last executing test programs: 48m49.412416427s ago: executing program 1 (id=258): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000280)={0x8}) (async) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000200)={0x8000000, 0x0, 0x0, 0x1}) (async) ioctl$KVM_CAP_ARM_MTE(r1, 0x4068aea3, &(0x7f0000000180)) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r5, 0x4010aeab, &(0x7f0000000100)=@arm64_sys={0x603000000013c000}) (async) r6 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r7 = ioctl$KVM_GET_STATS_FD_vm(r6, 0xaece) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) (async) ioctl$KVM_SET_ONE_REG(r10, 0x4010aeac, &(0x7f0000000040)=@arm64_sys={0x603000000013c000, &(0x7f0000000000)=0xc00fac31}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r13, 0x400454d8, 0x1000000008) (async) ioctl$KVM_ARM_SET_DEVICE_ADDR(r7, 0x4010aeab, &(0x7f0000000000)={0x7fffffff, 0xffffffff}) 48m48.750702991s ago: executing program 0 (id=259): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000000)=@x86={0x0, 0x8, 0x2, 0x0, 0xa0, 0xf9, 0xfb, 0xc5, 0x7c, 0xa, 0xf, 0x1, 0x0, 0xfe4, 0x7, 0xfa, 0x2, 0x81, 0xf2, '\x00', 0x5, 0xe8}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0xc, 0x2, 0x1, 0x0, @msi={0xebb, 0x394c794c, 0x7f, 0x800}}]}) close(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_RUN(r7, 0xc018ae85, 0xf0ff1f00000000) 48m38.374702069s ago: executing program 0 (id=260): mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000417000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000000000/0x400000)=nil) ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, &(0x7f0000000100)) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000240)="37e68986ad644f5dc57bbc1ff382863b67f3eee57a32ec911d95f88f3dd8ea716e4a29cefbd440b2ecf83f57baf33b0c97182970a47ef45c954e42f2055384921830f6e273d2eb30", 0x0, 0x2a2019ac5ed2a1ef) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x20200, 0x0) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r6 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000180)="0519daac2cf01a921b6e4b842cb88eb135d508ef287dcefa1c061c36f6cc60913b442d82d6c70313e74834dd46c4cf5e4925023f6da4c93ec0eae38c53f18d9131141e15990f8870", 0x0, 0x48) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000000)=@attr_other={0x0, 0x6, 0x100382bc664, &(0x7f0000000140)=0x1}) mmap$KVM_VCPU(&(0x7f0000000000/0xc00000)=nil, 0x930, 0xf, 0x32, 0xffffffffffffffff, 0x0) eventfd2(0x1, 0x801) close(r3) 48m36.570823466s ago: executing program 1 (id=261): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1a) r1 = eventfd2(0xd, 0x1) close(r1) write$eventfd(r1, 0x0, 0x500) ioctl$KVM_IRQFD(r0, 0x4020ae76, &(0x7f0000000140)={r1, 0xd7, 0x0, r1}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xfffe) r4 = openat$kvm(0x0, &(0x7f0000000000), 0x48000, 0x0) openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x29) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000080)={0x0, &(0x7f0000000e00)=[@svc={0x122, 0x40, {0x200, [0x60f9, 0x7, 0x7, 0x8001, 0x5]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x2, 0x5, 0xfffffffa, 0x8, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x3, 0x7, 0xe7fb, 0x7, 0x2}}, @svc={0x122, 0x40, {0x80000002, [0xd490, 0x5cd9, 0x2, 0x3, 0x4]}}, @msr={0x14, 0x20, {0x603000000013deec, 0xffffffff}}, @smc={0x1e, 0x40, {0x8400000f, [0x8, 0x4, 0x200, 0x8000000000000001, 0x9]}}, @mrs={0xbe, 0x18, {0x603000000013df51}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x7fff}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x3a}}, @eret={0xe6, 0x18, 0xffff}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0xf, 0x8, 0x5, 0x3}}, @irq_setup={0x46, 0x18, {0x4, 0x169}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x14, 0x865, 0x6}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x0, 0x10, 0x4, 0x47f8, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e6c4}}, @irq_setup={0x46, 0x18, {0x0, 0x2c7}}, @smc={0x1e, 0x40, {0x40, [0x40000fffffffe, 0x2, 0xb, 0x9, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013c101}}, @msr={0x14, 0x20, {0x6030000000138027, 0xf}}, @hvc={0x32, 0x40, {0x8400000b, [0xa00, 0x40, 0x10001, 0x9, 0x401]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x5, 0x2}}, @msr={0x14, 0x20, {0x603000000013e6c2, 0x344c}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x28f}}, @eret={0xe6, 0x18, 0x5}, @uexit={0x0, 0x18, 0x4}, @msr={0x14, 0x20, {0x603000000013deb8, 0x1}}, @smc={0x1e, 0x40, {0x4017, [0x3, 0x26, 0x6, 0x100000000000000, 0xc99]}}, @irq_setup={0x46, 0x18, {0x4, 0xcc}}], 0x470}, 0x0, 0x0) r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000200)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1800, 