __panic_unhandled+0x24/0x68 arch/arm64/kernel/entry-common.c:327 softirqs last enabled at (1538): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (1538): [] handle_softirqs+0xb8c/0xd08 kernel/softirq.c:607 softirqs last disabled at (1523): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&k->list_lock); lock(&k->list_lock); *** DEADLOCK *** no locks held by syz.2.17/3626. stack backtrace: CPU: 0 UID: 0 PID: 3626 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT Hardware name: linux,dummy-virt (DT) Call trace: show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C) __dump_stack+0x30/0x40 lib/dump_stack.c:94 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 print_usage_bug+0x2f4/0x32c kernel/locking/lockdep.c:4042 verify_lock_unused+0x78/0x88 kernel/locking/lockdep.c:5792 lock_acquire+0x22c/0x2e0 kernel/locking/lockdep.c:5859 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] bus_to_subsys drivers/base/bus.c:68 [inline] bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359 coresight_panic_cb+0x2c/0x3c drivers/hwtracing/coresight/coresight-core.c:1586 notifier_call_chain+0x1e8/0x65c kernel/notifier.c:85 atomic_notifier_call_chain+0xd0/0x180 kernel/notifier.c:223 vpanic+0x2c4/0x59c kernel/panic.c:459 vpanic+0x0/0x59c kernel/panic.c:566 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P) kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline] kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline] kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:598 [inline] __se_sys_ioctl fs/ioctl.c:584 [inline] __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 Rebooting in 86400 seconds.. final repro crashed as (corrupted=false): x8 : 8af000001fc90000 x7 : ffff800080aba4c0 x6 : 0000000000000000 x5 : 0000000000000001 x4 : ffff80008e437ac0 x3 : 0000000000000004 x2 : 0000000000013d94 x1 : 0000000000000000 x0 : 00000000c600001b Kernel panic - not syncing: Unhandled exception CPU: 0 UID: 0 PID: 3626 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT Hardware name: linux,dummy-virt (DT) Call trace: show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C) __dump_stack+0x30/0x40 lib/dump_stack.c:94 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 vpanic+0x22c/0x59c kernel/panic.c:430 vpanic+0x0/0x59c kernel/panic.c:566 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P) kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline] kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline] kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:598 [inline] __se_sys_ioctl fs/ioctl.c:584 [inline] __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 Kernel Offset: disabled CPU features: 0x00000,000068c0,17de33e1,057ffe1f Memory Limit: none ================================ WARNING: inconsistent lock state syzkaller #0 Not tainted -------------------------------- inconsistent {INITIAL USE} -> {IN-NMI} usage. syz.2.17/3626 [HC1[1]:SC0[0]:HE0:SE1] takes: aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: spin_lock include/linux/spinlock.h:351 [inline] aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: bus_to_subsys drivers/base/bus.c:68 [inline] aef000000d3ed7a8 (&k->list_lock){+.+.}-{3:3}, at: bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359 {INITIAL USE} state was registered at: lock_acquire+0x14c/0x2e0 kernel/locking/lockdep.c:5868 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] kobj_kset_join lib/kobject.c:180 [inline] kobject_add_internal+0x46c/0xee4 lib/kobject.c:231 kobject_add_varg lib/kobject.c:374 [inline] kobject_add+0x10c/0x1d0 lib/kobject.c:426 device_add+0x494/0xd78 drivers/base/core.c:3627 device_register+0x28/0x38 drivers/base/core.c:3771 faux_bus_init+0x1c/0x88 drivers/base/faux.c:238 driver_init+0x30/0x58 drivers/base/init.c:35 do_basic_setup+0x1c/0xa8 init/main.c:1363 kernel_init_freeable+0x244/0x330 init/main.c:1579 kernel_init+0x24/0x1d0 init/main.c:1469 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:844 irq event stamp: 1604 hardirqs last enabled at (1603): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] hardirqs last enabled at (1603): [] _raw_spin_unlock_irqrestore+0x44/0xbc kernel/locking/spinlock.c:194 hardirqs last disabled at (1604): [] __panic_unhandled+0x24/0x68 arch/arm64/kernel/entry-common.c:327 softirqs last enabled at (1538): [] softirq_handle_end kernel/softirq.c:425 [inline] softirqs last enabled at (1538): [] handle_softirqs+0xb8c/0xd08 kernel/softirq.c:607 softirqs last disabled at (1523): [] __do_softirq+0x14/0x20 kernel/softirq.c:613 other info that might help us debug this: Possible unsafe locking scenario: CPU0 ---- lock(&k->list_lock); lock(&k->list_lock); *** DEADLOCK *** no locks held by syz.2.17/3626. stack backtrace: CPU: 0 UID: 0 PID: 3626 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT Hardware name: linux,dummy-virt (DT) Call trace: show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C) __dump_stack+0x30/0x40 lib/dump_stack.c:94 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 print_usage_bug+0x2f4/0x32c kernel/locking/lockdep.c:4042 verify_lock_unused+0x78/0x88 kernel/locking/lockdep.c:5792 lock_acquire+0x22c/0x2e0 kernel/locking/lockdep.c:5859 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline] _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154 spin_lock include/linux/spinlock.h:351 [inline] bus_to_subsys drivers/base/bus.c:68 [inline] bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359 coresight_panic_cb+0x2c/0x3c drivers/hwtracing/coresight/coresight-core.c:1586 notifier_call_chain+0x1e8/0x65c kernel/notifier.c:85 atomic_notifier_call_chain+0xd0/0x180 kernel/notifier.c:223 vpanic+0x2c4/0x59c kernel/panic.c:459 vpanic+0x0/0x59c kernel/panic.c:566 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P) kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline] kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline] kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:598 [inline] __se_sys_ioctl fs/ioctl.c:584 [inline] __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596 Rebooting in 86400 seconds..