last executing test programs: 49.252797715s ago: executing program 0 (id=1997): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) (async) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async) r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r12 = ioctl$KVM_CREATE_VM(r11, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r12, 0xb703, 0x0) r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000080)={0x0, &(0x7f0000000240)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x100, 0x6243, 0x1}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r14, 0x1, 0x100) (async) ioctl$KVM_RUN(r16, 0xae80, 0x0) 47.747858989s ago: executing program 1 (id=1998): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f00000000c0)) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r1, 0x4068aea3, &(0x7f0000000140)={0xa8, 0x0, 0x2}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r5 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0x0, 0x1, r5, 0xb}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x1, r5, 0x3}) r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x8400000e, [0x99b, 0x100000003, 0x5, 0x101, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) 37.882229639s ago: executing program 1 (id=1999): r0 = openat$kvm(0x0, &(0x7f0000000080), 0xe5daa849ddb88833, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x15) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bff000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000140)={0x0, 0x0, 0x36}, 0x0, 0x0) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r13, 0x3, 0x11, r12, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r13, 0x1, 0x10, r7, 0x0) r14 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r15, 0x8, 0x13, r7, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r15, 0x1000001, 0x12, r7, 0x0) r16 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r16, 0x3, 0x2010, r6, 0x0) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r16, 0x3, 0x11, r14, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000180)={0x8, 0xfffffff7}}) r17 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x4000)=nil, 0x930, 0x2000006, 0x13, r17, 0x0) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"/440]) 35.573691836s ago: executing program 0 (id=2000): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_GUEST_MEMFD(r5, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x1}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000240)=@arm64_bitmap={0x6030000000160002, &(0x7f00000000c0)=0x2}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000140)=0xffff}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xe) 30.092141997s ago: executing program 1 (id=2001): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce5, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013dce8, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce9, 0x8000}}], 0x60}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f0000000240)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x3223}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000040)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0xa, 0x4}}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r8, 0x4018aee3, &(0x7f0000000100)=@attr_pmu_init) ioctl$KVM_RUN(r8, 0xae80, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@hvc={0x32, 0x40, {0x84000015, [0xf6, 0x100, 0xffffffffffffffff, 0xee24, 0xfffffffffffeffff]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r12, 0xae80, 0x0) close(r4) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 27.683721084s ago: executing program 0 (id=2002): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x109040, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000280)=@arm64_ccsidr={0x6020000000110002, &(0x7f00000001c0)=0xffffffff}) (async) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x8}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x5, 0xfffffffe, 0x0, 0x0, 0x79, 0x3}}], 0x50}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r5, 0x3, 0x120) (async) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x302, 0x0) (async) r9 = openat$kvm(0x0, &(0x7f00000000c0), 0x2, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x29) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x1) r12 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r11, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r11, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x140, 0x0) (async) r13 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) (async) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) r14 = eventfd2(0x8, 0x80800) ioctl$KVM_IOEVENTFD(r13, 0x4040ae79, &(0x7f00000000c0)={0x8000000000000000, 0xeeef0000, 0x0, r14}) (async) ioctl$KVM_IOEVENTFD(r13, 0x4040ae79, &(0x7f0000000000)={0x6, 0x2000, 0x0, r14}) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000200)=0x8080000}) (async) r16 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r17 = ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r17, &(0x7f0000c00000/0x400000)=nil) (async) eventfd2(0xffff10c0, 0x801) 22.089853937s ago: executing program 1 (id=2003): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = syz_kvm_vgic_v3_setup(r1, 0x2, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0x4, &(0x7f00000000c0)=0x8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, r4, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000100)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x5, &(0x7f0000000280)=0x400000080a0000}) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0xdc032, 0xffffffffffffffff, 0x0) 18.900347184s ago: executing program 0 (id=2004): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0xffffffffffffffa2) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x6030000000100016, 0xffffffffffffffff}) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f0000000380)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffc}}, @msr={0x14, 0x20, {0x603000000013dce0, 0x8001}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f00000008c0)={0x1000, 0x1000}) close(0xffffffffffffffff) r7 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=[@featur2={0x1, 0x56}], 0x1) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r10, 0x4018aee1, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df60, 0x8000}}, @msr={0x14, 0x20, {0x603000000013df61, 0x8000}}, @uexit={0x0, 0x18, 0x1000}, @msr={0x14, 0x20, {0x603000000013df63, 0x8000}}, @msr={0x14, 0x20, {0x603000000013df64, 0x8000}}, @msr={0x14, 0x20, {0x603000000013df65, 0x8000}}, @msr={0x14, 0x20, {0x603000000013df7f, 0x8000}}], 0xd8}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) r14 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r11, 0xae04) r15 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r14, 0x3, 0x11, r13, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) syz_kvm_assert_syzos_uexit$arm64(r15, 0xffffffffffffffff) syz_kvm_assert_reg(r13, 0x603000000013df60, 0x8000) 10.392667255s ago: executing program 1 (id=2005): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000080)=@attr_arm64={0x0, 0x4, 0x5, &(0x7f00000000c0)=0x730}) 4.152759575s ago: executing program 0 (id=2006): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = eventfd2(0xfffffffa, 0x80001) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000140)={0x80, 0x4, 0x0, r3}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x1, 0x37d03030d7a92616}) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x4, 0x80a0000, 0x4, r3}) r4 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x3, 0x1, 0x1}}], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 4.150490255s ago: executing program 1 (id=2007): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x1000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x3, 0x1000, 0x40000000, 0x0, 0x40000004}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r13, r14, &(0x7f0000bfe000/0x400000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f00000001c0)=@arm64_core={0x6030000000100036, &(0x7f0000000000)=0xcb}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r15 