0x9, 0x1}}, @uexit={0x0, 0x18, 0xcd62}, @irq_setup={0x46, 0x18, {0x3, 0x2d1}}, @mrs={0xbe, 0x18, {0x603000000013e6c8}}, @uexit={0x0, 0x18, 0x7}, @hvc={0x32, 0x40, {0x86000001, [0x1, 0xd0, 0x800, 0x5, 0x5]}}, @smc={0x1e, 0x40, {0xc4000005, [0x1, 0x4b9c, 0xdc000, 0xfffffffffffff191, 0x4]}}, @smc={0x1e, 0x40, {0xc5000020, [0x6, 0x8, 0x2743, 0x7, 0x8]}}, @mrs={0xbe, 0x18, {0x603000000013e719}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x380, 0x7ff, 0xe}}, @smc={0x1e, 0x40, {0x84000006, [0x4, 0x7, 0x8, 0x7fffffffffffffff]}}, @msr={0x14, 0x20, {0x603000000013d920, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x3, 0x4, 0xffff8001, 0x10, 0x4}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x2c9}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x1408, 0x400009, 0xd}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x1, 0x3, 0x7, 0x3, 0xd7bc, 0x4}}, @svc={0x122, 0x40, {0x86000001, [0xffffffffffffffff, 0xfffffffffffffffe, 0x80, 0x1, 0x3009]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x4, 0x6}}, @irq_setup={0x46, 0x18, {0x1, 0x391}}, @code={0xa, 0x6c, {"007008d50004807800000052e09f9fd200c0b0f2410080d2a20180d2430180d2440080d2020000d4000028d5205c82d20060b0f2210180d2e20080d2a30080d2040080d2020000d40040e00d000008d500b8212ee00300da"}}, @svc={0x122, 0x40, {0x5000000, [0x5, 0x6, 0x7, 0x5]}}, @hvc={0x32, 0x40, {0x84000054, [0x2, 0x100, 0x1, 0x2, 0x4]}}, @code={0xa, 0x9c, {"20289dd200e0b8f2010080d2a20080d2e30080d2440180d2020000d40064200e00a8212e00a4c00d0080c0c8800f86d200c0b8f2010080d2e20180d2230180d2240080d2020000d480439ad20000b0f2210180d2820180d2630180d2240080d2020000d440fc88d200a0b0f2a10080d2220080d2a30080d2640180d2020000d4000040ad0048201e"}}, @smc={0x1e, 0x40, {0xc5000021, [0x0, 0x2, 0x5, 0x4, 0x3]}}, @mrs={0xbe, 0x18, {0x603000000013c664}}, @eret={0xe6, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013e092}}, @irq_setup={0x46, 0x18, {0x2, 0x361}}, @svc={0x122, 0x40, {0x0, [0x9, 0x6, 0x89d, 0x8, 0xfffffffffffffffd]}}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x3c3}}, @uexit={0x0, 0x18, 0x2f07}], 0x5d0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r7, 0x2, 0x100) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r7, 0x4008ae61, &(0x7f0000000180)={0x1010020, 0x1}) r11 = eventfd2(0x1, 0x801) r12 = eventfd2(0xff, 0x80000) ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f00000001c0)={r11, 0x3, 0x2, r12}) ioctl$KVM_RUN(r10, 0xae80, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r13, 0x4018aee2, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r13, 0x4018aee2, &(0x7f0000000280)=@attr_pmu_init) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0xfffffffffffffffd) 48m18.089756352s ago: executing program 0 (id=262): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x20000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r6 = syz_kvm_vgic_v3_setup(r3, 0x1, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000240)=@attr_other={0x0, 0x1, 0x304, &(0x7f00000000c0)=0xffff}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0xfffffffffffffff7, 0x0}) 48m16.493618016s ago: executing program 1 (id=263): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x163800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x7e) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x8}) (async) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1000000000000001, 0x28e}}], 0x28}, 0x0, 0x0) (async) r9 = syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) ioctl$KVM_RUN(r8, 0xae80, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x5, 0x0, &(0x7f0000000000)=0x8}) (async) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a13c0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r12, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) r13 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (rerun: 32) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x21) r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000180)={0x0, &(0x7f0000000600)=[@msr={0x14, 0x20, {0x6030000000138084, 0x3ff}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x1000002, 0x80031, 0xffffffffffffffff, 0x0) (async, rerun: 64) mmap$KVM_VCPU(&(0x7f0000c58000/0x1000)=nil, r10, 0x2000003, 0xaf832, 0xffffffffffffffff, 0x0) (rerun: 64) 48m8.028197208s ago: executing program 0 (id=264): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x28) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x20) r2 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2b) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x5) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0) openat$kvm(0x0, &(0x7f0000000140), 