last executing test programs:

57m21.282598252s ago: executing program 0 (id=321):
munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x8001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfd000/0x400000)=nil)
r3 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
mmap$KVM_VCPU(&(0x7f0000f2b000/0x3000)=nil, 0x0, 0x3000002, 0x112, 0xffffffffffffffff, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2a)
syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, 0x0)
r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000b80)={0x0, &(0x7f00000000c0)=[@hvc={0x32, 0x40, {0x84000015, [0x7, 0x8000000000000000, 0xffffffffffffffff, 0xee24, 0xfffffffffffeffff]}}], 0x40}, &(0x7f0000000040)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, &(0x7f0000000080)=@arm64_fw={0x6030000000140000, &(0x7f0000000040)=0x2})
ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000040)=@x86={0x7, 0x7f, 0x5, 0x0, 0xa544, 0x3, 0x7, 0x7, 0x6, 0x99, 0x3, 0x0, 0x0, 0xfff, 0x7f, 0x5, 0x9, 0x80, 0x4, '\x00', 0x0, 0x25})
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
r8 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1a)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x4000, 0x1000, &(0x7f0000f96000/0x1000)=nil})
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x1000002, 0xaf832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r9, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0)

57m16.684548876s ago: executing program 1 (id=322):
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f00000000c0)={0x10001, 0x1, 0x3000, 0x1000, &(0x7f0000000000/0x1000)=nil})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r5 = syz_kvm_vgic_v3_setup(r4, 0x3, 0x40)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x6, 0x382bc663, &(0x7f0000000200)=0xffffffff})
r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2a)
ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000000)={0x2, 0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
ioctl$KVM_CREATE_VM(r7, 0x400454ca, 0x100002f)

57m11.432772384s ago: executing program 0 (id=323):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f00009e5000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x1, 0x273}}], 0x18}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
r3 = openat$kvm(0x0, &(0x7f0000000140), 0xc00, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c65d, 0xa19f}}], 0x20}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r4, 0x3, 0xa0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

57m4.668009875s ago: executing program 1 (id=324):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x4})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x3d)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000000c0)={0x4})
r5 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x7, <r6=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x2, &(0x7f0000000200)=0xa000000})
ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x40400000080a0000})

57m0.261524649s ago: executing program 0 (id=325):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x4})
openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async)
syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000000)={0x4}) (async)

56m53.130496848s ago: executing program 1 (id=326):
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x0, 0x80031, 0xffffffffffffffff, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000040)=@arm64_ccsidr={0x6020000000110000})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_vgic_v3_setup(r1, 0x4, 0x100)

56m50.253454641s ago: executing program 0 (id=327):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = eventfd2(0xeffffffd, 0x801)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000000)={0x200, 0x4000, 0x4, r4, 0x1})
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x1, r4, 0xb})
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r4, 0xf})
syz_kvm_vgic_v3_setup(r1, 0x2, 0x100)
r5 = eventfd2(0x10000, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r5, 0x3})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={r5, 0xb16b, 0x2, r5})

56m43.104275244s ago: executing program 1 (id=328):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, 0xfffffffffffffffe) (async)
ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, 0xfffffffffffffffe)
r3 = openat$kvm(0x0, &(0x7f0000000080), 0x402600, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, 0x0)
ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) (async)
r5 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
ioctl$KVM_SET_USER_MEMORY_REGION2(r4, 0x40a0ae49, &(0x7f0000000140)={0x3, 0x4, 0xd000, 0x1000, &(0x7f0000fa8000/0x1000)=nil, 0x0, r5})

56m38.897352569s ago: executing program 0 (id=329):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r4, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000007c0)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000800)=[@featur2={0x1, 0x9}], 0x1)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x9)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r5, 0x4068aea3, &(0x7f0000000100)={0xef, 0x0, 0x7})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000080)={0x5})
ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000280)=@arm64_sys={0x603000000013c006, &(0x7f0000000240)=0x2})
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x17)
syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000002000/0x400000)=nil)
r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
r11 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r10, 0x0)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r11, 0x20, &(0x7f0000000080)="4200eee491ca24e00d0003000098bea5038b6db300cd411a0000000000000001a8092240f0ee5c0030521e10000000830000000000000000010000000000000000000000591f9b21", 0x0, 0xffffffffffffff1f)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r10, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)

56m35.287907293s ago: executing program 1 (id=330):
r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r1, 0x2800002, 0x4010, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x200, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000180)={0x7ff, 0x4000000})
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0xfffffffffffffffc)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, 0x0}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1)
r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r10, 0x4018aee3, &(0x7f0000000240)=@attr_set_pmu={0x0, 0x0, 0x3, 0x0})
r11 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
syz_kvm_vgic_v3_setup(r11, 0x4, 0x100)
ioctl$KVM_CREATE_GUEST_MEMFD(r11, 0xc040aed4, &(0x7f0000000040)={0x5, 0xde})
ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000100)={0x0, 0x1, 0xeeee0000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r13, 0xc00caee0, &(0x7f0000000140)={0x4, <r14=>0xffffffffffffffff, 0x1})
write$eventfd(r14, &(0x7f00000001c0)=0x7ffffff, 0xe80)
syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f0000000200)}, 0x0, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r1, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000013000/0x400000)=nil)

56m27.587980938s ago: executing program 0 (id=331):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0xb4644aa3bfb9a187, 0x1, 0xdddd0000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
mmap$KVM_VCPU(&(0x7f0000f8e000/0x1000)=nil, r4, 0x3000002, 0x16831, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async, rerun: 32)
r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x21)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) (async)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, 0x0}, &(0x7f0000000500)=[@featur2], 0x1) (async)
r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x1a)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8})
ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000000)=@arm64_sys={0x603000000013df41, &(0x7f0000000080)=0x836})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) (async)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000000)={0x8000000000000001, 0x7}) (async)
write$eventfd(0xffffffffffffffff, &(0x7f0000000040)=0x8, 0x8) (async)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
r10 = ioctl$KVM_CREATE_VM(r2, 0x894c, 0x19)
ioctl$KVM_CREATE_VCPU(r10, 0x8008b705, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1d)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async, rerun: 32)
eventfd2(0x8, 0x80800) (async, rerun: 32)
eventfd2(0x8, 0x80000)

56m24.173880091s ago: executing program 1 (id=332):
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x40) (async)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) (async)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x0, 0x7d7b465c1d30afba, 0xffffffffffffffff, 0x0) (async)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000040)={0x0, &(0x7f0000000340)=[@hvc={0x32, 0x40, {0x8600ff01, [0x4000006, 0x5, 0x400, 0x8, 0x8]}}], 0x40}, 0x0, 0x0) (async)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x2, 0x4, 0x1}}], 0x28}, 0x0, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000240)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x100a83, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60) (async)
ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f0000000380)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @adapter={0x0, 0x0, 0x8, 0x5, 0x3}}, {0x3, 0x5, 0x0, 0x0, @msi={0x1, 0x5, 0x0, 0xcfb}}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$KVM_GET_STATS_FD_vm(r7, 0xaece) (async)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) (async)
r12 = openat$kvm(0x0, &(0x7f0000000280), 0x10000, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000200)=@arm64_core={0x603000000010000a, &(0x7f0000000100)=0xc5c9}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)

55m41.749876024s ago: executing program 32 (id=331):
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0xb4644aa3bfb9a187, 0x1, 0xdddd0000, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) (async)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04)
mmap$KVM_VCPU(&(0x7f0000f8e000/0x1000)=nil, r4, 0x3000002, 0x16831, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async, rerun: 32)
r6 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x21)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) (async)
ioctl$KVM_GET_ONE_REG(r7, 0x4010aeab, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, 0x0}, &(0x7f0000000500)=[@featur2], 0x1) (async)
r8 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x1a)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8})
ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000000)=@arm64_sys={0x603000000013df41, &(0x7f0000000080)=0x836})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) (async)
ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f0000000000)={0x8000000000000001, 0x7}) (async)
write$eventfd(0xffffffffffffffff, &(0x7f0000000040)=0x8, 0x8) (async)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
r10 = ioctl$KVM_CREATE_VM(r2, 0x894c, 0x19)
ioctl$KVM_CREATE_VCPU(r10, 0x8008b705, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1d)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) (async, rerun: 32)
eventfd2(0x8, 0x80800) (async, rerun: 32)
eventfd2(0x8, 0x80000)

55m35.940158551s ago: executing program 33 (id=332):
syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x40) (async)
r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) (async)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x0, 0x7d7b465c1d30afba, 0xffffffffffffffff, 0x0) (async)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000040)={0x0, &(0x7f0000000340)=[@hvc={0x32, 0x40, {0x8600ff01, [0x4000006, 0x5, 0x400, 0x8, 0x8]}}], 0x40}, 0x0, 0x0) (async)
syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) (async)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x34)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x2, 0x4, 0x1}}], 0x28}, 0x0, 0x0) (async)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000240)={0x8, <r9=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x100a83, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60) (async)
ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f0000000380)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @adapter={0x0, 0x0, 0x8, 0x5, 0x3}}, {0x3, 0x5, 0x0, 0x0, @msi={0x1, 0x5, 0x0, 0xcfb}}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$KVM_GET_STATS_FD_vm(r7, 0xaece) (async)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) (async)
r12 = openat$kvm(0x0, &(0x7f0000000280), 0x10000, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000000)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000200)=@arm64_core={0x603000000010000a, &(0x7f0000000100)=0xc5c9}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)

49m48.619663439s ago: executing program 3 (id=334):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2c)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x603000000010002e, 0x0})
r6 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000953000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000004c0)={0x0, &(0x7f0000000240)=[@svc={0x122, 0x40, {0xc400000c, [0x6, 0x2, 0x65b, 0xafc2, 0xb]}}, @svc={0x122, 0x40, {0x663943211e600db7, [0x316, 0xee, 0x5, 0x10001, 0x1]}}, @eret={0xe6, 0x18, 0x4}, @hvc={0x32, 0x40, {0x3000000, [0x7, 0x4, 0x9, 0x4, 0x5]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0x0, 0x8}}, @hvc={0x32, 0x40, {0xc4000001, [0x3, 0x0, 0xfffffffffffffffd, 0x0, 0xff]}}, @irq_setup={0x46, 0x18, {0x2, 0x331}}, @uexit={0x0, 0x18, 0x1}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x0, 0x4, 0xa, 0x9, 0x2}}, @hvc={0x32, 0x40, {0xc4000004, [0x7, 0xc, 0xc, 0xffffffff, 0x4]}}, @code={0xa, 0x84, {"007008d5804a87d20020b8f2e10180d2620080d2430080d2440080d2020000d4809f9fd200c0b8f2410180d2220080d2830080d2840080d2020000d40000c078003c0013008008d5e01496d200a0b8f2a10180d2420080d2a30180d2e40180d2020000d400c4a00e007008d5007008d5"}}], 0x264}, &(0x7f0000000500)=[@featur2], 0x1)
mmap$KVM_VCPU(&(0x7f0000c3c000/0x2000)=nil, 0x0, 0x2000008, 0x16831, r5, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000140)=[@featur1={0x1, 0x8a}], 0x1)
ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000000)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x10000})