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x0, 0xf, 0xffffffff, 0x0, 0x2}}], 0x28}, &(0x7f0000000280)=[@featur2={0x1, 0x8}], 0x1) ioctl$KVM_RUN(r16, 0xae80, 0x0) 0s ago: executing program 0 (id=2008): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r11 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) r15 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r9, 0xae04) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r15, 0x3, 0x11, r14, 0x0) mmap$KVM_VCPU(&(0x7f0000ffc000/0x3000)=nil, r15, 0x1, 0x12, r8, 0x0) r16 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) r17 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r17, 0x8, 0x13, r8, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r17, 0x1000001, 0x12, r8, 0x0) r18 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x0, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r18, 0x3, 0x11, r7, 0x0) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r18, 0x3, 0x11, r16, 0x0) r19 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r19, &(0x7f0000c00000/0x400000)=nil) r20 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000180)={0x0, &(0x7f0000000040)}, &(0x7f0000000000)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r20, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) kernel console output (not intermixed with test programs): [ 380.467765][ T3165] 8021q: adding VLAN 0 to HW filter on device bond0 [ 415.271369][ T3165] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:59604' (ED25519) to the list of known hosts. [ 590.079992][ T25] audit: type=1400 audit(589.310:60): avc: denied { name_bind } for pid=3316 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 591.154232][ T25] audit: type=1400 audit(590.380:61): avc: denied { execute } for pid=3317 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 591.188292][ T25] audit: type=1400 audit(590.420:62): avc: denied { execute_no_trans } for pid=3317 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 613.696672][ T25] audit: type=1400 audit(612.920:63): avc: denied { mounton } for pid=3317 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 613.755158][ T25] audit: type=1400 audit(612.980:64): avc: denied { mount } for pid=3317 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 613.844037][ T3317] cgroup: Unknown subsys name 'net' [ 613.908540][ T25] audit: type=1400 audit(613.140:65): avc: denied { unmount } for pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 614.382589][ T3317] cgroup: Unknown subsys name 'cpuset' [ 614.526741][ T3317] cgroup: Unknown subsys name 'rlimit' [ 615.896776][ T25] audit: type=1400 audit(615.130:66): avc: denied { setattr } for pid=3317 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 615.916848][ T25] audit: type=1400 audit(615.140:67): avc: denied { mounton } for pid=3317 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 615.942535][ T25] audit: type=1400 audit(615.170:68): avc: denied { mount } for pid=3317 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 616.952553][ T3321] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 616.972233][ T25] audit: type=1400 audit(616.200:69): avc: denied { relabelto } for pid=3321 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 616.990850][ T25] audit: type=1400 audit(616.210:70): avc: denied { write } for pid=3321 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 617.179771][ T25] audit: type=1400 audit(616.410:71): avc: denied { read } for pid=3317 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 617.205811][ T25] audit: type=1400 audit(616.420:72): avc: denied { open } for pid=3317 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 617.249060][ T3317] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 672.848538][ T25] audit: type=1400 audit(672.070:73): avc: denied { execmem } for pid=3327 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 677.255464][ T25] audit: type=1400 audit(676.480:74): avc: denied { open } for pid=3329 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 677.268662][ T25] audit: type=1400 audit(676.500:75): avc: denied { read } for pid=3330 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 677.337346][ T25] audit: type=1400 audit(676.560:76): avc: denied { mounton } for pid=3329 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 677.610365][ T25] audit: type=1400 audit(676.840:77): avc: denied { module_request } for pid=3330 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 677.644319][ T25] audit: type=1400 audit(676.850:78): avc: denied { module_request } for pid=3329 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 678.607012][ T25] audit: type=1400 audit(677.820:79): avc: denied { sys_module } for pid=3330 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 702.682557][ T3330] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 703.135067][ T3330] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 704.029778][ T3329] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 704.505472][ T3329] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 716.689189][ T3330] hsr_slave_0: entered promiscuous mode [ 716.719910][ T3330] hsr_slave_1: entered promiscuous mode [ 717.748955][ T3329] hsr_slave_0: entered promiscuous mode [ 717.787348][ T3329] hsr_slave_1: entered promiscuous mode [ 717.824167][ T3329] debugfs: 'hsr0' already exists in 'hsr' [ 717.831102][ T3329] Cannot create hsr debugfs directory [ 723.055015][ T25] audit: type=1400 audit(722.280:80): avc: denied { create } for pid=3330 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.126861][ T25] audit: type=1400 audit(722.330:81): avc: denied { write } for pid=3330 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.162549][ T25] audit: type=1400 audit(722.380:82): avc: denied { read } for pid=3330 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 723.280415][ T3330] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 723.627695][ T3330] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 724.008062][ T3330] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 724.346673][ T3330] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 726.007603][ T3329] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 726.209592][ T3329] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 726.380197][ T3329] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 726.556734][ T3329] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 737.402563][ T3330] 8021q: adding VLAN 0 to HW filter on device bond0 [ 740.500754][ T3329] 8021q: adding VLAN 0 to HW filter on device bond0 [ 790.780453][ T3330] veth0_vlan: entered promiscuous mode [ 791.317566][ T3330] veth1_vlan: entered promiscuous mode [ 793.232635][ T3330] veth0_macvtap: entered promiscuous mode [ 793.687411][ T3330] veth1_macvtap: entered promiscuous mode [ 793.769384][ T3329] veth0_vlan: entered promiscuous mode [ 794.681779][ T3329] veth1_vlan: entered promiscuous mode [ 795.888261][ T3367] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.906732][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.924978][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 795.995077][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 797.950343][ T3329] veth0_macvtap: entered promiscuous mode [ 798.169860][ T25] audit: type=1400 audit(797.400:83): avc: denied { mount } for pid=3330 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 798.435249][ T25] audit: type=1400 audit(797.660:84): avc: denied { mounton } for pid=3330 comm="syz-executor" path="/syzkaller.WxaNcX/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 798.487666][ T3329] veth1_macvtap: entered promiscuous mode [ 798.642487][ T25] audit: type=1400 audit(797.870:85): avc: denied { mount } for pid=3330 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 798.891166][ T25] audit: type=1400 audit(798.120:86): avc: denied { mounton } for pid=3330 comm="syz-executor" path="/syzkaller.WxaNcX/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 799.008203][ T25] audit: type=1400 audit(798.210:87): avc: denied { mounton } for pid=3330 