0x3c003, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b5b000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=[@hvc={0x32, 0x40, {0x84000007, [0x8, 0x10000, 0x7, 0x3, 0x8]}}], 0x40}, 0x0, 0x0) r12 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, r5, 0x2, 0x100010, r4, 0x0) mmap$KVM_VCPU(&(0x7f0000010000/0x4000)=nil, r5, 0x100000a, 0x12, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r12, 0x20, &(0x7f00000001c0)="fb016b03002e5ee42ec6a29ea6ab8000000004ef0000c20cecf80a97ab78000000040000000000000000409700000000ffffffff00000000a0eb00df00", 0x0, 0xffffffffffffff69) mmap$KVM_VCPU(&(0x7f0000010000/0x1000)=nil, 0x930, 0x100000f, 0x9032, 0xffffffffffffffff, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CHECK_EXTENSION(r8, 0xae03, 0x401) syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000040)={0x5}) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) 48m2.373951697s ago: executing program 1 (id=265): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_DEVICE_ATTR_vm(r1, 0x4018aee2, &(0x7f0000000040)=@attr_other={0x0, 0x7fff, 0x5, &(0x7f0000000000)=0xb}) r2 = ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x800014) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0x59) (async) ioctl$KVM_CHECK_EXTENSION(r5, 0xae03, 0x59) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) (async) r6 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000003, 0x12, r6, 0x200001fe0000) close(r2) 47m54.781384111s ago: executing program 0 (id=266): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x4eed40, 0x0) openat$kvm(0x0, 0x0, 0x80, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(0x0, 0x20, &(0x7f0000000240)="57ffe02b199233af1c100f993e9c1541d69a2077275a13cf", 0x0, 0x18) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x1}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0xfdef) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x40000000000001, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x80000, 0x10007, 0x0, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000240)=0x8080000}) eventfd2(0x0, 0x80001) ioctl$KVM_RUN(r6, 0xae80, 0x0) 47m53.400002881s ago: executing program 1 (id=267): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) close(r2) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_ARM_PREFERRED_TARGET(r3, 0x8020aeaf, &(0x7f0000000000)) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000011000/0x3000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x810, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x0, 0x23ac5f9b426e84b2, 0xffffffffffffffff, 0x0) 47m44.178059801s ago: executing program 0 (id=268): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8e02, 0x0) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x6030000000138010}}], 0x18}, 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r9, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async) syz_kvm_assert_syzos_uexit$arm64(r7, 0x0, 0xffffffffffffffff) 47m43.972429295s ago: executing program 1 (id=269): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x5}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0x2400, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) ioctl$KVM_CREATE_VM(r6, 0x400454ce, 0x20000000000f) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r7, 0x0, 0x260) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000100)={0x2710, 0x4, 0xddd73002, 0x1000, &(0x7f0000e0e000/0x1000)=nil}) r11 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r13, 0xae03, 0xc27) r14 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f0000000280)=0x19}) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r16, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f00000002c0)=0x9}) ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f00000001c0)) 46m57.131725859s ago: executing program 32 (id=268): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8e02, 0x0) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x6030000000138010}}], 0x18}, 0x0, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, r9, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) (async) syz_kvm_assert_syzos_uexit$arm64(r7, 0x0, 0xffffffffffffffff) 46m52.213061738s ago: executing program 33 (id=269): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x5}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500), 0x2400, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) ioctl$KVM_CREATE_VM(r6, 0x400454ce, 0x20000000000f) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r7, 0x0, 0x260) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000100)={0x2710, 0x4, 0xddd73002, 0x1000, &(0x7f0000e0e000/0x1000)=nil}) r11 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r12 