49m29.813993366s ago: executing program 3 (id=337):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0x40086602, 0x110e22ffff)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x603000000010002a, 0x0})
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@svc={0x122, 0x40, {0x84000007, [0x1, 0x3, 0xe, 0x8, 0x40]}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x2, 0x8, 0x95c7}}, @hvc={0x32, 0x40, {0x32000000, [0xa, 0x6, 0x6, 0x8, 0xb]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xf, 0x7, 0x4de1}}, @memwrite={0x6e, 0x30, @generic={0x4, 0x9e2, 0xfffffffffffffffc, 0x4}}], 0x100}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r9, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, <r11=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
r14 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000180)=@arm64_sys={0x603000000013d801, &(0x7f0000000000)=0x1})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4106931, 0xffffffffffffffff, 0x0)

48m42.15399332s ago: executing program 34 (id=337):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0x40086602, 0x110e22ffff)
r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x31)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000040)={0x1, 0x2, 0xeeef0000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x8080000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil)
munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x603000000010002a, 0x0})
r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r9 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil)
r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000240)=[@svc={0x122, 0x40, {0x84000007, [0x1, 0x3, 0xe, 0x8, 0x40]}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x2, 0x8, 0x95c7}}, @hvc={0x32, 0x40, {0x32000000, [0xa, 0x6, 0x6, 0x8, 0xb]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xf, 0x7, 0x4de1}}, @memwrite={0x6e, 0x30, @generic={0x4, 0x9e2, 0xfffffffffffffffc, 0x4}}], 0x100}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r9, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, <r11=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_RUN(r13, 0xae80, 0x0)
r14 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r14, 0x4010aeab, &(0x7f0000000180)=@arm64_sys={0x603000000013d801, &(0x7f0000000000)=0x1})
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4106931, 0xffffffffffffffff, 0x0)

40m22.544548559s ago: executing program 4 (id=376):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000100)="5af600f6b34e08c180f948c13e2727ba279cacc033d6bd28118e0e1e50390ff2f8a1aa8366bb4c33115d61c97d9387dac1b147ed1b515c14bcb89051301caef704371680ab057973", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000000), 0x3af8c3, 0x1f01)

40m8.434015638s ago: executing program 4 (id=378):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x28300, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
munmap(&(0x7f0000584000/0x800000)=nil, 0x800000)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bc2000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_SET_GUEST_DEBUG_arm64(r4, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0x1, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x80000000, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c8, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x9]}})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040))
ioctl$KVM_SET_SREGS(r4, 0x4000ae84, &(0x7f0000000400)={{0xeeef0000, 0x9000, 0xb, 0x3, 0x81, 0x51, 0x1, 0x9, 0xfd, 0x2, 0x8, 0x6}, {0x25000, 0x1, 0x3, 0x5, 0x0, 0x5, 0x8, 0x71, 0x2, 0x32, 0x6, 0xf6}, {0x2, 0xa000, 0x8, 0x3, 0x3, 0xf5, 0x1d, 0x2, 0x4, 0xe, 0x9, 0x2}, {0x1000, 0x200000, 0xe, 0xd, 0x6d, 0x3, 0x7, 0xe, 0x8, 0x8, 0x24, 0x2}, {0x80a0000, 0x8000000, 0x4, 0x9, 0x4, 0x10, 0x2, 0x6, 0x2, 0x3, 0x6, 0x1}, {0x70000, 0x54000, 0x10, 0x9, 0x80, 0x2, 0x8, 0x4, 0x5, 0x3, 0x6}, {0xfec00000, 0x0, 0xa, 0x57, 0x0, 0x4, 0x2, 0x5, 0x3, 0x4, 0x9b, 0x1b}, {0x4, 0xd000, 0xd, 0x0, 0x7, 0xe, 0x0, 0x3, 0xb, 0x95, 0x22, 0x9}, {0xf000, 0x55}, {0x1}, 0x10008, 0x0, 0x10000, 0x50288, 0x1, 0x5400, 0x40000, [0x4, 0x1, 0xfffffffffffff000, 0x8]})

39m56.637783241s ago: executing program 2 (id=379):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x80111500, 0x20000000)
write$eventfd(r0, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0x0, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x3)
r5 = eventfd2(0xfffffffa, 0x80001)
write$eventfd(r5, &(0x7f0000000200)=0x8, 0x8)
ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x1, 0x8080000, 0x4, r5, 0xb})
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x5, 0x4, &(0x7f0000000200)=0x100000001})
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, <r6=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x80, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x54, 0x86, 0xdd, 0x68, 0x0, 0x20b, 0x0, 0x13, 0x3, 0x5, 0x5, '\x00', 0x1, 0x3})
write$eventfd(r6, &(0x7f00000001c0)=0x3, 0x50)

39m54.467266826s ago: executing program 4 (id=380):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x7)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r0, 0x4008ae73, &(0x7f0000000000)={0x4, 0x3})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x39)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1fe, 0x6, 0xffff1000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000080))
ioctl$KVM_CAP_PTP_KVM(r2, 0x4068aea3, &(0x7f00000000c0))
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x18)
ioctl$KVM_CLEAR_DIRTY_LOG(r3, 0xc018aec0, &(0x7f0000000540)={0x1fd, 0x200, 0x0, &(0x7f0000000140)=[0xd, 0x3, 0xfffffffffffffffa, 0xf, 0x5, 0xa, 0xbaad, 0x100000000, 0x8e, 0x6, 0x3, 0x6, 0x7f, 0xd, 0xffffffff, 0x1ff, 0xa, 0x7fffffff, 0x7, 0x3, 0x5, 0x0, 0x5, 0x7, 0x4, 0x7f, 0x1, 0xff, 0x1000000000, 0x263, 0x6, 0x0, 0x5, 0x9, 0x1, 0x7, 0x1, 0x8, 0x800, 0x0, 0x0, 0x6, 0x9, 0x8f83, 0x4, 0x4, 0x2, 0x80000000, 0x0, 0x101, 0x100000000, 0x0, 0x4a2, 0x80000001, 0xbf1, 0x80, 0x3, 0x9a, 0x9, 0x3, 0x3, 0x200, 0xffffffffffff2c5a, 0x6, 0x7f, 0x8, 0x7, 0x7, 0x9, 0xeb, 0x6, 0x80, 0xc3, 0xc2, 0x5, 0x4, 0xfffffffffffffff1, 0x8, 0xffffffffffffffff, 0x0, 0x6, 0x5, 0x7, 0x0, 0x5, 0x3, 0x1, 0x0, 0x400, 0xffffffffffffff25, 0x7, 0x5, 0xc, 0x6, 0xd9d5, 0xff, 0xffffffffffffffa7, 0xbc, 0x15, 0xfffffffffffffffb, 0x4e, 0x6bc00000000, 0x9600000000, 0xf, 0x9, 0x5, 0x5, 0xfffffffffffffffd, 0x6, 0x3, 0x5, 0x6750, 0xbdaa, 0x2, 0x3, 0x9, 0xffffffff, 0x8, 0x1, 0x46, 0x2, 0x1, 0x2, 0xdb, 0x8, 0x5, 0x381a, 0x6]})
ioctl$KVM_GET_DEVICE_ATTR_vm(r0, 0x4018aee2, &(0x7f00000005c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000580)={0x0, 0x3, 0x2}})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000600)={0x2})
ioctl$KVM_GET_DIRTY_LOG(r2, 0x4010ae42, &(0x7f0000000640)={0x1fd, 0x0, &(0x7f0000ffb000/0x2000)=nil})
r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000880)={0x0, &(0x7f0000000680)=[@uexit={0x0, 0x18, 0x8000000000000000}, @smc={0x1e, 0x40, {0xbd122b292cd2ce9f, [0xfffffffffffffffe, 0x918b, 0x4390, 0x8000000000000001, 0x1]}}, @eret={0xe6, 0x18, 0x3}, @eret={0xe6, 0x18, 0xf8}, @code={0xa, 0x84, {"000c40b8000008d5a08293d20020b8f2a10080d2020180d2a30080d2c40080d2020000d4000028d5007008d5e00291d20080b8f2810080d2020080d2230180d2c40180d2020000d40034000f0074002fc07685d200a0b0f2a10080d2420080d2630180d2240080d2020000d4007008d5"}}, @svc={0x122, 0x40, {0xc4000001, [0x1, 0x10, 0x10000, 0x100000001, 0x7]}}, @smc={0x1e, 0x40, {0x86000001, [0xffff, 0x0, 0x1000, 0x2, 0x1]}}, @svc={0x122, 0x40, {0xc4000011, [0x7fffffffffffffff, 0x8, 0xc33, 0x4, 0x6]}}], 0x1cc}, &(0x7f00000008c0)=[@featur1={0x1, 0x18}], 0x1)
syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SIGNAL_MSI(r3, 0x4020aea5, &(0x7f0000000900)={0xf000, 0x7000, 0x2, 0x1, 0x8})
r6 = ioctl$KVM_GET_STATS_FD_cpu(r5, 0xaece)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04)
ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000940)={0x80, 0x80000000})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000980)={0x1000, 0x6000})
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r6, 0x4068aea3, &(0x7f00000009c0)={0xa8, 0x0, 0x1})
ioctl$KVM_IRQ_LINE_STATUS(r6, 0xc008ae67, &(0x7f0000000a40)={0x854b, 0x1})
ioctl$KVM_ARM_SET_COUNTER_OFFSET(r3, 0x4010aeb5, &(0x7f0000000a80)={0x2, 0x800})
ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000ac0)={0x9, [0xfffffffffffffff7, 0x401, 0x90ac, 0x7, 0x8, 0x56b, 0xfffffffffffffffc, 0x8, 0x100]})
ioctl$KVM_INTERRUPT(r6, 0x4004ae86, &(0x7f0000000b40)=0x5)
ioctl$KVM_SET_USER_MEMORY_REGION2(r3, 0x40a0ae49, &(0x7f0000000b80)={0x2, 0x1, 0xd000, 0x1000, &(0x7f0000fff000/0x1000)=nil, 0x9, r3})
r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000001140)={0x0, &(0x7f0000000c40)=[@code={0xa, 0x6c, {"007008d5608496d20080b0f2610080d2820080d2e30080d2640180d2020000d4007008d5007008d5007008d5c0aa81d20080b8f2210180d2620180d2c30080d2a40080d2020000d4000008d50018285e007008d5000000c8"}}, @smc={0x1e, 0x40, {0x84000003, [0x4, 0x6bf, 0x100000000, 0x1, 0x7]}}, @eret={0xe6, 0x18}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x200, 0x6, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xd00, 0x0, 0x1}}, @hvc={0x32, 0x40, {0xc4000012, [0x2, 0x8, 0x5, 0x7, 0x6]}}, @hvc={0x32, 0x40, {0x0, [0x6, 0xb, 0x6, 0x7, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x0, 0x5, 0xfffff20f, 0x5a, 0x3}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x211}}, @code={0xa, 0x84, {"001c0053000c601e603c9fd20000b8f2810180d2220180d2e30080d2440080d2020000d40080c0c80060000c007008d5000008d5202390d20040b0f2a10180d2820080d2430080d2640180d2020000d4a07188d200e0b0f2a10180d2e20180d2030180d2a40180d2020000d4007008d5"}}, @its_setup={0x82, 0x28, {0x2, 0x1, 0xdc}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0xb, 0x7ff, 0x3}}, @uexit={0x0, 0x18, 0x5}, @its_send_cmd={0xaa, 0x28, {0xd, 0x0, 0x0, 0x2, 0x0, 0x2, 0x4}}, @hvc={0x32, 0x40, {0x4, [0x8000000000000000, 0x81, 0xf, 0x0, 0x6]}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x72}}, @svc={0x122, 0x40, {0x0, [0x8, 0x0, 0x8, 0x7ff, 0xc]}}, @svc={0x122, 0x40, {0x2000000, [0xe8c6, 0xd, 0x8, 0x9, 0xfffffffffffffffa]}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0xd, 0x6}}, @msr={0x14, 0x20, {0x603000000013c807, 0x80000000}}, @mrs={0xbe, 0x18, {0x603000000013c520}}, @smc={0x1e, 0x40, {0x3f000000, [0x0, 0x6, 0x9, 0xff, 0x8001]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0xb76, 0x6}}], 0x4c8}, &(0x7f0000001180)=[@featur2={0x1, 0x10}], 0x1)
ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000001200)=@arm64_sve={0x608000000015047a, &(0x7f00000011c0)=0xdd})