comm="syz-executor" path="/syzkaller.WxaNcX/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3762 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 799.768835][ T25] audit: type=1400 audit(798.980:88): avc: denied { unmount } for pid=3330 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 799.979630][ T25] audit: type=1400 audit(799.190:89): avc: denied { mounton } for pid=3330 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1544 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 800.057310][ T25] audit: type=1400 audit(799.270:90): avc: denied { mount } for pid=3330 comm="syz-executor" name="/" dev="gadgetfs" ino=3770 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 800.446190][ T25] audit: type=1400 audit(799.660:91): avc: denied { mount } for pid=3330 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 800.481112][ T25] audit: type=1400 audit(799.710:92): avc: denied { mounton } for pid=3330 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 800.537453][ T3367] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.541258][ T3367] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.561947][ T3367] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 800.577934][ T3367] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 802.330416][ T3330] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 803.485715][ T25] kauditd_printk_skb: 1 callbacks suppressed [ 803.495073][ T25] audit: type=1400 audit(802.710:94): avc: denied { read write } for pid=3330 comm="syz-executor" name="loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 803.524899][ T25] audit: type=1400 audit(802.750:95): avc: denied { open } for pid=3330 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 803.576892][ T25] audit: type=1400 audit(802.800:96): avc: denied { ioctl } for pid=3330 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 812.347706][ T25] audit: type=1400 audit(811.520:97): avc: denied { read append } for pid=3480 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 812.360409][ T25] audit: type=1400 audit(811.590:98): avc: denied { open } for pid=3480 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 812.748266][ T25] audit: type=1400 audit(811.980:99): avc: denied { ioctl } for pid=3480 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 833.046043][ T25] audit: type=1400 audit(832.210:100): avc: denied { write } for pid=3493 comm="syz.1.5" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 853.629071][ T25] audit: type=1400 audit(852.780:101): avc: denied { execute } for pid=3499 comm="syz.1.8" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4282 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 912.131646][ T3540] kvm [3540]: Failed to find VMA for hva 0x21016000 [ 1034.004456][ T25] audit: type=1400 audit(1033.230:102): avc: denied { create } for pid=3611 comm="syz.1.44" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1054.754217][ T25] audit: type=1400 audit(1053.980:103): avc: denied { setattr } for pid=3623 comm="syz.0.49" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1263.662403][ T3741] kvm [3740]: Unsupported guest access at: eeef0000 [ 1263.662403][ T3741] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1264.449740][ T3741] kvm [3741]: Failed to find VMA for hva 0x20d8d000 [ 1264.715280][ T3744] KVM: debugfs: duplicate directory 3744-5 [ 1301.698651][ T25] audit: type=1400 audit(1300.900:104): avc: denied { ioctl } for pid=3767 comm="syz.1.94" path="anon_inode:[kvm-gmem]" dev="anon_inodefs" ino=9138 ioctlcmd=0xae46 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1357.640307][ T3801] kvm [3800]: Unsupported guest access at: eeef0000 [ 1357.640307][ T3801] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1358.589010][ T3801] kvm [3801]: Failed to find VMA for hva 0x20d8d000 [ 1423.130249][ T3830] debugfs: 'vgic-its-state@8080000' already exists in '3829-9' [ 1441.246565][ T3836] kvm [3835]: Unsupported guest access at: eeef0000 [ 1441.246565][ T3836] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1442.240374][ T3836] kvm [3836]: Failed to find VMA for hva 0x20d8d000 [ 1450.841515][ T25] audit: type=1400 audit(1450.070:105): avc: denied { map } for pid=3848 comm="syz.1.119" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1450.904509][ T25] audit: type=1400 audit(1450.130:106): avc: denied { execute } for pid=3848 comm="syz.1.119" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1476.037813][ T3859] kvm [3858]: Unsupported guest access at: eeef0000 [ 1476.037813][ T3859] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1476.897920][ T3859] kvm [3859]: Failed to find VMA for hva 0x20d8d000 [ 1512.040507][ T3878] kvm [3877]: Unsupported guest access at: eeef0000 [ 1512.040507][ T3878] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1513.126538][ T3878] kvm [3878]: Failed to find VMA for hva 0x20d8d000 [ 1522.560809][ T25] audit: type=1400 audit(1521.790:107): avc: denied { ioctl } for pid=3880 comm="syz.0.129" path="net:[4026532624]" dev="nsfs" ino=4026532624 ioctlcmd=0xb70d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1568.111923][ T3908] kvm [3907]: Unsupported guest access at: eeef0000 [ 1568.111923][ T3908] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1568.970404][ T3908] kvm [3908]: Failed to find VMA for hva 0x20d8d000 [ 1570.746073][ T3912] kvm [3912]: Failed to find VMA for hva 0x20c01000 [ 1602.159649][ T3928] kvm [3927]: Unsupported guest access at: eeef0000 [ 1602.159649][ T3928] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1603.218323][ T3928] kvm [3928]: Failed to find VMA for hva 0x20d8d000 [ 1633.065667][ T3947] kvm [3945]: Unsupported guest access at: eeef0000 [ 1633.065667][ T3947] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1633.948144][ T3947] kvm [3947]: Failed to find VMA for hva 0x20d8d000 [ 1704.808335][ T3980] kvm [3979]: Unsupported guest access at: eeef0000 [ 1704.808335][ T3980] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1705.687008][ T3980] kvm [3980]: Failed to find VMA for hva 0x20d8d000 [ 1707.801134][ T25] audit: type=1400 audit(1707.020:108): avc: denied { map } for pid=3981 comm="syz.0.163" path="anon_inode:[kvm-gmem]" dev="anon_inodefs" ino=14025 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1707.845722][ T25] audit: type=1400 audit(1707.030:109): avc: denied { read } for pid=3981 comm="syz.0.163" path="anon_inode:[kvm-gmem]" dev="anon_inodefs" ino=14025 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1734.621133][ T3997] kvm [3996]: Unsupported guest access at: eeef0000 [ 1734.621133][ T3997] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1735.300881][ T3997] kvm [3997]: Failed to find VMA for hva 0x20d8d000 [ 1769.548977][ T4016] kvm [4015]: Unsupported guest access at: eeef0000 [ 1769.548977][ T4016] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 1770.225374][ T4016] kvm [4016]: Failed to find VMA for hva 0x20d8d000 [ 1960.042540][ T4127] kvm [4127]: Failed to find VMA for hva 0x20c01000 [ 1960.369941][ T4127] kvm [4127]: Failed to find VMA for hva 0x20c01000 [ 2055.366337][ T4182] kvm [4181]: Unsupported guest access at: eeef0000 [ 2055.366337][ T4182] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 2364.062079][ T4403] FAULT_INJECTION: forcing a failure. [ 2364.062079][ T4403] name failslab, interval 1, probability 0, space 0, times 1 [ 2364.075530][ T4403] CPU: 0 UID: 0 PID: 4403 Comm: syz.0.297 Not tainted syzkaller #0 PREEMPT [ 2364.076196][ T4403] Hardware name: linux,dummy-virt (DT) [ 2364.076670][ T4403] Call trace: [ 2364.077108][ T4403] show_stack+0x2c/0x3c (C) [ 2364.078958][ T4403] __dump_stack+0x30/0x40 [ 2364.079232][ T4403] dump_stack_lvl+0xd8/0x12c [ 2364.079448][ T4403] dump_stack+0x1c/0x28 [ 2364.079654][ T4403] should_fail_ex+0x570/0x6e0 [ 2364.079887][ T4403] should_failslab+0xb8/0xec [ 2364.080101][ T4403] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 2364.080385][ T4403] __d_alloc+0x40/0x844 [ 2364.080643][ T4403] d_alloc_parallel+0x9c/0x1438 [ 2364.080910][ T4403] path_openat+0xa74/0x35f8 [ 2364.081221][ T4403] do_filp_open+0x190/0x3cc [ 2364.081509][ T4403] do_sys_openat2+0xd4/0x158 [ 2364.081756][ T4403] __arm64_sys_openat+0x154/0x1b8 [ 2364.081990][ T4403] invoke_syscall+0x90/0x238 [ 2364.082275][ T4403] el0_svc_common+0x180/0x2f4 [ 2364.082574][ T4403] do_el0_svc+0x58/0x74 [ 2364.082876][ T4403] el0_svc+0x5c/0x234 [ 2364.083161][ T4403] el0t_64_sync_handler+0x84/0x12c [ 2364.083464][ T4403] el0t_64_sync+0x198/0x19c [ 2571.396789][ T4528] kvm [4528]: Failed to find VMA for hva 0x20dcc000 [ 2644.564427][ T25] audit: type=1400 audit(2643.780:110): avc: denied { execute } for pid=4571 comm="syz.0.354" path="/sys/kernel/debug/kcov" dev="debugfs" ino=106 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=file permissive=1 [ 2845.197594][ T4701] kvm [4701]: Failed to find VMA for hva 0x20c01000 [ 2845.241661][ T4702] kvm [4702]: Failed to find VMA for hva 0x20c01000 [ 2857.135352][ T4710] debugfs: 'vgic-its-state@8080000' already exists in '4710-6' [ 2922.200489][ T4750] FAULT_INJECTION: forcing a failure. [ 2922.200489][ T4750] name failslab, interval 1, probability 0, space 0, times 0 [ 2922.255007][ T4750] CPU: 0 UID: 0 PID: 4750 Comm: syz.0.409 Not tainted syzkaller #0 PREEMPT [ 2922.255388][ T4750] Hardware name: linux,dummy-virt (DT) [ 2922.255519][ T4750] Call trace: [ 2922.255606][ T4750] show_stack+0x2c/0x3c (C) [ 2922.255950][ T4750] __dump_stack+0x30/0x40 [ 2922.256146][ T4750] dump_stack_lvl+0xd8/0x12c [ 2922.256337][ T4750] dump_stack+0x1c/0x28 [ 2922.256558][ T4750] should_fail_ex+0x570/0x6e0 [ 2922.256797][ T4750] should_failslab+0xb8/0xec [ 2922.257039][ T4750] __kmalloc_noprof+0xdc/0x668 [ 2922.257334][ T4750] tomoyo_encode+0x27c/0x4ec [ 2922.257661][ T4750] tomoyo_realpath_from_path+0x5bc/0x628 [ 2922.257961][ T4750] tomoyo_path_number_perm+0x13c/0x33c [ 2922.258230][ T4750] tomoyo_file_ioctl+0x2c/0x3c [ 2922.258430][ T4750] security_file_ioctl+0xe8/0x2f0 [ 2922.258683][ T4750] __arm64_sys_ioctl+0xd0/0x244 [ 2922.258901][ T4750] invoke_syscall+0x90/0x238 [ 2922.259179][ T4750] el0_svc_common+0x180/0x2f4 [ 2922.259463][ T4750] do_el0_svc+0x58/0x74 [ 2922.259743][ T4750] el0_svc+0x5c/0x234 [ 2922.260018][ T4750] el0t_64_sync_handler+0x84/0x12c [ 2922.260299][ T4750] el0t_64_sync+0x198/0x19c [ 2922.374589][ T4750] ERROR: Out of memory at tomoyo_realpath_from_path. [ 3122.239385][ T4877] kvm [4876]: Unsupported guest access at: eeef0000 [ 3122.239385][ T4877] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3123.365484][ T4877] kvm [4877]: Failed to find VMA for hva 0x20d8d000 [ 3123.859585][ T4877] kvm [4877]: Failed to find VMA for hva 0x20c01000 [ 3396.090427][ T25] audit: type=1400 audit(3395.320:111): avc: denied { map } for pid=5057 comm="syz.0.509" path="/" dev="tmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 3397.219659][ T5060] kvm [5059]: Unsupported guest access at: eeef0000 [ 3397.219659][ T5060] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3398.406896][ T5060] kvm [5060]: Failed to find VMA for hva 0x20d8d000 [ 3420.038851][ T5073] KVM: debugfs: duplicate directory 5073-11 [ 3420.396898][ T5073] KVM: debugfs: duplicate directory 5073-11 [ 3436.166810][ T5079] kvm [5078]: Unsupported guest access at: eeef0000 [ 3436.166810][ T5079] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3437.124687][ T5079] kvm [5079]: Failed to find VMA for hva 0x20d8d000 [ 3457.717710][ T5095] kvm [5095]: Failed to find VMA for hva 0x20c01000 [ 3471.916183][ T5104] kvm [5103]: Unsupported guest access at: eeef0000 [ 3471.916183][ T5104] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3472.748431][ T5104] kvm [5104]: Failed to find VMA for hva 0x20d8d000 [ 3498.771743][ T5123] kvm [5121]: Unsupported guest access at: eeef0000 [ 3498.771743][ T5123] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3499.765929][ T5123] kvm [5123]: Failed to find VMA for hva 0x20d8d000 [ 3528.211250][ T5145] kvm [5144]: Unsupported guest access at: eeef0000 [ 3528.211250][ T5145] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3529.187487][ T5145] kvm [5145]: Failed to find VMA for hva 0x20d8d000 [ 4235.637850][ T5576] kvm [5576]: Failed to find VMA for hva 0x21016000 [ 4312.591533][ T5628] kvm [5627]: Unsupported guest access at: eeef0000 [ 4312.591533][ T5628] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 4313.536958][ T5628] kvm [5628]: Failed to find VMA for hva 0x20d8d000 [ 4421.046495][ T5693] kvm [5693]: Failed to find VMA for hva 0x20d8d000 [ 4475.730988][ T5734] FAULT_INJECTION: forcing a failure. [ 4475.730988][ T5734] name failslab, interval 1, probability 0, space 0, times 0 [ 4475.747931][ T5734] CPU: 0 UID: 0 PID: 5734 Comm: syz.1.732 Not tainted syzkaller #0 PREEMPT [ 4475.748313][ T5734] Hardware name: linux,dummy-virt (DT) [ 4475.748419][ T5734] Call trace: [ 4475.748515][ T5734] show_stack+0x2c/0x3c (C) [ 4475.748887][ T5734] __dump_stack+0x30/0x40 [ 4475.749119][ T5734] dump_stack_lvl+0xd8/0x12c [ 4475.749322][ T5734] dump_stack+0x1c/0x28 [ 4475.749530][ T5734] should_fail_ex+0x570/0x6e0 [ 4475.749771][ T5734] should_failslab+0xb8/0xec [ 4475.749988][ T5734] __kmalloc_cache_node_noprof+0x84/0x5d4 [ 4475.750277][ T5734] alloc_cpumask_var_node+0x78/0x150 [ 4475.750551][ T5734] kvm_arch_init_vm+0xb8/0x2b0 [ 4475.750800][ T5734] kvm_dev_ioctl+0x854/0x13e0 [ 4475.751060][ T5734] __arm64_sys_ioctl+0x18c/0x244 [ 4475.751283][ T5734] invoke_syscall+0x90/0x238 [ 4475.751583][ T5734] el0_svc_common+0x180/0x2f4 [ 4475.751860][ T5734] do_el0_svc+0x58/0x74 [ 4475.752127][ T5734] el0_svc+0x5c/0x234 [ 4475.752402][ T5734] el0t_64_sync_handler+0x84/0x12c [ 4475.752727][ T5734] el0t_64_sync+0x198/0x19c [ 4475.874128][ T5734] => alloc_cpumask_var: failed! [ 4475.874870][ T5734] CPU: 0 UID: 0 PID: 5734 Comm: syz.1.732 Not tainted syzkaller #0 PREEMPT [ 4475.875177][ T5734] Hardware name: linux,dummy-virt (DT) [ 4475.875283][ T5734] Call trace: [ 4475.875361][ T5734] show_stack+0x2c/0x3c (C) [ 4475.875738][ T5734] __dump_stack+0x30/0x40 [ 4475.875939][ T5734] dump_stack_lvl+0xd8/0x12c [ 4475.876131][ T5734] dump_stack+0x1c/0x28 [ 4475.876320][ T5734] alloc_cpumask_var_node+0x140/0x150 [ 4475.876602][ T5734] kvm_arch_init_vm+0xb8/0x2b0 [ 4475.876838][ T5734] kvm_dev_ioctl+0x854/0x13e0 [ 4475.877124][ T5734] __arm64_sys_ioctl+0x18c/0x244 [ 4475.877356][ T5734] invoke_syscall+0x90/0x238 [ 4475.877668][ T5734] el0_svc_common+0x180/0x2f4 [ 4475.877947][ T5734] do_el0_svc+0x58/0x74 [ 4475.878213][ T5734] el0_svc+0x5c/0x234 [ 4475.878502][ T5734] el0t_64_sync_handler+0x84/0x12c [ 4475.878797][ T5734] el0t_64_sync+0x198/0x19c [ 4723.318144][ T5878] kvm [5878]: Failed to find VMA for hva 0x20c01000 [ 4786.889765][ T5913] KVM: debugfs: duplicate directory 5913-5 [ 5097.491822][ T6125] kvm [6125]: Failed to find VMA for hva 0x20c01000 [ 5245.805959][ T6220] FAULT_INJECTION: forcing a failure. [ 5245.805959][ T6220] name failslab, interval 1, probability 0, space 0, times 0 [ 5245.815868][ T6220] CPU: 0 UID: 0 PID: 6220 Comm: syz.0.893 Not tainted syzkaller #0 PREEMPT [ 5245.816242][ T6220] Hardware name: linux,dummy-virt (DT) [ 5245.816348][ T6220] Call trace: [ 5245.816428][ T6220] show_stack+0x2c/0x3c (C) [ 5245.816800][ T6220] __dump_stack+0x30/0x40 [ 5245.817003][ T6220] dump_stack_lvl+0xd8/0x12c [ 5245.817233][ T6220] dump_stack+0x1c/0x28 [ 5245.817428][ T6220] should_fail_ex+0x570/0x6e0 [ 5245.817678][ T6220] should_failslab+0xb8/0xec [ 5245.817900][ T6220] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 5245.818183][ T6220] debugfs_alloc_inode+0x2c/0x3c [ 5245.818451][ T6220] alloc_inode+0x80/0x23c [ 5245.818743][ T6220] new_inode+0x2c/0x1c4 [ 5245.819015][ T6220] __debugfs_create_file+0x15c/0x5dc [ 5245.819272][ T6220] debugfs_create_file_full+0x58/0x70 [ 5245.819551][ T6220] kvm_create_vm_debugfs+0x57c/0x7d0 [ 5245.819826][ T6220] kvm_dev_ioctl+0x974/0x13e0 [ 5245.820076][ T6220] __arm64_sys_ioctl+0x18c/0x244 [ 5245.820288][ T6220] invoke_syscall+0x90/0x238 [ 5245.820583][ T6220] el0_svc_common+0x180/0x2f4 [ 5245.820877][ T6220] do_el0_svc+0x58/0x74 [ 5245.821185][ T6220] el0_svc+0x5c/0x234 [ 5245.821480][ T6220] el0t_64_sync_handler+0x84/0x12c [ 5245.821782][ T6220] el0t_64_sync+0x198/0x19c [ 5245.924594][ T6220] debugfs: out of free dentries, can not create file 'halt_successful_poll' [ 5274.448725][ T6233] FAULT_INJECTION: forcing a failure. [ 5274.448725][ T6233] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 5274.485456][ T6233] CPU: 0 UID: 0 PID: 6233 Comm: syz.1.899 Not tainted syzkaller #0 PREEMPT [ 5274.485876][ T6233] Hardware name: linux,dummy-virt (DT) [ 5274.485992][ T6233] Call trace: [ 5274.486073][ T6233] show_stack+0x2c/0x3c (C) [ 5274.486415][ T6233] __dump_stack+0x30/0x40 [ 5274.486633][ T6233] dump_stack_lvl+0xd8/0x12c [ 5274.486836][ T6233] dump_stack+0x1c/0x28 [ 5274.487031][ T6233] should_fail_ex+0x570/0x6e0 [ 5274.487264][ T6233] should_fail_alloc_page+0xd4/0xd8 [ 5274.487499][ T6233] prepare_alloc_pages+0x20c/0x5e0 [ 5274.487813][ T6233] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 5274.488118][ T6233] alloc_pages_mpol+0x204/0x4c8 [ 5274.488420][ T6233] alloc_pages_noprof+0x104/0x2ec [ 5274.488732][ T6233] get_free_pages_noprof+0x1c/0xc4 [ 5274.488949][ T6233] selinux_genfs_get_sid+0x70/0x2c0 [ 5274.489240][ T6233] inode_doinit_with_dentry+0x754/0xb7c [ 5274.489570][ T6233] selinux_d_instantiate+0x30/0x48 [ 5274.489835][ T6233] security_d_instantiate+0xf8/0x1fc [ 5274.490082][ T6233] d_instantiate+0x68/0xb8 [ 5274.490344][ T6233] __debugfs_create_file+0x2ac/0x5dc [ 5274.490641][ T6233] debugfs_create_file_full+0x58/0x70 [ 5274.490929][ T6233] kvm_create_vm_debugfs+0x57c/0x7d0 [ 5274.491207][ T6233] kvm_dev_ioctl+0x974/0x13e0 [ 5274.491459][ T6233] __arm64_sys_ioctl+0x18c/0x244 [ 5274.491695][ T6233] invoke_syscall+0x90/0x238 [ 5274.491995][ T6233] el0_svc_common+0x180/0x2f4 [ 5274.492272][ T6233] do_el0_svc+0x58/0x74 [ 5274.492570][ T6233] el0_svc+0x5c/0x234 [ 5274.492872][ T6233] el0t_64_sync_handler+0x84/0x12c [ 5274.493195][ T6233] el0t_64_sync+0x198/0x19c [ 5340.829420][ T6274] FAULT_INJECTION: forcing a failure. [ 5340.829420][ T6274] name failslab, interval 1, probability 0, space 0, times 0 [ 5340.839541][ T6274] CPU: 0 UID: 0 PID: 6274 Comm: syz.0.912 Not tainted syzkaller #0 PREEMPT [ 5340.839925][ T6274] Hardware name: linux,dummy-virt (DT) [ 5340.840030][ T6274] Call trace: [ 5340.840108][ T6274] show_stack+0x2c/0x3c (C) [ 5340.840446][ T6274] __dump_stack+0x30/0x40 [ 5340.840676][ T6274] dump_stack_lvl+0xd8/0x12c [ 5340.840871][ T6274] dump_stack+0x1c/0x28 [ 5340.841128][ T6274] should_fail_ex+0x570/0x6e0 [ 5340.841363][ T6274] should_failslab+0xb8/0xec [ 5340.841609][ T6274] __kmalloc_noprof+0xdc/0x668 [ 5340.841894][ T6274] tomoyo_realpath_from_path+0xdc/0x628 [ 5340.842198][ T6274] tomoyo_path_number_perm+0x13c/0x33c [ 5340.842485][ T6274] tomoyo_file_ioctl+0x2c/0x3c [ 5340.842726][ T6274] security_file_ioctl+0xe8/0x2f0 [ 5340.842947][ T6274] __arm64_sys_ioctl+0xd0/0x244 [ 5340.843168][ T6274] invoke_syscall+0x90/0x238 [ 5340.843447][ T6274] el0_svc_common+0x180/0x2f4 [ 5340.843751][ T6274] do_el0_svc+0x58/0x74 [ 5340.844021][ T6274] el0_svc+0x5c/0x234 [ 5340.844295][ T6274] el0t_64_sync_handler+0x84/0x12c [ 5340.844595][ T6274] el0t_64_sync+0x198/0x19c [ 5340.964088][ T6274] ERROR: Out of memory at tomoyo_realpath_from_path. [ 5594.993882][ T25] audit: type=1400 audit(5594.220:112): avc: denied { map } for pid=6446 comm="syz.1.967" path="pipe:[2784]" dev="pipefs" ino=2784 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 5641.476870][ T6474] FAULT_INJECTION: forcing a failure. [ 5641.476870][ T6474] name failslab, interval 1, probability 0, space 0, times 0 [ 5641.487737][ T6474] CPU: 0 UID: 0 PID: 6474 Comm: syz.1.976 Not tainted syzkaller #0 PREEMPT [ 5641.488113][ T6474] Hardware name: linux,dummy-virt (DT) [ 5641.488220][ T6474] Call trace: [ 5641.488298][ T6474] show_stack+0x2c/0x3c (C) [ 5641.488676][ T6474] __dump_stack+0x30/0x40 [ 5641.488880][ T6474] dump_stack_lvl+0xd8/0x12c [ 5641.489109][ T6474] dump_stack+0x1c/0x28 [ 5641.489318][ T6474] should_fail_ex+0x570/0x6e0 [ 5641.489570][ T6474] should_failslab+0xb8/0xec [ 5641.489793][ T6474] __kmalloc_cache_noprof+0x80/0x5b4 [ 5641.490076][ T6474] init_srcu_struct_fields+0x7c/0xe20 [ 5641.490350][ T6474] __init_srcu_struct+0x54/0x68 [ 5641.490638][ T6474] kvm_dev_ioctl+0x4e4/0x13e0 [ 5641.490905][ T6474] __arm64_sys_ioctl+0x18c/0x244 [ 5641.491126][ T6474] invoke_syscall+0x90/0x238 [ 5641.491405][ T6474] el0_svc_common+0x180/0x2f4 [ 5641.491708][ T6474] do_el0_svc+0x58/0x74 [ 5641.491985][ T6474] el0_svc+0x5c/0x234 [ 5641.492266][ T6474] el0t_64_sync_handler+0x84/0x12c [ 5641.492572][ T6474] el0t_64_sync+0x198/0x19c [ 5665.545713][ T6491] KVM: debugfs: duplicate directory 6491-5 [ 5844.610744][ T6610] FAULT_INJECTION: forcing a failure. [ 5844.610744][ T6610] name failslab, interval 1, probability 0, space 0, times 0 [ 5844.634443][ T6610] CPU: 0 UID: 0 PID: 6610 Comm: syz.0.1019 Not tainted syzkaller #0 PREEMPT [ 5844.634856][ T6610] Hardware name: linux,dummy-virt (DT) [ 5844.634962][ T6610] Call trace: [ 5844.635039][ T6610] show_stack+0x2c/0x3c (C) [ 5844.635381][ T6610] __dump_stack+0x30/0x40 [ 5844.635612][ T6610] dump_stack_lvl+0xd8/0x12c [ 5844.635808][ T6610] dump_stack+0x1c/0x28 [ 5844.635997][ T6610] should_fail_ex+0x570/0x6e0 [ 5844.636222][ T6610] should_failslab+0xb8/0xec [ 5844.636436][ T6610] __kmalloc_cache_noprof+0x80/0x5b4 [ 5844.636759][ T6610] kvm_init_stage2_mmu+0x1fc/0x5d4 [ 5844.637063][ T6610] kvm_arch_init_vm+0x124/0x2b0 [ 5844.637307][ T6610] kvm_dev_ioctl+0x854/0x13e0 [ 5844.637601][ T6610] __arm64_sys_ioctl+0x18c/0x244 [ 5844.637834][ T6610] invoke_syscall+0x90/0x238 [ 5844.638112][ T6610] el0_svc_common+0x180/0x2f4 [ 5844.638391][ T6610] do_el0_svc+0x58/0x74 [ 5844.638697][ T6610] el0_svc+0x5c/0x234 [ 5844.638979][ T6610] el0t_64_sync_handler+0x84/0x12c [ 5844.639260][ T6610] el0t_64_sync+0x198/0x19c [ 6065.481333][ T6729] kvm [6728]: Unsupported guest access at: eeef0000 [ 6065.481333][ T6729] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 6086.318446][ T6740] FAULT_INJECTION: forcing a failure. [ 6086.318446][ T6740] name failslab, interval 1, probability 0, space 0, times 0 [ 6086.346292][ T6740] CPU: 0 UID: 0 PID: 6740 Comm: syz.0.1066 Not tainted syzkaller #0 PREEMPT [ 6086.346698][ T6740] Hardware name: linux,dummy-virt (DT) [ 6086.346808][ T6740] Call trace: [ 6086.346884][ T6740] show_stack+0x2c/0x3c (C) [ 6086.347223][ T6740] __dump_stack+0x30/0x40 [ 6086.347418][ T6740] dump_stack_lvl+0xd8/0x12c [ 6086.347643][ T6740] dump_stack+0x1c/0x28 [ 6086.347834][ T6740] should_fail_ex+0x570/0x6e0 [ 6086.348057][ T6740] should_failslab+0xb8/0xec [ 6086.348267][ T6740] __kmalloc_noprof+0xdc/0x668 [ 6086.348565][ T6740] kvm_create_vm_debugfs+0x1d8/0x7d0 [ 6086.348835][ T6740] kvm_dev_ioctl+0x974/0x13e0 [ 6086.349117][ T6740] __arm64_sys_ioctl+0x18c/0x244 [ 6086.349349][ T6740] invoke_syscall+0x90/0x238 [ 6086.349659][ T6740] el0_svc_common+0x180/0x2f4 [ 6086.349935][ T6740] do_el0_svc+0x58/0x74 [ 6086.350201][ T6740] el0_svc+0x5c/0x234 [ 6086.350487][ T6740] el0t_64_sync_handler+0x84/0x12c [ 6086.350791][ T6740] el0t_64_sync+0x198/0x19c [ 6108.529748][ T6756] FAULT_INJECTION: forcing a failure. [ 6108.529748][ T6756] name failslab, interval 1, probability 0, space 0, times 0 [ 6108.575201][ T6756] CPU: 0 UID: 0 PID: 6756 Comm: syz.0.1072 Not tainted syzkaller #0 PREEMPT [ 6108.575609][ T6756] Hardware name: linux,dummy-virt (DT) [ 6108.575722][ T6756] Call trace: [ 6108.575800][ T6756] show_stack+0x2c/0x3c (C) [ 6108.576141][ T6756] __dump_stack+0x30/0x40 [ 6108.576339][ T6756] dump_stack_lvl+0xd8/0x12c [ 6108.576559][ T6756] dump_stack+0x1c/0x28 [ 6108.576759][ T6756] should_fail_ex+0x570/0x6e0 [ 6108.576980][ T6756] should_failslab+0xb8/0xec [ 6108.577237][ T6756] __kmalloc_cache_noprof+0x80/0x5b4 [ 6108.577560][ T6756] kvm_create_vm_debugfs+0x240/0x7d0 [ 6108.577856][ T6756] kvm_dev_ioctl+0x974/0x13e0 [ 6108.578116][ T6756] __arm64_sys_ioctl+0x18c/0x244 [ 6108.578334][ T6756] invoke_syscall+0x90/0x238 [ 6108.578646][ T6756] el0_svc_common+0x180/0x2f4 [ 6108.578927][ T6756] do_el0_svc+0x58/0x74 [ 6108.579196][ T6756] el0_svc+0x5c/0x234 [ 6108.579485][ T6756] el0t_64_sync_handler+0x84/0x12c [ 6108.579781][ T6756] el0t_64_sync+0x198/0x19c [ 6142.331525][ T6778] FAULT_INJECTION: forcing a failure. [ 6142.331525][ T6778] name failslab, interval 1, probability 0, space 0, times 0 [ 6142.351303][ T6778] CPU: 0 UID: 0 PID: 6778 Comm: syz.0.1079 Not tainted syzkaller #0 PREEMPT [ 6142.351705][ T6778] Hardware name: linux,dummy-virt (DT) [ 6142.351819][ T6778] Call trace: [ 6142.351898][ T6778] show_stack+0x2c/0x3c (C) [ 6142.352242][ T6778] __dump_stack+0x30/0x40 [ 6142.352450][ T6778] dump_stack_lvl+0xd8/0x12c [ 6142.352693][ T6778] dump_stack+0x1c/0x28 [ 6142.352888][ T6778] should_fail_ex+0x570/0x6e0 [ 6142.353145][ T6778] should_failslab+0xb8/0xec [ 6142.353366][ T6778] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 6142.353679][ T6778] __d_alloc+0x40/0x844 [ 6142.353917][ T6778] d_alloc_parallel+0x9c/0x1438 [ 6142.354170][ T6778] __lookup_slow+0xe0/0x388 [ 6142.354425][ T6778] lookup_noperm+0x134/0x280 [ 6142.354706][ T6778] simple_start_creating+0xc4/0x190 [ 6142.354995][ T6778] debugfs_start_creating+0x134/0x1b0 [ 6142.355267][ T6778] __debugfs_create_file+0x7c/0x5dc [ 6142.355554][ T6778] debugfs_create_file_full+0x58/0x70 [ 6142.355820][ T6778] kvm_create_vm_debugfs+0x374/0x7d0 [ 6142.356083][ T6778] kvm_dev_ioctl+0x974/0x13e0 [ 6142.356334][ T6778] __arm64_sys_ioctl+0x18c/0x244 [ 6142.356570][ T6778] invoke_syscall+0x90/0x238 [ 6142.356859][ T6778] el0_svc_common+0x180/0x2f4 [ 6142.357166][ T6778] do_el0_svc+0x58/0x74 [ 6142.357441][ T6778] el0_svc+0x5c/0x234 [ 6142.357743][ T6778] el0t_64_sync_handler+0x84/0x12c [ 6142.358024][ T6778] el0t_64_sync+0x198/0x19c [ 6161.941997][ T6788] kvm [6787]: Unsupported guest access at: eeef0000 [ 6161.941997][ T6788] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 6162.866823][ T6788] kvm [6788]: Failed to find VMA for hva 0x20d8d000 [ 6170.037840][ T6795] FAULT_INJECTION: forcing a failure. [ 6170.037840][ T6795] name failslab, interval 1, probability 0, space 0, times 0 [ 6170.066682][ T6795] CPU: 0 UID: 0 PID: 6795 Comm: syz.0.1085 Not tainted syzkaller #0 PREEMPT [ 6170.067064][ T6795] Hardware name: linux,dummy-virt (DT) [ 6170.067169][ T6795] Call trace: [ 6170.067248][ T6795] show_stack+0x2c/0x3c (C) [ 6170.067626][ T6795] __dump_stack+0x30/0x40 [ 6170.067836][ T6795] dump_stack_lvl+0xd8/0x12c [ 6170.068036][ T6795] dump_stack+0x1c/0x28 [ 6170.068223][ T6795] should_fail_ex+0x570/0x6e0 [ 6170.068443][ T6795] should_failslab+0xb8/0xec [ 6170.068690][ T6795] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 6170.068979][ T6795] debugfs_alloc_inode+0x2c/0x3c [ 6170.069286][ T6795] alloc_inode+0x80/0x23c [ 6170.069587][ T6795] new_inode+0x2c/0x1c4 [ 6170.069871][ T6795] __debugfs_create_file+0x15c/0x5dc [ 6170.070131][ T6795] debugfs_create_file_full+0x58/0x70 [ 6170.070393][ T6795] kvm_create_vm_debugfs+0x374/0x7d0 [ 6170.070685][ T6795] kvm_dev_ioctl+0x974/0x13e0 [ 6170.070942][ T6795] __arm64_sys_ioctl+0x18c/0x244 [ 6170.071160][ T6795] invoke_syscall+0x90/0x238 [ 6170.071450][ T6795] el0_svc_common+0x180/0x2f4 [ 6170.071764][ T6795] do_el0_svc+0x58/0x74 [ 6170.072044][ T6795] el0_svc+0x5c/0x234 [ 6170.072333][ T6795] el0t_64_sync_handler+0x84/0x12c [ 6170.072667][ T6795] el0t_64_sync+0x198/0x19c [ 6170.174175][ T6795] debugfs: out of free dentries, can not create file 'remote_tlb_flush' [ 6198.800683][ T6813] FAULT_INJECTION: forcing a failure. [ 6198.800683][ T6813] name failslab, interval 1, probability 0, space 0, times 0 [ 6198.856644][ T6813] CPU: 0 UID: 0 PID: 6813 Comm: syz.0.1091 Not tainted syzkaller #0 PREEMPT [ 6198.857049][ T6813] Hardware name: linux,dummy-virt (DT) [ 6198.857170][ T6813] Call trace: [ 6198.857254][ T6813] show_stack+0x2c/0x3c (C) [ 6198.857624][ T6813] __dump_stack+0x30/0x40 [ 6198.857828][ T6813] dump_stack_lvl+0xd8/0x12c [ 6198.858019][ T6813] dump_stack+0x1c/0x28 [ 6198.858204][ T6813] should_fail_ex+0x570/0x6e0 [ 6198.858423][ T6813] should_failslab+0xb8/0xec [ 6198.858659][ T6813] kmem_cache_alloc_noprof+0x84/0x5a8 [ 6198.858940][ T6813] security_inode_alloc+0x3c/0x354 [ 6198.859260][ T6813] inode_init_always_gfp+0xb48/0xfd4 [ 6198.859567][ T6813] alloc_inode+0x98/0x23c [ 6198.859851][ T6813] new_inode+0x2c/0x1c4 [ 6198.860124][ T6813] __debugfs_create_file+0x15c/0x5dc [ 6198.860382][ T6813] debugfs_create_file_full+0x58/0x70 [ 6198.860673][ T6813] kvm_create_vm_debugfs+0x374/0x7d0 [ 6198.860950][ T6813] kvm_dev_ioctl+0x974/0x13e0 [ 6198.861244][ T6813] __arm64_sys_ioctl+0x18c/0x244 [ 6198.861467][ T6813] invoke_syscall+0x90/0x238 [ 6198.861776][ T6813] el0_svc_common+0x180/0x2f4 [ 6198.862052][ T6813] do_el0_svc+0x58/0x74 [ 6198.862319][ T6813] el0_svc+0x5c/0x234 [ 6198.862660][ T6813] el0t_64_sync_handler+0x84/0x12c [ 6198.862962][ T6813] el0t_64_sync+0x198/0x19c [ 6198.961251][ T6813] debugfs: out of free dentries, can not create file 'remote_tlb_flush' [ 6242.948467][ T6853] FAULT_INJECTION: forcing a failure. [ 6242.948467][ T6853] name failslab, interval 1, probability 0, space 0, times 0 [ 6243.035914][ T6853] CPU: 0 UID: 0 PID: 6853 Comm: syz.1.1100 Not tainted syzkaller #0 PREEMPT [ 6243.036298][ T6853] Hardware name: linux,dummy-virt (DT) [ 6243.036410][ T6853] Call trace: [ 6243.036505][ T6853] show_stack+0x2c/0x3c (C) [ 6243.036874][ T6853] __dump_stack+0x30/0x40 [ 6243.037102][ T6853] dump_stack_lvl+0xd8/0x12c [ 6243.037306][ T6853] dump_stack+0x1c/0x28 [ 6243.037530][ T6853] should_fail_ex+0x570/0x6e0 [ 6243.037778][ T6853] should_failslab+0xb8/0xec [ 6243.037999][ T6853] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 6243.038290][ T6853] __d_alloc+0x40/0x844 [ 6243.038543][ T6853] d_alloc_parallel+0x9c/0x1438 [ 6243.038805][ T6853] __lookup_slow+0xe0/0x388 [ 6243.039064][ T6853] lookup_noperm+0x134/0x280 [ 6243.039317][ T6853] simple_start_creating+0xc4/0x190 [ 6243.039613][ T6853] debugfs_start_creating+0x134/0x1b0 [ 6243.039888][ T6853] __debugfs_create_file+0x7c/0x5dc [ 6243.040148][ T6853] debugfs_create_file_full+0x58/0x70 [ 6243.040407][ T6853] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6243.040707][ T6853] kvm_dev_ioctl+0x974/0x13e0 [ 6243.040965][ T6853] __arm64_sys_ioctl+0x18c/0x244 [ 6243.041218][ T6853] invoke_syscall+0x90/0x238 [ 6243.041525][ T6853] el0_svc_common+0x180/0x2f4 [ 6243.041816][ T6853] do_el0_svc+0x58/0x74 [ 6243.042089][ T6853] el0_svc+0x5c/0x234 [ 6243.042369][ T6853] el0t_64_sync_handler+0x84/0x12c [ 6243.042695][ T6853] el0t_64_sync+0x198/0x19c [ 6279.317556][ T6879] FAULT_INJECTION: forcing a failure. [ 6279.317556][ T6879] name failslab, interval 1, probability 0, space 0, times 0 [ 6279.322446][ T6879] CPU: 0 UID: 0 PID: 6879 Comm: syz.1.1107 Not tainted syzkaller #0 PREEMPT [ 6279.322811][ T6879] Hardware name: linux,dummy-virt (DT) [ 6279.322924][ T6879] Call trace: [ 6279.323003][ T6879] show_stack+0x2c/0x3c (C) [ 6279.323342][ T6879] __dump_stack+0x30/0x40 [ 6279.323552][ T6879] dump_stack_lvl+0xd8/0x12c [ 6279.323758][ T6879] dump_stack+0x1c/0x28 [ 6279.323953][ T6879] should_fail_ex+0x570/0x6e0 [ 6279.324174][ T6879] should_failslab+0xb8/0xec [ 6279.324386][ T6879] kmem_cache_alloc_lru_noprof+0x88/0x5ac [ 6279.324782][ T6879] debugfs_alloc_inode+0x2c/0x3c [ 6279.325093][ T6879] alloc_inode+0x80/0x23c [ 6279.325371][ T6879] new_inode+0x2c/0x1c4 [ 6279.325661][ T6879] __debugfs_create_file+0x15c/0x5dc [ 6279.325933][ T6879] debugfs_create_file_full+0x58/0x70 [ 6279.326196][ T6879] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6279.326467][ T6879] kvm_dev_ioctl+0x974/0x13e0 [ 6279.326748][ T6879] __arm64_sys_ioctl+0x18c/0x244 [ 6279.326980][ T6879] invoke_syscall+0x90/0x238 [ 6279.327260][ T6879] el0_svc_common+0x180/0x2f4 [ 6279.327546][ T6879] do_el0_svc+0x58/0x74 [ 6279.327828][ T6879] el0_svc+0x5c/0x234 [ 6279.328108][ T6879] el0t_64_sync_handler+0x84/0x12c [ 6279.328393][ T6879] el0t_64_sync+0x198/0x19c [ 6279.424323][ T6879] debugfs: out of free dentries, can not create file 'halt_wait_ns' [ 6624.615903][ T7091] FAULT_INJECTION: forcing a failure. [ 6624.615903][ T7091] name failslab, interval 1, probability 0, space 0, times 0 [ 6624.624435][ T7091] CPU: 0 UID: 0 PID: 7091 Comm: syz.0.1179 Not tainted syzkaller #0 PREEMPT [ 6624.624836][ T7091] Hardware name: linux,dummy-virt (DT) [ 6624.624949][ T7091] Call trace: [ 6624.625049][ T7091] show_stack+0x2c/0x3c (C) [ 6624.625406][ T7091] __dump_stack+0x30/0x40 [ 6624.625632][ T7091] dump_stack_lvl+0xd8/0x12c [ 6624.625846][ T7091] dump_stack+0x1c/0x28 [ 6624.626038][ T7091] should_fail_ex+0x570/0x6e0 [ 6624.626269][ T7091] should_failslab+0xb8/0xec [ 6624.626501][ T7091] kmem_cache_alloc_noprof+0x84/0x5a8 [ 6624.626799][ T7091] security_inode_alloc+0x3c/0x354 [ 6624.627081][ T7091] inode_init_always_gfp+0xb48/0xfd4 [ 6624.627359][ T7091] alloc_inode+0x98/0x23c [ 6624.627640][ T7091] new_inode+0x2c/0x1c4 [ 6624.627932][ T7091] __debugfs_create_file+0x15c/0x5dc [ 6624.628199][ T7091] debugfs_create_file_full+0x58/0x70 [ 6624.628463][ T7091] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6624.628767][ T7091] kvm_dev_ioctl+0x974/0x13e0 [ 6624.629038][ T7091] __arm64_sys_ioctl+0x18c/0x244 [ 6624.629269][ T7091] invoke_syscall+0x90/0x238 [ 6624.629567][ T7091] el0_svc_common+0x180/0x2f4 [ 6624.629865][ T7091] do_el0_svc+0x58/0x74 [ 6624.630138][ T7091] el0_svc+0x5c/0x234 [ 6624.630419][ T7091] el0t_64_sync_handler+0x84/0x12c [ 6624.630731][ T7091] el0t_64_sync+0x198/0x19c [ 6624.744541][ T7091] debugfs: out of free dentries, can not create file 'halt_attempted_poll' [ 6652.215351][ T7111] FAULT_INJECTION: forcing a failure. [ 6652.215351][ T7111] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 6652.234378][ T7111] CPU: 0 UID: 0 PID: 7111 Comm: syz.0.1185 Not tainted syzkaller #0 PREEMPT [ 6652.234789][ T7111] Hardware name: linux,dummy-virt (DT) [ 6652.234899][ T7111] Call trace: [ 6652.234976][ T7111] show_stack+0x2c/0x3c (C) [ 6652.235321][ T7111] __dump_stack+0x30/0x40 [ 6652.235526][ T7111] dump_stack_lvl+0xd8/0x12c [ 6652.235734][ T7111] dump_stack+0x1c/0x28 [ 6652.235924][ T7111] should_fail_ex+0x570/0x6e0 [ 6652.236145][ T7111] should_fail_alloc_page+0xd4/0xd8 [ 6652.236362][ T7111] prepare_alloc_pages+0x20c/0x5e0 [ 6652.236676][ T7111] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6652.236972][ T7111] alloc_pages_mpol+0x204/0x4c8 [ 6652.237287][ T7111] alloc_pages_noprof+0x104/0x2ec [ 6652.237584][ T7111] get_free_pages_noprof+0x1c/0xc4 [ 6652.237797][ T7111] selinux_genfs_get_sid+0x70/0x2c0 [ 6652.237999][ T7111] inode_doinit_with_dentry+0x754/0xb7c [ 6652.238297][ T7111] selinux_d_instantiate+0x30/0x48 [ 6652.238554][ T7111] security_d_instantiate+0xf8/0x1fc [ 6652.238808][ T7111] d_instantiate+0x68/0xb8 [ 6652.239060][ T7111] __debugfs_create_file+0x2ac/0x5dc [ 6652.239319][ T7111] debugfs_create_file_full+0x58/0x70 [ 6652.239601][ T7111] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6652.239869][ T7111] kvm_dev_ioctl+0x974/0x13e0 [ 6652.240118][ T7111] __arm64_sys_ioctl+0x18c/0x244 [ 6652.240331][ T7111] invoke_syscall+0x90/0x238 [ 6652.240631][ T7111] el0_svc_common+0x180/0x2f4 [ 6652.240907][ T7111] do_el0_svc+0x58/0x74 [ 6652.241210][ T7111] el0_svc+0x5c/0x234 [ 6652.241508][ T7111] el0t_64_sync_handler+0x84/0x12c [ 6652.241825][ T7111] el0t_64_sync+0x198/0x19c [ 6671.298608][ T7121] kvm [7121]: Failed to find VMA for hva 0x20c01000 [ 6733.322429][ T7164] kvm [7164]: Failed to find VMA for hva 0x20c01000 [ 6752.888839][ T6203] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6754.490238][ T6203] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6756.008516][ T6203] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6757.217088][ T6203] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6773.798580][ T6203] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6774.078322][ T6203] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6774.236439][ T6203] bond0 (unregistering): Released all slaves [ 6776.755322][ T6203] hsr_slave_0: left promiscuous mode [ 6776.877214][ T6203] hsr_slave_1: left promiscuous mode [ 6777.674874][ T6203] veth1_macvtap: left promiscuous mode [ 6777.677788][ T6203] veth0_macvtap: left promiscuous mode [ 6777.706255][ T6203] veth1_vlan: left promiscuous mode [ 6777.744702][ T6203] veth0_vlan: left promiscuous mode [ 6844.318130][ T7172] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6844.531798][ T7172] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6874.812221][ T7172] hsr_slave_0: entered promiscuous mode [ 6874.891195][ T7172] hsr_slave_1: entered promiscuous mode [ 6895.281938][ T7172] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 6895.711896][ T7172] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 6896.140899][ T7172] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 6896.402548][ T7172] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 6922.960610][ T7172] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7004.821088][ T7172] veth0_vlan: entered promiscuous mode [ 7005.498846][ T7172] veth1_vlan: entered promiscuous mode [ 7007.569895][ T7172] veth0_macvtap: entered promiscuous mode [ 7007.895084][ T7172] veth1_macvtap: entered promiscuous mode [ 7009.863992][ T6203] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7009.869559][ T6203] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7009.878737][ T6203] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7009.954824][ T6203] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7040.336738][ T6203] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7041.862298][ T6203] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7043.259497][ T6203] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7044.786277][ T6203] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7055.826939][ T7423] kvm [7422]: Unsupported guest access at: eeef0000 [ 7055.826939][ T7423] { Op0( 2), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 7060.268606][ T6203] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7060.479037][ T6203] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7060.626939][ T6203] bond0 (unregistering): Released all slaves [ 7062.616714][ T6203] hsr_slave_0: left promiscuous mode [ 7062.735134][ T6203] hsr_slave_1: left promiscuous mode [ 7063.335574][ T6203] veth1_macvtap: left promiscuous mode [ 7063.339030][ T6203] veth0_macvtap: left promiscuous mode [ 7063.381073][ T6203] veth1_vlan: left promiscuous mode [ 7063.406463][ T6203] veth0_vlan: left promiscuous mode [ 7135.585497][ T7410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7135.960644][ T7410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7166.410628][ T7410] hsr_slave_0: entered promiscuous mode [ 7166.468689][ T7410] hsr_slave_1: entered promiscuous mode [ 7166.502209][ T7410] debugfs: 'hsr0' already exists in 'hsr' [ 7166.514470][ T7410] Cannot create hsr debugfs directory [ 7187.630327][ T7410] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 7188.154755][ T7410] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 7188.677224][ T7410] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 7189.164277][ T7410] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 7217.126278][ T7410] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7305.308398][ T7410] veth0_vlan: entered promiscuous mode [ 7306.025490][ T7410] veth1_vlan: entered promiscuous mode [ 7308.396618][ T7410] veth0_macvtap: entered promiscuous mode [ 7308.861603][ T7410] veth1_macvtap: entered promiscuous mode [ 7311.934921][ T6850] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7311.946062][ T6850] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7311.980669][ T6850] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7311.995514][ T6850] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7390.088216][ T7678] kvm [7678]: Failed to find VMA for hva 0x21016000 [ 7639.487828][ T7848] kvm [7848]: Failed to find VMA for hva 0x20c01000 [ 8250.002238][ T8256] kvm [8256]: Failed to find VMA for hva 0x20c01000 [ 8371.692194][ T8338] kvm [8338]: Failed to find VMA for hva 0x21016000 [ 8376.508194][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8376.598992][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8376.715221][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8376.730868][ T8341] kvm [8341]: Failed to find VMA for hva 0x20c01000 [ 8376.769671][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8376.830868][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8376.960454][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.055533][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.114512][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.159728][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.269390][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.328908][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.427098][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.458358][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.490800][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.528000][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.581690][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.640811][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.769057][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.788605][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8377.820771][ T8340] kvm [8340]: Failed to find VMA for hva 0x20c01000 [ 8401.402057][ T8353] kvm [8353]: Failed to find VMA for hva 0x21016000 [ 8424.900637][ T8367] kvm [8367]: Failed to find VMA for hva 0x21016000 [ 8604.157082][ T8491] kvm [8491]: Failed to find VMA for hva 0x21016000 [ 8971.085667][ T8738] kvm [8738]: Failed to find VMA for hva 0x21016000 [ 9053.748067][ T8786] kvm [8786]: Failed to find VMA for hva 0x20c01000 [ 9097.748726][ T8816] kvm [8816]: Failed to find VMA for hva 0x21016000 [ 9255.288288][ T8924] kvm [8924]: Failed to find VMA for hva 0x21016000 [ 9403.188088][ T9006] kvm [9005]: Unsupported guest access at: eeef0000 [ 9403.188088][ T9006] { Op0( 2), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9412.060338][ T9014] kvm [9013]: Unsupported guest access at: eeef0000 [ 9412.060338][ T9014] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 9553.535563][ T9098] kvm [9098]: Failed to find VMA for hva 0x21016000 [ 9902.696933][ T9343] kvm [9343]: Failed to find VMA for hva 0x21016000 [ 9902.816252][ T9343] kvm [9343]: Failed to find VMA for hva 0x21016000 [ 9902.878115][ T9343] kvm [9343]: Failed to find VMA for hva 0x21016000 [ 9903.039212][ T9343] kvm [9343]: Failed to find VMA for hva 0x21016000 [ 9903.207498][ T9343] kvm [9343]: Failed to find VMA for hva 0x21016000 [10272.268382][ T9554] kvm [9554]: Failed to find VMA for hva 0x21016000 [10315.556124][ T9586] kvm [9586]: Failed to find VMA for hva 0x20d8d000 [10596.886467][ T9787] kvm [9787]: Failed to find VMA for hva 0x21016000 [10681.548224][ T25] audit: type=1400 audit(10680.750:113): avc: denied { execute } for pid=9843 comm="syz.0.1971" path=2F3335302FFF67521CD66F8F1F447D3570707CD24B7EEBB207 dev="tmpfs" ino=1782 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [10866.220899][ T9959] Unable to handle kernel paging request at virtual address ffef800000000001 [10866.324943][ T9959] KASAN: maybe wild-memory-access in range [0xff00000000000010-0xff0000000000001f] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [10866.404529][ T9959] Mem abort info: [10866.407460][ T25] audit: type=1400 audit(10865.620:114): avc: denied { read } for pid=3124 comm="syslogd" name="log" dev="vda" ino=1857 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [10866.434845][ T9959] ESR = 0x0000000096000004 [10866.445100][ T25] audit: type=1400 audit(10865.670:115): avc: denied { search } for pid=3124 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [10866.464017][ T9959] EC = 0x25: DABT (current EL), IL = 32 bits [10866.464802][ T9959] SET = 0, FnV = 0 [10866.465191][ T9959] EA = 0, S1PTW = 0 [10866.465543][ T9959] FSC = 0x04: level 0 translation fault [10866.465945][ T9959] Data abort info: [10866.466253][ T9959] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [10866.466633][ T9959] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [10866.467008][ T9959] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [10866.467509][ T9959] [ffef800000000001] address between user and kernel address ranges [10866.469266][ T9959] Internal error: Oops: 0000000096000004 [#1] SMP [10866.477853][ T9959] Modules linked in: [10866.479002][ T9959] CPU: 0 UID: 0 PID: 9959 Comm: syz.1.2007 Not tainted syzkaller #0 PREEMPT [10866.480269][ T9959] Hardware name: linux,dummy-virt (DT) [10866.481271][ T9959] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [10866.482500][ T9959] pc : vgic_its_save_tables_v0+0x3b0/0xe38 [10866.483630][ T9959] lr : vgic_its_save_tables_v0+0x308/0xe38 [10866.484573][ T9959] sp : ffff80008ec67bf0 [10866.485306][ T9959] x29: ffff80008ec67c70 x28: e9f000001fa930f0 x27: 0000000000000000 [10866.486854][ T9959] x26: 000000000000001e x25: 14f00000210f2180 x24: b7f0000021828980 [10866.488175][ T9959] x23: e9f000001fa93038 x22: b9070000c0000600 x21: d9f0000021828ec0 [10866.489533][ T9959] x20: 68f0000021828950 x19: efff800000000000 x18: 00000000856f9f28 [10866.490789][ T9959] x17: 000000000000000e x16: ffff800080011d9c x15: 0000000020000300 [10866.492129][ T9959] x14: 0000000000000002 x13: fff0000020ab3b88 x12: 0ff0000000000001 [10866.493436][ T9959] x11: 0000000000000010 x10: 0000000000002000 x9 : 0000000000000000 [10866.494827][ T9959] x8 : 0001000000000000 x7 : ffff80008024c570 x6 : 0000000000000000 [10866.496112][ T9959] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800080166870 [10866.497462][ T9959] x2 : 0ff0000021828b80 x1 : 0000000000000000 x0 : 0000000000000000 [10866.498821][ T9959] Call trace: [10866.499519][ T9959] vgic_its_save_tables_v0+0x3b0/0xe38 (P) [10866.500495][ T9959] vgic_its_set_attr+0x65c/0x860 [10866.501342][ T9959] kvm_device_ioctl+0x354/0x418 [10866.502233][ T9959] __arm64_sys_ioctl+0x18c/0x244 [10866.503103][ T9959] invoke_syscall+0x90/0x238 [10866.503991][ T9959] el0_svc_common+0x180/0x2f4 [10866.504906][ T9959] do_el0_svc+0x58/0x74 [10866.505801][ T9959] el0_svc+0x5c/0x234 [10866.506658][ T9959] el0t_64_sync_handler+0x84/0x12c [10866.507605][ T9959] el0t_64_sync+0x198/0x19c [10866.508845][ T9959] Code: 9100412b b2481d69 d344fd2c d378fd69 (386c6a6c) [10866.510655][ T9959] ---[ end trace 0000000000000000 ]--- [10866.512112][ T9959] Kernel panic - not syncing: Oops: Fatal exception [10866.513973][ T9959] Kernel Offset: disabled [10866.514656][ T9959] CPU features: 0x000000,00034600,bef8cfa1,057ffe1f [10866.515727][ T9959] Memory Limit: none [10866.517367][ T9959] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:03:38 Registers: info registers vcpu 0 CPU#0 PC=ffff8000803ebcd4 X00=fff0000072d6be00 X01=29f0000017278c00 X02=0000000000000001 X03=ffff8000803c6a20 X04=00000000000000ff X05=0000000002adbe61 X06=fff0000072d6be90 X07=ffff800080396d84 X08=d6f00000125ba830 X09=00000000000000d6 X10=eef000001e316c38 X11=00000000000000ee X12=00000000000000ee X13=000001d9dc02aa45 X14=00000000000aae60 X15=00000000000aae60 X16=00000000000000d6 X17=0000000012a0a533 X18=d6f00000125ba810 X19=efff800000000000 X20=29f0000017278ca8 X21=00000000000000ff X22=0000000000000009 X23=0000000000000029 X24=0000000000000009 X25=97f0000015fe0068 X26=0000000000000009 X27=0000000000000097 X28=97f0000015fe0068 X29=ffff80008c5c7010 X30=ffff80008038dee0 SP=ffff80008c5c6fb0 PSTATE=604020c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0800000000000000:0800000000000000 Z01=0000000800000000:0000000000000000 Z02=0000000000000008:0000000000000000 Z03=00d000a800000000:0000000000000000 Z04=0000000000000000:0000000000000002 Z05=0000000000000008:0000000000000002 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffc754dc90:0000ffffc754dc90 Z17=ffffff80ffffffd0:0000ffffc754dc60 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000