39m44.240253296s ago: executing program 2 (id=381):
munmap(&(0x7f0000865000/0x4000)=nil, 0x4000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28)
write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x3, 0xfdef)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@arm64={0x8, 0x9, 0x9, '\x00', 0x8})
ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18})
close(0x5)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2e)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x400000000000012)
r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, &(0x7f0000000240)=[@hvc={0x32, 0x40, {0x84000007, [0x4, 0x5, 0x101, 0x0, 0x7]}}, @irq_setup={0x46, 0x18, {0x403, 0x17}}, @hvc={0x32, 0x40, {0x0, [0x7, 0x8, 0xffffffffedb58af9, 0x1, 0x100000001]}}, @svc={0x122, 0x40, {0x8400000a, [0x1, 0xffffffffffffffe7, 0x8000, 0x2814, 0x10003]}}, @eret={0xe6, 0x18, 0x4}, @uexit={0x0, 0x18, 0x81}, @hvc={0x32, 0x40, {0x80, [0xff, 0x6, 0x9, 0x9, 0xd]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x2, 0xe, 0x200, 0x81}}, @memwrite={0x6e, 0x30, @generic={0x4, 0xac0, 0x1, 0x1b}}, @code={0xa, 0x6c, {"007008d5008c205e007008d5007008d5007008d580bd84d200e0b8f2010180d2420180d2030180d2440180d2020000d400c4200e007008d5000000fcc05b8fd20040b0f2010080d2020180d2030180d2e40080d2020000d4"}}, @smc={0x1e, 0x40, {0xc4000010, [0x4, 0xb, 0x2, 0x9, 0x5bb3]}}], 0x24c}, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x5, 0xb, 0x0, 0x2, 0x6, 0x6, 0x9, 0x8, 0x89, 0x6, 0x2, 0x0, 0x6, 0x4, 0xe2, 0x3, 0x29, 0x0, '\x00', 0x10, 0x6})
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, <r11=>0xffffffffffffffff, 0x1})
write$eventfd(r11, &(0x7f00000001c0), 0xe80)
r12 = openat$kvm(0x0, &(0x7f0000000000), 0xa001, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil)

39m43.660321786s ago: executing program 4 (id=382):
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffd)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r5, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}], 0x28}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, <r10=>0xffffffffffffffff})
r11 = eventfd2(0x1, 0x0)
ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f0000000140)={r11, 0x401, 0x2, r11})
ioctl$KVM_IOEVENTFD(r7, 0x4040ae79, &(0x7f0000000100)={0x2, 0x8080000, 0x0, r11})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000140)=@arm64_sve={0x603000000013df02, 0x0})
r12 = mmap$KVM_VCPU(&(0x7f0000f65000/0x2000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f0000000240))
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
r13 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000000)=@arm64_sve={0x60800000001501b7, &(0x7f0000000180)=0x5})
ioctl$KVM_CREATE_VM(r13, 0x401c5820, 0x20000007)
mmap$KVM_VCPU(&(0x7f0000ec2000/0x3000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0)

39m21.77968469s ago: executing program 4 (id=383):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000580), 0x2, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x3d70000000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x180, &(0x7f0000000180)=[0x0, 0xec66, 0xff, 0x8, 0x98c1, 0x800000000000008, 0x0, 0x4, 0x10000, 0x466c, 0x9004, 0x9, 0x8, 0x9, 0x5, 0x49, 0x4, 0x5, 0x2, 0x1, 0x8, 0x7, 0xc1, 0x1, 0x2, 0xffffffffffffffff, 0x4, 0x7f, 0x96, 0xffffffff, 0x9, 0x1, 0x5, 0x7, 0x4, 0x3, 0x9, 0x10000008892, 0x1, 0x8000000006, 0x43, 0x0, 0x2000003, 0xa3de, 0x2cc0000000000000, 0x8, 0x1, 0x3fc, 0x6, 0xffffffffffffffb7, 0x5, 0x2, 0x1, 0x6, 0x4, 0xe6, 0x200000000000101, 0x7ff, 0x9, 0x2, 0x6, 0x6, 0x40000005, 0xfffffffeffffffff, 0x9, 0xd, 0x10001, 0xbbd9, 0xe, 0xfffffffffffffc00, 0x2, 0x7, 0x5e7, 0xcdc, 0xcd, 0x2, 0x3, 0x2, 0x2, 0xfff, 0x6, 0x2004, 0x7, 0xab6, 0x100, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0x102, 0x6, 0xfffffffffffffffe, 0x80000008, 0x8061d, 0x0, 0x7, 0xf6, 0x4, 0x6, 0x204, 0x7, 0xe53e, 0x4, 0x8, 0x2293332f, 0x6, 0x5, 0x1e, 0xd, 0x2, 0x7f, 0xfffffffffffffffb, 0x80000001, 0xb, 0x200000000dfd4, 0xfff9, 0x10, 0xe61b, 0x133, 0x1, 0x53e0f0fe, 0xeb4, 0x3, 0xfffffffffffffd25, 0xb68e, 0x0, 0x8, 0x1000003]})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x38)
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000180)={0x4, 0x104000, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000380)={0x3000, 0x34000})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r6, 0x4018aee1, &(0x7f0000000180)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000040)={0x0, 0x8001, 0x1}})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000140)={0xd000, 0x99000, 0x1})

39m20.36906521s ago: executing program 2 (id=384):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x28300, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
munmap(&(0x7f0000584000/0x800000)=nil, 0x800000)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bc2000/0x400000)=nil)
r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_SET_GUEST_DEBUG_arm64(r4, 0x4208ae9b, &(0x7f00000001c0)={0x3, 0x0, {[0x2, 0xd6, 0x504, 0xf2f, 0x2, 0x8, 0x100000001, 0xa4, 0xfb, 0x4b3, 0xc, 0x8, 0x0, 0xf, 0xc], [0x6, 0x3, 0xee, 0x3ff, 0x4, 0x3, 0x4, 0x4, 0x5b, 0x2, 0x6, 0x6f2, 0x3, 0x8000000000008, 0xa38], [0x0, 0x1, 0x100, 0xc2ec, 0x1, 0x5, 0x9, 0x7fff, 0x7, 0x80000000, 0x6, 0xfffffffffffffffb, 0x6, 0x4, 0x4, 0x1], [0x2, 0x89c8, 0xed, 0x0, 0x7, 0x7, 0x7, 0x7, 0x3, 0x2, 0x1, 0x400, 0x3ff, 0x49e4, 0x0, 0x9]}})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040))
ioctl$KVM_SET_SREGS(r4, 0x4000ae84, &(0x7f0000000400)={{0xeeef0000, 0x9000, 0xb, 0x3, 0x81, 0x51, 0x1, 0x9, 0xfd, 0x2, 0x8, 0x6}, {0x25000, 0x1, 0x3, 0x5, 0x0, 0x5, 0x8, 0x71, 0x2, 0x32, 0x6, 0xf6}, {0x2, 0xa000, 0x8, 0x3, 0x3, 0xf5, 0x1d, 0x2, 0x4, 0xe, 0x9, 0x2}, {0x1000, 0x200000, 0xe, 0xd, 0x6d, 0x3, 0x7, 0xe, 0x8, 0x8, 0x24, 0x2}, {0x80a0000, 0x8000000, 0x4, 0x9, 0x4, 0x10, 0x2, 0x6, 0x2, 0x3, 0x6, 0x1}, {0x70000, 0x54000, 0x10, 0x9, 0x80, 0x2, 0x8, 0x4, 0x5, 0x3, 0x6}, {0xfec00000, 0x0, 0xa, 0x57, 0x0, 0x4, 0x2, 0x5, 0x3, 0x4, 0x9b, 0x1b}, {0x4, 0xd000, 0xd, 0x0, 0x7, 0xe, 0x0, 0x3, 0xb, 0x95, 0x22, 0x9}, {0xf000, 0x55}, {0x1}, 0x10008, 0x0, 0x10000, 0x50288, 0x1, 0x5400, 0x40000, [0x4, 0x1, 0xfffffffffffff000, 0x8]})

39m3.50114265s ago: executing program 2 (id=385):
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x2132, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x100000c, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)

39m2.799480909s ago: executing program 4 (id=386):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c01000/0x4000)=nil, r6, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
r7 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bc2000/0x400000)=nil)
r8 = openat$kvm(0x0, &(0x7f0000000140), 0x400, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f00000000c0)={0x7, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000000)={0x5, 0x4}) (async)
ioctl$KVM_RUN(r11, 0xae80, 0x0) (async)
r12 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000000c0)=@arm64_fw={0x6030000000140002, &(0x7f0000000080)=0x200000001}) (async)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042})

38m54.294255676s ago: executing program 2 (id=387):
ioctl$KVM_GET_ONE_REG(0xffffffffffffffff, 0x4010aeab, 0x0)
syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x400000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb010640000000300000009610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c86bd62627e72f00000000000000000000e5ff00006f81e44153345c9affffffffffffea00", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(0xffffffffffffffff, 0x4068aea3, 0x0)

38m43.737844418s ago: executing program 2 (id=388):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x22, 0xd2, 0x7, 0x0, 0xd50a, 0x5, 0xe4, 0x7, 0x51, 0x9, 0x28, 0x6, 0x0, 0x10000, 0x4, 0xb, 0x1, 0x8, 0x7, '\x00', 0x55, 0x100000000})
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f00000000c0)=0xa) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async)
r8 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async)
r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) (async)
r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r11, 0x3, 0x11, r9, 0x0) (async)
mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r11, 0x3, 0x11, r10, 0x0)

38m15.76977641s ago: executing program 35 (id=386):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c01000/0x4000)=nil, r6, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async)
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
r7 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bc2000/0x400000)=nil)
r8 = openat$kvm(0x0, &(0x7f0000000140), 0x400, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f00000000c0)={0x7, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3})
r11 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2)
ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000000)={0x5, 0x4}) (async)
ioctl$KVM_RUN(r11, 0xae80, 0x0) (async)
r12 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000000c0)=@arm64_fw={0x6030000000140002, &(0x7f0000000080)=0x200000001}) (async)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1)
ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042})

37m55.942995988s ago: executing program 36 (id=388):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000000)=@x86={0x22, 0xd2, 0x7, 0x0, 0xd50a, 0x5, 0xe4, 0x7, 0x51, 0x9, 0x28, 0x6, 0x0, 0x10000, 0x4, 0xb, 0x1, 0x8, 0x7, '\x00', 0x55, 0x100000000})
ioctl$KVM_SET_MP_STATE(r6, 0x4004ae99, &(0x7f00000000c0)=0xa) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async)
r8 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async)
r10 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) (async)
r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r11, 0x3, 0x11, r9, 0x0) (async)
mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r11, 0x3, 0x11, r10, 0x0)

26m53.760141331s ago: executing program 5 (id=411):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x28)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)=@arm64={0x8, 0x9, 0x9, '\x00', 0x8})
syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async)
ioctl$KVM_CAP_HALT_POLL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x300})
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CAP_ARM_USER_IRQ(r1, 0x4068aea3, &(0x7f00000000c0)) (async)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r9, 0x1, 0x12, r7, 0x0) (async)
r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x7fffffff)
mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r10, 0x8, 0x13, r7, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r10, 0x1000001, 0x12, r7, 0x0)

26m35.783064994s ago: executing program 6 (id=412):
r0 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000040)={0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10002, 0x2, 0x7000, 0x1000, &(0x7f0000d62000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10002, 0x6, 0x1, 0x2000, &(0x7f0000000000/0x2000)=nil})

26m35.781633954s ago: executing program 5 (id=413):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f00000002c0)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @adapter={0x0, 0x6a, 0x8, 0x5, 0x3}}, {0x3, 0x1, 0x0, 0x0, @msi={0x0, 0xf, 0x9, 0xfffffff9}}]})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x480, 0x0)
ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0xdf)
r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f00000003c0)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0xb0, 0x0, 0x5}}], 0x30}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x2e)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
r12 = eventfd2(0x0, 0x80000)
ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r12, 0x3})
r13 = eventfd2(0x8, 0x80800)
ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r13})
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0)
ioctl$KVM_IOEVENTFD(r11, 0x4040ae79, &(0x7f0000000000)={0x203, 0x0, 0x2, r12, 0xf})
syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1)
ioctl$KVM_CAP_ARM_MTE(r4, 0x4068aea3, &(0x7f0000000200))
ioctl$KVM_SET_ONE_REG(r9, 0x4010aeac, &(0x7f0000000180)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x80003ff})
ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

26m16.199114614s ago: executing program 6 (id=414):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40)
ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f00000002c0)=@attr_other={0x0, 0x9, 0x2, &(0x7f0000000340)=0x4}) (async)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2e)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000007c0)={0x0, &(0x7f0000000380)=[@code={0xa, 0x6c, {"000028d5007008d5000008d50060600d00005fd6400494d20000b0f2c10080d2820180d2630080d2040180d2020000d4008008d5000008d50060600de0b99ad200c0b0f2a10080d2c20080d2a30080d2040080d2020000d4"}}, @eret={0xe6, 0x18, 0xfffffffffffffffe}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x31d}}, @its_setup={0x82, 0x28, {0x4, 0x3, 0x3c5}}, @hvc={0x32, 0x40, {0x800, [0x1cc4752e, 0x8, 0xff, 0x24e, 0x7]}}, @svc={0x122, 0x40, {0x32000000, [0xffff, 0xb, 0x6, 0xfffffffffffffff9, 0x1200000000]}}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x23b}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x180, 0x5e, 0x4}}, @svc={0x122, 0x40, {0xc400000d, [0xf8, 0x8, 0x12000000000, 0xd, 0x8]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x1, 0xe, 0xff, 0x19e, 0x3}}, @irq_setup={0x46, 0x18, {0x3, 0x52}}, @svc={0x122, 0x40, {0x40000000, [0x8, 0x6c, 0xf4a, 0x7f]}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x0, 0x4, 0x680, 0x6, 0x3}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x385}}, @irq_setup={0x46, 0x18, {0x4, 0xa9}}, @eret={0xe6, 0x18, 0xa7b4}, @code={0xa, 0x84, {"001c4093203c9dd20020b8f2610080d2020080d2c30080d2840080d2020000d440b891d200c0b8f2210180d2220180d2e30180d2e40080d2020000d400d0205e007008d5000008d500a0600d007008d5000028d5e0d595d200c0b8f2c10080d2820180d2c30180d2c40080d2020000d4"}}, @svc={0x122, 0x40, {0xc400000d, [0x10ad, 0x3, 0x9, 0x4, 0x7]}}, @irq_setup={0x46, 0x18, {0x0, 0x36a}}, @msr={0x14, 0x20, {0x603000000013c02d, 0xda06}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0xc, 0x1, 0x400, 0x4}}, @msr={0x14, 0x20, {0x603000000013804e, 0x2}}], 0x430}, &(0x7f0000000800)=[@featur2={0x1, 0x2}], 0x1)
ioctl$KVM_GET_DEVICE_ATTR_vcpu(r5, 0x4018aee2, &(0x7f0000000180)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000080)=0x401})

25m52.447848292s ago: executing program 5 (id=415):
r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x1, 0x4, &(0x7f0000000180)=0x7})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10003, 0x1, 0xb71e0c254c8b7cf8, 0x1000, &(0x7f0000000000/0x1000)=nil})
openat$kvm(0x0, 0x0, 0x1b7bc3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x420000, 0x0)
r3 = eventfd2(0xff, 0x80000)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000001c0)={0xffffffffffffffff, 0x3, 0x2, r3})
eventfd2(0xb, 0x800)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, <r6=>0xffffffffffffffff, 0x1})
openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f00000001c0)={0x8, <r8=>0xffffffffffffffff})
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1)
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x6, 0x1, &(0x7f0000000300)})
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x1, 0xfffffffffffff259, &(0x7f0000000200)=0x31})
ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x3, 0x1, &(0x7f0000000380)=0x101})
write$eventfd(r6, &(0x7f00000001c0)=0x4000000001, 0x56)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0})
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bff000/0x400000)=nil)
close(0x4)
close(0x5)

25m51.510017388s ago: executing program 6 (id=416):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71c9d70236fc044842da97e87fd62c18b875c2357c6ed6000000000000000000000000002000e4ff00", 0x0, 0x48)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, <r3=>0xffffffffffffffff, 0x1})
write$eventfd(r3, &(0x7f00000001c0)=0xffffff7f, 0xff25)
r4 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1b)
syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000000)={0x8000, 0x81})
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1)
r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000180)="f30138dd56bf00e2004b584bd92e00000f00000000000100010000020000000083f402000000235acbd98700000000000200", 0x0, 0x48)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x24000, 0x0)
syz_memcpy_off$KVM_EXIT_MMIO(r9, 0x20, &(0x7f0000000040)="93e02198c6135e51582d8a01132ed5acc94da6adbd68f4d8", 0x0, 0x18)
r10 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r11, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000700)=[{0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000000000000008400000000000000000028d5007008d5809786d200e0b0f2210180d2e20180d2630080d2e40180d2020000d40000701e000028d50000691e804488d20040b0f2e10080d2c20180d2230080d2840180d2020000d4000400fc0020206e00fa8bd20020b0f2e10080d2420080d2430180d2440180d2020000d4c0035fd66e00000000000000300000000000000000000008000000000400000000000000040000000000000008000000000000004600000000000000180000000000000004000000250300006e00000000000000300000000000000000000808000000009000000000000000b80000000000000002000000000000008200000000000000280000000000000000000000000000000200000000000000d600000000000000aa0000000000000028000000000000000800000000000200000005000000c6ec0000040000000000e60000000000000018000000000000000000000000000000220100000000000040000000000000008c00004200000000ee2100000000000001000000000000000500000000000000ff0f0000000000000600000000000000e6000000000000001800000000000000ff01000000000000be00000000000000180000000000000069e6130000003060aa0000000000000028000000000000000400010000000000000008000000000000000400000000001e000000000000004000000300000000000400000000000002080000000000004f000000000000000400000000000000020000000000000003000000000000001e00000000000000400000000000000010020087000000003a00000000000000040000000000000006000000000000000f0000000000000009000000000000003200000000000000400000000000000001000000000000000004000000000000050000000000000008000000000000000d0000000000000005000000000000001e00000000000000400000000000000000000000000000000700000000000000090000000000000001f0ffffffffffff690a00000000000008000000000000004600000000000000180000000000000002000000610000001400000000000000200000cbb33abb0061df1300000030600100010000000000e600000000000000180000000000000008000000000000000a000000000000009c00000000000000206195d20040b0f2610080d2c20180d2630080d2040180d2020000d4007008d5000008d50020c00c00000033c0df81d200a0b0f2010180d2420180d2a30180d2a40080d2020000d420159dd200e0b8f2210180d2020180d2c30080d2240180d2020000d4000040d380ad87d200a0b0f2610080d2c20180d2830080d2c40080d2020000d4007008d5c0035fd682000000000000002800000000000000010000000000000002000000000000003501000000000000"], 0x410}], 0x1, 0x0, &(0x7f0000000740)=[@featur1={0x1, 0xea}], 0x1)
ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2)
r12 = syz_kvm_vgic_v3_setup(r10, 0x1, 0x40)
ioctl$KVM_GET_DEVICE_ATTR(r12, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000140)=0x200a8a})

25m28.142655774s ago: executing program 5 (id=417):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x0, 0x100)
ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000000)={0xd0c19de284cd3ebf, 0x4, 0x7, 0x0, 0x6})
r2 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, &(0x7f00000002c0)=[@hvc={0x32, 0x40, {0xc4000001, [0x80000000, 0x8, 0x3, 0x7f, 0x800]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x28081, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x14)
r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000280)={0x8})
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_SIGNAL_MSI(r7, 0x4020aea5, &(0x7f0000000200)={0x8000000, 0x0, 0x0, 0x1})
r10 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000769000/0x400000)=nil)
r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000380)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000002, [0x3, 0x3, 0x2, 0x3f8b, 0x3448]}}], 0x40}, &(0x7f00000000c0)=[@featur2={0x1, 0x4}], 0x1)
r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0)
r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil)
r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, 0x0}, &(0x7f0000000100)=[@featur1={0x1, 0x8}], 0x1)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r15, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000140)=0xffff})
ioctl$KVM_RUN(r11, 0xae80, 0x0)
openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0)
r16 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x18000, 0x0)
ioctl$KVM_CREATE_VM(r16, 0xae01, 0x20)

25m26.51932522s ago: executing program 6 (id=418):
r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r3, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0)
r5 = eventfd2(0x3, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x27)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r7, 0x4010ae68, 0xfffffffffffffffe) (async)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r7, 0x4010ae68, 0xfffffffffffffffe)
close(r5) (async)
close(r5)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000002, 0x13, r5, 0x0)
write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3) (async)
write$eventfd(r5, &(0x7f0000000180)=0x5, 0xfffffde3)
syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000340)={0x0, 0x0}, 0x0, 0x0)

25m6.319690112s ago: executing program 6 (id=419):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000100)=@arm64_sve={0x60800000001505bf, 0x0})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil)
r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000080)={0x0, &(0x7f0000000600)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0x4, 0x1}}, @uexit={0x0, 0x18, 0x1}, @uexit={0x0, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x0, 0x1, 0x1f8}}], 0x88}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r4, 0x2, 0x100)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r10 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r9, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r9, 0x0)
r11 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000000000/0x400000)=nil, &(0x7f00000003c0)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0x401c5820, 0x20000007)

25m1.813496249s ago: executing program 5 (id=420):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) (async)
r4 = ioctl$KVM_GET_STATS_FD_vm(r2, 0xaece)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f0000000100)=@attr_other={0x0, 0xd, 0x2, &(0x7f0000000000)=0x40}) (async)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80180, 0x0)
ioctl$KVM_CHECK_EXTENSION(r5, 0x5450, 0x0) (async)
r6 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) (async)
r7 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) (async)
syz_kvm_vgic_v3_setup(r8, 0x1, 0x40) (async)
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r8, 0x4068aea3, &(0x7f0000000080))
syz_kvm_vgic_v3_setup(r2, 0x1, 0x0)
ioctl$KVM_HAS_DEVICE_ATTR(r4, 0x4018aee3, &(0x7f0000000340)=@attr_other={0x0, 0x0, 0xd, &(0x7f0000000200)=0x3})
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init)
r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_SET_DEVICE_ATTR_vm(r9, 0x8040aeb6, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, 0x0})

24m43.347982437s ago: executing program 5 (id=421):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30)
openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x7}) (async)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x7, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async)
r6 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
munmap(&(0x7f000075a000/0xb000)=nil, 0xb000)
munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000000)={0x1, 0x0, &(0x7f0000ffb000/0x3000)=nil})

24m40.876579046s ago: executing program 6 (id=422):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xfffffffffffffffc)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@riscv64_config={0x8030000000100001, &(0x7f0000000000)=0x6})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000b80)={0x0, &(0x7f0000000080)}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, 0x0)
syz_kvm_vgic_v3_setup(r5, 0x2, 0x80)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, <r10=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7})
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
write$eventfd(r10, &(0x7f00000001c0)=0x9, 0x1d)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000)
r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r13, 0x6000006, 0x10, r3, 0x0)

23m54.230701653s ago: executing program 37 (id=421):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x30)
openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) (async)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x7}) (async)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x7, <r5=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async)
r6 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) (async)
syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0)
munmap(&(0x7f000075a000/0xb000)=nil, 0xb000)
munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000000)={0x1, 0x0, &(0x7f0000ffb000/0x3000)=nil})

23m47.571082678s ago: executing program 38 (id=422):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0xfffffffffffffffc)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f00000000c0)=@riscv64_config={0x8030000000100001, &(0x7f0000000000)=0x6})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil)
r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000b80)={0x0, &(0x7f0000000080)}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_IRQ_LINE(r5, 0x4008ae61, 0x0)
syz_kvm_vgic_v3_setup(r5, 0x2, 0x80)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, <r10=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x7})
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
write$eventfd(r10, &(0x7f00000001c0)=0x9, 0x1d)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r11 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000)
r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, r13, 0x6000006, 0x10, r3, 0x0)

3m22.740363013s ago: executing program 7 (id=479):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x80000)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r2, 0x3})
r3 = eventfd2(0x8, 0x80800)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r3})
ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000000)={0x203, 0x0, 0x2, r2, 0xf})
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
eventfd2(0x3, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = syz_kvm_vgic_v3_setup(r5, 0x0, 0x80)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000100)=@attr_riscv64=@attr_addr={0x0, 0x1, @aplic, &(0x7f0000000000)=0x9})
r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r6, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000200)="0032898f54ffa458f1cc7ad3112014145841525dfdf277a3c58910493151cc5503a180943e1aa609b7dc0f1f0256468a38b5e48a441d25ff723a6381619de0a5a643e70f125e621c", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0)
r9 = eventfd2(0x0, 0x0)
close(r9)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
write$eventfd(r9, &(0x7f0000000180)=0x5, 0xfffffde3)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r10, 0x40086602, 0x110ca32000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)

3m8.780390254s ago: executing program 8 (id=480):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_FINALIZE(r3, 0x4004aec2, &(0x7f0000000100)=0x5)
ioctl$KVM_SET_REGS(r3, 0x4360ae82, &(0x7f0000000240)={[0x1, 0xffffffffffffffff, 0x1000, 0x3, 0x3, 0x158, 0x10001, 0xbe, 0x1, 0x1, 0x5, 0xffff, 0x0, 0xfbfc, 0xfffffffffffffffb, 0xfffffffffffffff7], 0x0, 0x1000})
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x80)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x484081, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x801, 0x0)
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x1a)
ioctl$KVM_CHECK_EXTENSION_VM(r7, 0xae03, 0xf4)

2m50.043163374s ago: executing program 8 (id=481):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bfe000/0x400000)=nil)
r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0x1, 0x1001, 0x2}})
ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x9e, 0x7fffffff, 0x2}})
r6 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000000)=@arm64_extra={0x603000000013c026, &(0x7f0000000140)})
r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28)
ioctl$KVM_ARM_SET_COUNTER_OFFSET(r7, 0x4010aeb5, 0xfffffffffffffffe)

2m45.020357675s ago: executing program 7 (id=482):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$arm64(r1, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x7, 0x0, 0xa, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r2, 0x1, 0x100)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, <r4=>0xffffffffffffffff})
ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000000)={0x2, 0x40})
r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r7 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil)
r8 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x9, 0x10000, 0x0, 0xa, 0x2}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r7, 0x1, 0x100)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x8a902, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_GSI_ROUTING(r10, 0x4008ae6a, 0x0)
r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0xc4000004, [0x40000099a, 0x3, 0x9, 0x89, 0xfffffffffffffbff]}}], 0x40}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1)
ioctl$KVM_RUN(r12, 0xae80, 0x0)
ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000040)={0x7, <r13=>0xffffffffffffffff, 0x1})
ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2m23.752352546s ago: executing program 8 (id=483):
r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f00000000c0)=[@irq_setup={0x46, 0x18, {0x2, 0x1a2}}, @smc={0x1e, 0x40, {0xc4000053, [0x40, 0x9, 0x3ff, 0x1, 0x6]}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0xf, 0x0, 0xa, 0x2}}, @irq_setup={0x46, 0x18, {0x0, 0xc5}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x3fa}}, @mrs={0xbe, 0x18, {0x603000000013e703}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x3d9}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x3, 0x0, 0x8, 0x8, 0x1}}, @smc={0x1e, 0x40, {0xc400000e, [0xd, 0x8, 0x1, 0x7ff, 0x800]}}, @eret={0xe6, 0x18, 0x7}, @eret={0xe6, 0x18, 0x1}, @mrs={0xbe, 0x18, {0x603000000013c038}}, @code={0xa, 0x6c, {"408999d200c0b0f2810180d2e20080d2030080d2040080d2020000d400c8302e0004805ae0759fd20020b8f2e10180d2820080d2030080d2840180d2020000d4004c207e0014005f007008d50060200e000028d5000040ac"}}], 0x21c}, &(0x7f0000000340)=[@featur2={0x1, 0x4}], 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
r2 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$kvm(0x0, 0x0, 0x40000, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000000)={0x2, 0x80a0000, 0x0, r3, 0x4fd0f096b459bd7b})
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x8800, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = eventfd2(0x40000000, 0x80000)
ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000001340)={0x0, 0x0, 0x2, r10, 0x3})
ioctl$KVM_IOEVENTFD(r9, 0x4040ae79, &(0x7f0000000080)={0x5, 0x0, 0x2, r10, 0xa})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r6, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20080, 0x0)
r12 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil)
r13 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil)
syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=[@featur1={0x1, 0x9}], 0x1)
syz_kvm_vgic_v3_setup(r14, 0x1, 0x0)
r15 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0)
ioctl$KVM_SET_DEVICE_ATTR_vcpu(r15, 0x4018aee1, &(0x7f0000000000)=@attr_pmu_irq={0x0, 0x0, 0x0, 0x0})
ioctl$KVM_CREATE_VM(r11, 0xc0189436, 0x20003fff)
ioctl$KVM_GET_REGS(r0, 0x8360ae81, &(0x7f0000000380))
r16 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0)

2m17.669681224s ago: executing program 7 (id=484):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r4, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000001c0)="fb0149dd833be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8faa767969d22627e700", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r4, 0x0)
r6 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000000)=@arm64_sve={0x60800000001501b7, &(0x7f0000000180)=0x5})
ioctl$KVM_CREATE_VM(r6, 0x401c5820, 0x20000007)
r7 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0x2, 0x20000013)
r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x0, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x0, 0x6, 0x10, 0x9}}], 0x50}, 0x0, 0x0)
syz_kvm_vgic_v3_setup(r1, 0x1, 0x100)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, <r10=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000})
r11 = openat$kvm(0x0, &(0x7f0000000200), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1})
ioctl$KVM_GET_ONE_REG(r13, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x6030000000100010, &(0x7f0000000000)=0xffffffffffffffff})
ioctl$KVM_RUN(r9, 0xae80, 0x0)

1m52.188065601s ago: executing program 8 (id=485):
mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x0, 0x200000b, 0x8010, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000040)={0x7, 0x101})
munmap(&(0x7f000075a000/0xb000)=nil, 0xb000)
munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000482000/0x2000)=nil, 0x2000)
munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000)
mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000240)={0x0, 0x3, 0x100000, 0x1000, &(0x7f0000fc8000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000000c0)={0x10001, 0x0, 0xa000, 0x2000, &(0x7f000000f000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xeeee8000, 0x1000, &(0x7f0000f15000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x0, 0xeeee0000, 0x1000, &(0x7f0000d84000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r3, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil})
mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000)
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)

1m47.843019039s ago: executing program 7 (id=486):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2302, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2000000, 0x8032, 0xffffffffffffffff, 0x0)
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f00000000c0)=[@uexit={0x0, 0x18, 0x8}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x3, 0x9, 0x8, 0x3}}, @hvc={0x32, 0x40, {0xc400000e, [0x200, 0xfff, 0xf22, 0x9, 0x8001]}}, @mrs={0xbe, 0x18, {0x603000000013f602}}, @irq_setup={0x46, 0x18, {0x3, 0x38b}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x0, 0xd, 0x3ff, 0x3af0}}, @code={0xa, 0x9c, {"80658ad20020b8f2210180d2a20180d2830080d2e40080d2020000d400000033008008d50040241e007008d5600384d200a0b0f2010080d2020180d2e30080d2240180d2020000d40060ff0d0000009a80c195d200a0b8f2010180d2020180d2230180d2640080d2020000d4c02688d200a0b0f2210080d2a20180d2030080d2a40080d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0x7e}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x800, 0x20000000000000}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x1, 0xd, 0x0, 0x2, 0x2}}, @smc={0x1e, 0x40, {0x4000000, [0x1, 0x7, 0x81, 0x3733, 0xfffffffffffff2fc]}}], 0x224}, &(0x7f0000000340)=[@featur2={0x1, 0x129}], 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x141201, 0x0)
r4 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r6, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0)
r8 = eventfd2(0x0, 0x0)
close(r8)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01)
write$eventfd(r8, &(0x7f0000000180)=0x5, 0xfffffde3)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1})
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x47, 0x86, 0xdd, 0x68, 0x0, 0xce, 0x6, 0x4, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002})

1m25.319777664s ago: executing program 8 (id=487):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = eventfd2(0xeffffffd, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000000)={0x200, 0x4000, 0x4, r6, 0x1})
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000001340)={0x3, 0x0, 0x1, r6, 0xb})
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f00000000c0)={0x3, 0x0, 0x1, r6, 0xf})
write$eventfd(r6, &(0x7f00000001c0)=0x3, 0x8)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
write$eventfd(r7, &(0x7f00000001c0), 0xf001)

1m19.049899999s ago: executing program 7 (id=488):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71ba470236fc044800fff7ffffffd249f297e87fd600000000000000002000e4ff000000f500", 0x0, 0x48)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r5=>0xffffffffffffffff, 0x1})
write$eventfd(r5, &(0x7f00000001c0)=0xffffff7f, 0xff25)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000e51000/0x4000)=nil, 0x4000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x10, r6, 0x0)
ioctl$KVM_SET_REGS(r6, 0x4360ae82, 0x0)

58.241735745s ago: executing program 8 (id=489):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x900, 0x0)
openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0) (async)
r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000180)="f3011813013c36000000004ee28398f8964346cbd98700000001908b9463d139887a01002e25000000000000ffff00", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305839, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305839, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0})
r10 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_GET_ONE_REG(r10, 0x4010aeab, &(0x7f00000000c0)=@arm64_core={0x6030000000100032, &(0x7f00000001c0)=0x1})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2a) (async)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2a)
syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r13 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x3)
mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, 0x930, 0xa, 0x2012, r13, 0x40000)

53.327961556s ago: executing program 7 (id=490):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r4, 0x4068aea3, &(0x7f00000002c0)={0xa8, 0x0, 0x2})
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000000))
r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@hvc={0x32, 0x40, {0xc4000053, [0xfffffffffffffffc, 0x1, 0x1, 0x9d, 0x6]}}], 0x40}, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r6, 0x4008ae73, &(0x7f0000000180)={0xe718, 0x4})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

9.60271216s ago: executing program 39 (id=489):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x900, 0x0)
openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) (async)
r1 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async)
ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, <r7=>0xffffffffffffffff, 0x1})
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0) (async)
r9 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r8, 0x0)
syz_memcpy_off$KVM_EXIT_HYPERCALL(r9, 0x20, &(0x7f0000000180)="f3011813013c36000000004ee28398f8964346cbd98700000001908b9463d139887a01002e25000000000000ffff00", 0x0, 0x48)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0) (async)
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r8, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305839, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) (async)
ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305839, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0})
r10 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3)
ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18})
ioctl$KVM_GET_ONE_REG(r10, 0x4010aeab, &(0x7f00000000c0)=@arm64_core={0x6030000000100032, &(0x7f00000001c0)=0x1})
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2a) (async)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x2a)
syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil)
r13 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x3)
mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, 0x930, 0xa, 0x2012, r13, 0x40000)

0s ago: executing program 40 (id=490):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil)
ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}})
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r4, 0x4068aea3, &(0x7f00000002c0)={0xa8, 0x0, 0x2})
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000000))
r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@hvc={0x32, 0x40, {0xc4000053, [0xfffffffffffffffc, 0x1, 0x1, 0x9d, 0x6]}}], 0x40}, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34)
ioctl$KVM_ASSIGN_SET_MSIX_NR(r6, 0x4008ae73, &(0x7f0000000180)={0xe718, 0x4})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

[  387.370401][   T24] audit: type=1400 audit(386.530:60): avc:  denied  { read } for  pid=3172 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1
[  404.546520][ T3172] 8021q: adding VLAN 0 to HW filter on device bond0
[  453.348949][ T3172] eql: remember to turn off Van-Jacobson compression on your slave devices
Warning: Permanently added '[localhost]:12028' (ED25519) to the list of known hosts.
[  620.644334][   T24] audit: type=1400 audit(619.800:61): avc:  denied  { name_bind } for  pid=3328 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  621.575967][   T24] audit: type=1400 audit(620.740:62): avc:  denied  { execute } for  pid=3329 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  621.595471][   T24] audit: type=1400 audit(620.760:63): avc:  denied  { execute_no_trans } for  pid=3329 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[  650.817312][   T24] audit: type=1400 audit(649.980:64): avc:  denied  { mounton } for  pid=3329 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  650.857929][   T24] audit: type=1400 audit(650.020:65): avc:  denied  { mount } for  pid=3329 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  650.957347][ T3329] cgroup: Unknown subsys name 'net'
[  651.015018][   T24] audit: type=1400 audit(650.180:66): avc:  denied  { unmount } for  pid=3329 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  651.452371][ T3329] cgroup: Unknown subsys name 'cpuset'
[  651.576694][ T3329] cgroup: Unknown subsys name 'rlimit'
[  652.464516][   T24] audit: type=1400 audit(651.630:67): avc:  denied  { setattr } for  pid=3329 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=703 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  652.484490][   T24] audit: type=1400 audit(651.640:68): avc:  denied  { mounton } for  pid=3329 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[  652.509574][   T24] audit: type=1400 audit(651.670:69): avc:  denied  { mount } for  pid=3329 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[  653.584929][ T3335] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[  653.604565][   T24] audit: type=1400 audit(652.760:70): avc:  denied  { relabelto } for  pid=3335 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  653.628204][   T24] audit: type=1400 audit(652.780:71): avc:  denied  { write } for  pid=3335 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[  653.820219][   T24] audit: type=1400 audit(652.980:72): avc:  denied  { read } for  pid=3329 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  653.854471][   T24] audit: type=1400 audit(653.010:73): avc:  denied  { open } for  pid=3329 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[  653.892556][ T3329] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  711.217495][   T24] audit: type=1400 audit(710.380:74): avc:  denied  { execmem } for  pid=3336 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  715.119663][   T24] audit: type=1400 audit(714.280:75): avc:  denied  { read } for  pid=3338 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  715.149411][   T24] audit: type=1400 audit(714.310:76): avc:  denied  { open } for  pid=3338 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  715.223695][   T24] audit: type=1400 audit(714.370:77): avc:  denied  { mounton } for  pid=3339 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  715.470154][   T24] audit: type=1400 audit(714.630:78): avc:  denied  { module_request } for  pid=3338 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  715.487197][   T24] audit: type=1400 audit(714.640:79): avc:  denied  { module_request } for  pid=3339 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  716.483275][   T24] audit: type=1400 audit(715.640:80): avc:  denied  { sys_module } for  pid=3338 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  739.884874][ T3338] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  740.305743][ T3338] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  740.397079][ T3339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  740.685609][ T3339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  753.231452][ T3338] hsr_slave_0: entered promiscuous mode
[  753.266635][ T3338] hsr_slave_1: entered promiscuous mode
[  754.570152][ T3339] hsr_slave_0: entered promiscuous mode
[  754.605241][ T3339] hsr_slave_1: entered promiscuous mode
[  754.637987][ T3339] debugfs: 'hsr0' already exists in 'hsr'
[  754.652486][ T3339] Cannot create hsr debugfs directory
[  760.883810][   T24] audit: type=1400 audit(760.040:81): avc:  denied  { create } for  pid=3338 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  760.966197][   T24] audit: type=1400 audit(760.130:82): avc:  denied  { write } for  pid=3338 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  761.012580][   T24] audit: type=1400 audit(760.160:83): avc:  denied  { read } for  pid=3338 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  761.210106][ T3338] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  761.724915][ T3338] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  762.148760][ T3338] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  762.799439][ T3338] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  765.915354][ T3339] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  766.359971][ T3339] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  766.896742][ T3339] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  767.324674][ T3339] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  783.900533][ T3338] 8021q: adding VLAN 0 to HW filter on device bond0
[  786.344593][ T3339] 8021q: adding VLAN 0 to HW filter on device bond0
[  841.649646][ T3338] veth0_vlan: entered promiscuous mode
[  842.462911][ T3338] veth1_vlan: entered promiscuous mode
[  844.414456][ T3339] veth0_vlan: entered promiscuous mode
[  845.007682][ T3338] veth0_macvtap: entered promiscuous mode
[  845.196285][ T3339] veth1_vlan: entered promiscuous mode
[  845.623620][ T3338] veth1_macvtap: entered promiscuous mode
[  848.153680][ T3426] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  848.167250][ T3426] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  848.179986][ T3426] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  848.199822][ T3426] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  848.286606][ T3339] veth0_macvtap: entered promiscuous mode
[  848.785281][ T3339] veth1_macvtap: entered promiscuous mode
[  851.075114][   T24] audit: type=1400 audit(850.130:84): avc:  denied  { mount } for  pid=3338 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  851.228185][   T24] audit: type=1400 audit(850.380:85): avc:  denied  { mounton } for  pid=3338 comm="syz-executor" path="/syzkaller.I5eSX9/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  851.479144][   T24] audit: type=1400 audit(850.640:86): avc:  denied  { mount } for  pid=3338 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  851.678695][ T3426] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  851.693703][ T3426] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  851.714537][   T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  851.764047][   T49] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  851.878191][   T24] audit: type=1400 audit(851.030:87): avc:  denied  { mounton } for  pid=3338 comm="syz-executor" path="/syzkaller.I5eSX9/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  852.073486][   T24] audit: type=1400 audit(851.220:88): avc:  denied  { mounton } for  pid=3338 comm="syz-executor" path="/syzkaller.I5eSX9/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  852.939323][   T24] audit: type=1400 audit(852.100:89): avc:  denied  { unmount } for  pid=3338 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  853.127318][   T24] audit: type=1400 audit(852.290:90): avc:  denied  { mounton } for  pid=3338 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  853.268011][   T24] audit: type=1400 audit(852.430:91): avc:  denied  { mount } for  pid=3338 comm="syz-executor" name="/" dev="gadgetfs" ino=3751 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  853.668106][   T24] audit: type=1400 audit(852.830:92): avc:  denied  { mount } for  pid=3338 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  853.786661][   T24] audit: type=1400 audit(852.950:93): avc:  denied  { mounton } for  pid=3338 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  855.068011][ T3338] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  856.252799][   T24] kauditd_printk_skb: 1 callbacks suppressed
[  856.279514][   T24] audit: type=1400 audit(855.400:95): avc:  denied  { read write } for  pid=3338 comm="syz-executor" name="loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  856.318536][   T24] audit: type=1400 audit(855.480:96): avc:  denied  { open } for  pid=3338 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  856.433757][   T24] audit: type=1400 audit(855.580:97): avc:  denied  { ioctl } for  pid=3338 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  865.923650][   T24] audit: type=1400 audit(865.030:98): avc:  denied  { read } for  pid=3489 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  865.936361][   T24] audit: type=1400 audit(865.080:99): avc:  denied  { open } for  pid=3489 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  866.343560][   T24] audit: type=1400 audit(865.500:100): avc:  denied  { ioctl } for  pid=3489 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  871.364800][   T24] audit: type=1400 audit(870.520:101): avc:  denied  { execute } for  pid=3489 comm="syz.0.1" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3930 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  897.833706][   T24] audit: type=1400 audit(896.980:102): avc:  denied  { write } for  pid=3505 comm="syz.1.6" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  914.045635][   T24] audit: type=1400 audit(913.180:103): avc:  denied  { append } for  pid=3514 comm="syz.1.8" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  998.037399][   T24] audit: type=1400 audit(997.200:104): avc:  denied  { create } for  pid=3571 comm="syz.0.25" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  998.147938][   T24] audit: type=1400 audit(997.310:105): avc:  denied  { map } for  pid=3571 comm="syz.0.25" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5017 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  998.221932][   T24] audit: type=1400 audit(997.350:106): avc:  denied  { read } for  pid=3571 comm="syz.0.25" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=5017 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1117.553261][   T24] audit: type=1400 audit(1116.700:107): avc:  denied  { setattr } for  pid=3635 comm="syz.0.48" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1240.186600][   T24] audit: type=1400 audit(1239.290:108): avc:  denied  { write } for  pid=3715 comm="syz.1.71" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=7682 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1427.352329][   T24] audit: type=1400 audit(1426.510:109): avc:  denied  { map } for  pid=3831 comm="syz.1.106" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1427.457624][   T24] audit: type=1400 audit(1426.610:110): avc:  denied  { execute } for  pid=3831 comm="syz.1.106" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 1548.164473][   T24] audit: type=1400 audit(1547.320:111): avc:  denied  { ioctl } for  pid=3906 comm="syz.0.127" path="net:[4026531833]" dev="nsfs" ino=4026531833 ioctlcmd=0x582b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 1942.482694][ T4148] kvm [4148]: Failed to find VMA for hva 0x20de6000
[ 2169.327945][ T4307] kvm [4307]: Failed to find VMA for hva 0x20dcb000
[ 2241.839027][ T4357] kvm [4356]: Unsupported guest access at: eeef0000
[ 2241.839027][ T4357]  { Op0( 2), Op1( 0), CRn( 0), CRm( 6), Op2( 2), func_read },
[ 2657.454320][ T3475] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2658.460357][ T3475] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2659.589891][ T3475] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2660.820375][ T3475] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2677.767381][ T3475] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2677.934577][ T3475] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2678.029101][ T3475] bond0 (unregistering): Released all slaves
[ 2679.692561][ T3475] hsr_slave_0: left promiscuous mode
[ 2680.086419][ T3475] hsr_slave_1: left promiscuous mode
[ 2681.012682][ T3475] veth1_macvtap: left promiscuous mode
[ 2681.027005][ T3475] veth0_macvtap: left promiscuous mode
[ 2681.056216][ T3475] veth1_vlan: left promiscuous mode
[ 2681.094766][ T3475] veth0_vlan: left promiscuous mode
[ 2759.014583][ T4593] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2759.424289][ T4593] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2765.509210][ T4597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2765.886006][ T4597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2794.388914][ T4593] hsr_slave_0: entered promiscuous mode
[ 2794.497827][ T4593] hsr_slave_1: entered promiscuous mode
[ 2803.629622][ T4597] hsr_slave_0: entered promiscuous mode
[ 2803.678595][ T4597] hsr_slave_1: entered promiscuous mode
[ 2803.744807][ T4597] debugfs: 'hsr0' already exists in 'hsr'
[ 2803.748146][ T4597] Cannot create hsr debugfs directory
[ 2806.340435][   T51] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2808.305779][   T51] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2810.014971][   T51] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2811.863941][   T51] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2832.608241][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2832.728952][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2832.815718][   T51] bond0 (unregistering): Released all slaves
[ 2833.197322][ T4593] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2833.807812][   T51] hsr_slave_0: left promiscuous mode
[ 2833.837695][   T51] hsr_slave_1: left promiscuous mode
[ 2833.987229][   T51] veth1_macvtap: left promiscuous mode
[ 2833.990487][   T51] veth0_macvtap: left promiscuous mode
[ 2834.024905][   T51] veth1_vlan: left promiscuous mode
[ 2834.034232][   T51] veth0_vlan: left promiscuous mode
[ 2846.729538][ T4593] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2847.009823][ T4593] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2847.517002][ T4593] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2851.850123][ T4597] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2852.183371][ T4597] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2852.503135][ T4597] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2852.846766][ T4597] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2871.489318][ T4593] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2876.603505][ T4597] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2972.047126][ T4593] veth0_vlan: entered promiscuous mode
[ 2973.009929][ T4593] veth1_vlan: entered promiscuous mode
[ 2977.047184][ T4593] veth0_macvtap: entered promiscuous mode
[ 2977.554077][ T4597] veth0_vlan: entered promiscuous mode
[ 2978.024266][ T4593] veth1_macvtap: entered promiscuous mode
[ 2979.170080][ T4597] veth1_vlan: entered promiscuous mode
[ 2982.154689][ T4752] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2982.175360][ T4736] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2982.232702][ T3885] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2982.270208][ T3391] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2984.196416][ T4597] veth0_macvtap: entered promiscuous mode
[ 2985.183799][ T4597] veth1_macvtap: entered promiscuous mode
[ 2989.509088][ T4753] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2989.583330][ T4614] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2989.625273][ T4752] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2989.648242][ T4752] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 3100.200151][   T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3103.127338][   T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3105.056495][   T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3107.476588][   T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3133.264120][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3133.769466][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3134.071905][   T49] bond0 (unregistering): Released all slaves
[ 3136.683868][   T49] hsr_slave_0: left promiscuous mode
[ 3136.792922][   T49] hsr_slave_1: left promiscuous mode
[ 3137.537648][   T49] veth1_macvtap: left promiscuous mode
[ 3137.602635][   T49] veth0_macvtap: left promiscuous mode
[ 3137.610093][   T49] veth1_vlan: left promiscuous mode
[ 3137.639688][   T49] veth0_vlan: left promiscuous mode
[ 3231.260165][ T4866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3231.728799][ T4866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3274.480429][ T4866] hsr_slave_0: entered promiscuous mode
[ 3274.566797][ T4866] hsr_slave_1: entered promiscuous mode
[ 3274.644581][ T4866] debugfs: 'hsr0' already exists in 'hsr'
[ 3274.657845][ T4866] Cannot create hsr debugfs directory
[ 3295.729086][ T4866] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 3296.178913][ T4866] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 3296.594509][ T4866] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 3296.968475][ T4866] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 3333.489006][ T4866] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3494.193400][ T4866] veth0_vlan: entered promiscuous mode
[ 3495.708793][ T4866] veth1_vlan: entered promiscuous mode
[ 3500.290308][ T4866] veth0_macvtap: entered promiscuous mode
[ 3501.294549][ T4866] veth1_macvtap: entered promiscuous mode
[ 3506.434456][ T4614] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 3506.435620][ T4614] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 3506.465081][ T4614] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 3506.488197][ T4614] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 3789.448251][ T5257] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3789.969237][ T5257] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3820.189352][ T5268] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3820.895150][ T5268] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3834.517365][ T5257] hsr_slave_0: entered promiscuous mode
[ 3834.627419][ T5257] hsr_slave_1: entered promiscuous mode
[ 3834.766566][ T5257] debugfs: 'hsr0' already exists in 'hsr'
[ 3834.802689][ T5257] Cannot create hsr debugfs directory
[ 3842.324674][ T4614] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3843.934629][ T4614] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3846.258230][ T4614] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3848.966352][ T4614] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3872.324370][ T4614] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3872.534671][ T4614] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3872.666471][ T4614] bond0 (unregistering): Released all slaves
[ 3875.144960][ T4614] hsr_slave_0: left promiscuous mode
[ 3875.267466][ T4614] hsr_slave_1: left promiscuous mode
[ 3875.624557][ T4614] veth1_macvtap: left promiscuous mode
[ 3875.627837][ T4614] veth0_macvtap: left promiscuous mode
[ 3875.676145][ T4614] veth1_vlan: left promiscuous mode
[ 3875.693205][ T4614] veth0_vlan: left promiscuous mode
[ 3896.757004][ T5268] hsr_slave_0: entered promiscuous mode
[ 3896.796355][ T5268] hsr_slave_1: entered promiscuous mode
[ 3896.826486][ T5268] debugfs: 'hsr0' already exists in 'hsr'
[ 3896.829824][ T5268] Cannot create hsr debugfs directory
[ 3900.725764][ T5257] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 3901.993530][ T5257] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 3903.346468][ T4614] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3903.865657][ T5257] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 3906.069213][ T4614] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3906.783070][ T5257] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 3908.566548][ T4614] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3910.980484][ T4614] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3937.557574][ T4614] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3937.699413][ T4614] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3937.749348][ T4614] bond0 (unregistering): Released all slaves
[ 3940.347663][ T4614] hsr_slave_0: left promiscuous mode
[ 3940.723518][ T4614] hsr_slave_1: left promiscuous mode
[ 3941.472921][ T4614] veth1_macvtap: left promiscuous mode
[ 3941.477219][ T4614] veth0_macvtap: left promiscuous mode
[ 3941.489277][ T4614] veth1_vlan: left promiscuous mode
[ 3941.522934][ T4614] veth0_vlan: left promiscuous mode
[ 3967.653151][ T5268] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 3968.347715][ T5268] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 3968.919965][ T5268] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 3969.694329][ T5268] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 3980.067565][ T5257] 8021q: adding VLAN 0 to HW filter on device bond0
[ 4003.469267][ T5268] 8021q: adding VLAN 0 to HW filter on device bond0
[ 4126.923633][ T5257] veth0_vlan: entered promiscuous mode
[ 4127.864466][ T5257] veth1_vlan: entered promiscuous mode
[ 4131.755365][ T5257] veth0_macvtap: entered promiscuous mode
[ 4132.258654][ T5257] veth1_macvtap: entered promiscuous mode
[ 4136.235949][ T4736] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 4136.237484][ T4736] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 4136.243653][ T4736] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 4136.244551][ T4736] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 4156.544302][ T5268] veth0_vlan: entered promiscuous mode
[ 4158.333988][ T5268] veth1_vlan: entered promiscuous mode
[ 4163.436926][ T5268] veth0_macvtap: entered promiscuous mode
[ 4164.417534][ T5268] veth1_macvtap: entered promiscuous mode
[ 4170.214727][ T4736] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 4170.318958][ T3475] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 4170.426595][ T4572] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 4170.473598][ T4572] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 4580.775472][ T3885] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4583.564925][ T3885] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4587.593824][ T3885] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4590.016002][ T3885] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4614.138486][ T3885] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 4614.299886][ T3885] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 4614.357869][ T3885] bond0 (unregistering): Released all slaves
[ 4616.783918][ T3885] hsr_slave_0: left promiscuous mode
[ 4617.069520][ T3885] hsr_slave_1: left promiscuous mode
[ 4618.322757][ T3885] veth1_macvtap: left promiscuous mode
[ 4618.326866][ T3885] veth0_macvtap: left promiscuous mode
[ 4618.385643][ T3885] veth1_vlan: left promiscuous mode
[ 4618.405321][ T3885] veth0_vlan: left promiscuous mode
[ 4658.149122][ T3885] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4659.877827][ T3885] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4661.574777][ T3885] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4662.995713][ T3885] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 4685.382440][ T3885] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 4685.738445][ T3885] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 4685.984444][ T3885] bond0 (unregistering): Released all slaves
[ 4689.313770][ T3885] hsr_slave_0: left promiscuous mode
[ 4689.757404][ T3885] hsr_slave_1: left promiscuous mode
[ 4690.693528][ T3885] veth1_macvtap: left promiscuous mode
[ 4690.702379][ T3885] veth0_macvtap: left promiscuous mode
[ 4690.706930][ T3885] veth1_vlan: left promiscuous mode
[ 4690.718185][ T3885] veth0_vlan: left promiscuous mode
[ 4774.497416][ T5679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 4775.489316][ T5679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 4775.709415][ T5676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 4776.739806][ T5676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 4814.058492][ T5679] hsr_slave_0: entered promiscuous mode
[ 4814.196015][ T5679] hsr_slave_1: entered promiscuous mode
[ 4819.074175][ T5676] hsr_slave_0: entered promiscuous mode
[ 4819.199391][ T5676] hsr_slave_1: entered promiscuous mode
[ 4819.334400][ T5676] debugfs: 'hsr0' already exists in 'hsr'
[ 4819.352079][ T5676] Cannot create hsr debugfs directory
[ 4844.979680][ T5679] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 4846.049974][ T5679] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 4847.190241][ T5679] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 4849.143757][ T5679] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 4855.616662][ T5676] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 4856.167204][ T5676] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 4856.893286][ T5676] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 4857.516217][ T5676] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 4894.057037][ T5679] 8021q: adding VLAN 0 to HW filter on device bond0
[ 4903.127594][ T5676] 8021q: adding VLAN 0 to HW filter on device bond0
[ 5085.503106][ T5679] veth0_vlan: entered promiscuous mode
[ 5087.145121][ T5679] veth1_vlan: entered promiscuous mode
[ 5093.207381][ T5679] veth0_macvtap: entered promiscuous mode
[ 5094.845733][ T5679] veth1_macvtap: entered promiscuous mode
[ 5095.265541][ T5676] veth0_vlan: entered promiscuous mode
[ 5097.815965][ T5676] veth1_vlan: entered promiscuous mode
[ 5102.423004][ T4736] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 5102.436236][ T4736] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 5102.475126][ T4736] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 5102.496286][ T4736] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 5107.348026][ T5676] veth0_macvtap: entered promiscuous mode
[ 5109.248213][ T5676] veth1_macvtap: entered promiscuous mode
[ 5117.335237][ T4752] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 5117.434530][ T3391] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 5117.597576][   T51] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 5117.756209][   T51] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 6008.670098][ T5154] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6012.009065][ T5154] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6015.548762][ T5154] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6018.770496][ T5154] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 6055.439422][ T5154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 6056.447641][ T5154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 6056.923998][ T5154] bond0 (unregistering): Released all slaves
[ 6059.959890][ T5154] hsr_slave_0: left promiscuous mode
[ 6060.053411][ T5154] hsr_slave_1: left promiscuous mode
[ 6060.933116][ T5154] veth1_macvtap: left promiscuous mode
[ 6060.934196][ T5154] veth0_macvtap: left promiscuous mode
[ 6060.948928][ T5154] veth1_vlan: left promiscuous mode
[ 6060.950173][ T5154] veth0_vlan: left promiscuous mode
[ 6243.837584][ T6293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6244.512430][ T6290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 6244.940000][ T6293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6247.403257][ T6290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 6312.974790][ T6293] hsr_slave_0: entered promiscuous mode
[ 6313.087363][ T6293] hsr_slave_1: entered promiscuous mode
[ 6321.046138][ T6290] hsr_slave_0: entered promiscuous mode
[ 6321.198604][ T6290] hsr_slave_1: entered promiscuous mode
[ 6321.336797][ T6290] debugfs: 'hsr0' already exists in 'hsr'
[ 6321.362842][ T6290] Cannot create hsr debugfs directory
[ 6381.018191][ T6290] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 6382.703873][ T6290] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 6384.177317][ T6290] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 6384.713376][   T26] INFO: task syz.8.489:6271 blocked for more than 430 seconds.
[ 6384.744140][   T26]       Not tainted syzkaller #0
[ 6384.792108][   T26]       Blocked by coredump.
[ 6384.799000][   T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 6384.799696][   T26] task:syz.8.489       state:D stack:0     pid:6271  tgid:6267  ppid:5679   task_flags:0x40044c flags:0x00000018
[ 6384.853082][   T26] Call trace:
[ 6384.853686][   T26]  __switch_to+0x584/0xb00 (T)
[ 6384.856578][   T26]  __schedule+0x1da4/0x3678
[ 6384.857329][   T26]  schedule+0xac/0x27c
[ 6384.857905][   T26]  schedule_timeout+0x68/0x1ec
[ 6384.858383][   T26]  do_wait_for_common+0x28c/0x440
[ 6384.858810][   T26]  wait_for_completion+0x44/0x5c
[ 6384.859368][   T26]  __synchronize_srcu+0x2a4/0x320
[ 6384.859805][   T26]  synchronize_srcu+0x3d0/0x4f8
[ 6384.860271][   T26]  mmu_notifier_unregister+0x320/0x428
[ 6385.042514][   T26]  kvm_put_kvm+0x698/0xbe0
[ 6385.055299][   T26]  kvm_vm_release+0x58/0x78
[ 6385.056018][   T26]  __fput+0x4ac/0x978
[ 6385.056571][   T26]  ____fput+0x20/0x58
[ 6385.057151][   T26]  task_work_run+0x1b8/0x250
[ 6385.057660][   T26]  do_exit+0x890/0x2410
[ 6385.058195][   T26]  do_group_exit+0x1d4/0x2ac
[ 6385.058704][   T26]  get_signal+0x1440/0x154c
[ 6385.059155][   T26]  arch_do_signal_or_restart+0x23c/0x4bac
[ 6385.059677][   T26]  exit_to_user_mode_loop+0x88/0x188
[ 6385.060194][   T26]  el0_svc+0x17c/0x238
SYZFAIL: failed to recv rpc
[ 6385.202013][   T26]  el0t_64_sync_handler+0x84/0x12c
[ 6385.202912][   T26]  el0t_64_sync+0x198/0x19c
[ 6385.208793][   T26] 
[ 6385.208793][   T26] Showing all locks held in the system:
[ 6385.209367][   T26] 1 lock held by khungtaskd/26:
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 6385.209772][   T26]  #0: ffff800087c971f8 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44
[ 6385.404392][   T26] 3 locks held by kworker/u4:5/51:
[ 6385.405414][   T26] 1 lock held by syslogd/3131:
[ 6385.405782][   T26] 3 locks held by udevd/3146:
[ 6385.406154][   T26] 2 locks held by getty/3200:
[ 6385.406491][   T26]  #0: 88f00000127fe8a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c
[ 6385.408270][   T26]  #1: d2ff80008ca2b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x308/0x1234
[ 6385.410020][   T26] 1 lock held by sshd-session/3328:
[ 6385.410351][   T26] 2 locks held by syz-executor/3329:
[ 6385.574474][   T26] 3 locks held by kworker/u4:3/3391:
[ 6385.603533][   T26] 3 locks held by kworker/u4:7/4614:
[ 6385.604073][   T26] 3 locks held by kworker/u4:11/4753:
[ 6385.604871][   T26] 3 locks held by kworker/u4:1/5154:
[ 6385.605344][   T26] 2 locks held by kworker/u4:4/5980:
[ 6385.605698][   T26] 3 locks held by kworker/u4:6/6241:
[ 6385.606044][   T26] 2 locks held by syz.7.490/6270:
[ 6385.606363][   T26] 2 locks held by syz-executor/6290:
[ 6385.606668][   T26] 8 locks held by syz-executor/6293:
[ 6385.607005][   T26] 3 locks held by kworker/u4:14/6296:
[ 6385.607315][   T26]  #0: b5f0000012708148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7f8/0x1d94
[ 6385.609084][   T26]  #1: ffff80008e687ca8 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_one_work+0x884/0x1d94
[ 6385.762832][   T26]  #2: ffff800087fc8700 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_lock+0x20/0x2c
[ 6385.764793][   T26] 1 lock held by dhcpcd-run-hook/6389:
[ 6385.765352][   T26] 
[ 6385.765643][   T26] =============================================
[ 6385.765643][   T26] 
[ 6385.766623][   T26] Kernel panic - not syncing: hung_task: blocked tasks
[ 6385.774105][   T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT 
[ 6385.775770][   T26] Hardware name: linux,dummy-virt (DT)
[ 6385.776845][   T26] Call trace:
[ 6385.777785][   T26]  show_stack+0x2c/0x3c (C)
[ 6385.778971][   T26]  __dump_stack+0x30/0x40
[ 6385.780026][   T26]  dump_stack_lvl+0x30/0x12c
[ 6385.781111][   T26]  dump_stack+0x1c/0x28
[ 6385.781989][   T26]  vpanic+0x4d0/0x848
[ 6385.782937][   T26]  vpanic+0x0/0x848
[ 6385.783886][   T26]  hung_task_panic+0x0/0x2c
[ 6385.785024][   T26]  kthread+0x4d4/0x51c
[ 6385.785939][   T26]  ret_from_fork+0x10/0x20
[ 6385.787956][   T26] Kernel Offset: disabled
[ 6385.788840][   T26] CPU features: 0x0000000,001a3005,fbe327a1,057ffe1f
[ 6385.790166][   T26] Memory Limit: none
[ 6385.792491][   T26] Rebooting in 86400 seconds..