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r13, 0xae03, 0xc27) r14 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r15 = syz_kvm_setup_syzos_vm$arm64(r14, &(0x7f0000c00000/0x400000)=nil) r16 = syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000180)={0x0, 0x0}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f0000000280)=0x19}) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r16, 0x4018aee1, &(0x7f00000011c0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f00000002c0)=0x9}) ioctl$KVM_CAP_HALT_POLL(r1, 0x4068aea3, &(0x7f00000001c0)) 25m46.86011373s ago: executing program 3 (id=385): ioctl$KVM_S390_VCPU_FAULT(0xffffffffffffffff, 0x4008ae52, &(0x7f0000000000)=0x8) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000200)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x100, [0x3, 0x6, 0xf, 0x7, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0x4, 0x2, 0x78, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x4, 0xe, 0xc4, 0xc, 0x3}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x1f7}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x3, 0xc, 0x1, 0x4, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013dce4}}, @mrs={0xbe, 0x18, {0x603000000013df66}}, @eret={0xe6, 0x18, 0xf2c}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x9022, 0x4}}, @hvc={0x32, 0x40, {0x80000002, [0x1540606f, 0x6, 0x7fff, 0xffff, 0x9]}}, @msr={0x14, 0x20, {0x6030000000138067, 0x6a5c}}], 0x1b8}, &(0x7f0000000240)=[@featur2={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x13) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000280)={0x1000, 0x4, 0x2}}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r1, 0x4018aee1, &(0x7f0000000340)=@attr_irq_timer={0x0, 0x1, 0x0, &(0x7f0000000300)=0x14}) ioctl$KVM_GET_DEVICE_ATTR_vm(r2, 0x4018aee2, &(0x7f00000003c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000380)={0x4, 0x1}}) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r3, 0xae03, 0x800) ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000400)) ioctl$KVM_SET_GUEST_DEBUG_arm64(r1, 0x4208ae9b, &(0x7f0000000440)={0x20002, 0x0, {[0x3, 0xd, 0x100000001, 0x1, 0x6, 0x6, 0x3, 0x8, 0x3b3, 0x3ff, 0x315, 0x8, 0x80, 0x0, 0x9, 0x2], [0xd9, 0x8000, 0x1, 0x2, 0x7, 0x100000000, 0x200, 0xffffffffffff8000, 0x448, 0x2, 0xc, 0x8b, 0x617, 0x8, 0x5, 0x1ff], [0x0, 0xfff, 0xee0f000000000000, 0xe14, 0x71e48fb3, 0x4, 0xffffffff00000000, 0x7, 0x8, 0xb, 0x5, 0x516, 0x8, 0x0, 0xd, 0x9], [0x7f, 0x9e, 0x2, 0x1, 0x4, 0x8, 0x7fff, 0x1, 0x8, 0x400, 0x7fffffffffffffff, 0x8, 0x6, 0x2, 0x100, 0x4f5]}}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r1, 0x4018aee1, &(0x7f00000006c0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000680)=0x9}) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x26) syz_kvm_vgic_v3_setup(r4, 0x4, 0xc0) r5 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000874000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000a00)={0x0, &(0x7f0000000700)=[@mrs={0xbe, 0x18, {0x603000000013e667}}, @msr={0x14, 0x20, {0x603000000013def7, 0xfffffffffffffffc}}, @irq_setup={0x46, 0x18, {0x3, 0x320}}, @code={0xa, 0x54, {"007008d5000008d500f4000f000008d560b592d20040b8f2410080d2c20180d2c30080d2440080d2020000d4000040b30000601e0060600d0078207e000000f1"}}, @eret={0xe6, 0x18, 0x3}, @irq_setup={0x46, 0x18, {0x4, 0xb0}}, @hvc={0x32, 0x40, {0xc4000003, [0x7, 0xffff, 0x2, 0x1e, 0x80]}}, @uexit={0x0, 0x18}, @its_setup={0x82, 0x28, {0x3, 0x1, 0x1c6}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x88, 0x9, 0xa}}, @mrs={0xbe, 0x18, {0x60300000001383f6}}, @uexit={0x0, 0x18, 0x8}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff4, 0x3, 0x7}}, @msr={0x14, 0x20, {0x603000000013df11}}, @hvc={0x32, 0x40, {0xc5000020, [0x400, 0x4, 0x10, 0x3ff, 0x9]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0xd4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x6000, 0xfff, 0xd}}, @smc={0x1e, 0x40, {0xc4000004, [0x1, 0x7b30, 0x7f5c, 0x2, 0x9]}}], 0x2dc}, &(0x7f0000000a40), 0x1) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r1, 0x4018aee2, &(0x7f0000000ac0)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000a80)}) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_MP_STATE(r7, 0x8004ae98, &(0x7f0000000b00)) ioctl$KVM_GET_REGS(r6, 0x8360ae81, &(0x7f0000000b40)) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000bff000/0x400000)=nil) ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000c00)={[0x6c0, 0x0, 0x8000, 0x314c, 0x6, 0x1000, 0x7f, 0x9, 0x7fff, 0x9, 0x9, 0x1, 0x8, 0x8000, 0x7f, 0x2], 0x2, 0x40000}) munmap(&(0x7f0000ae3000/0x4000)=nil, 0x4000) syz_kvm_add_vcpu$arm64(r0, &(0x7f0000001340)={0x0, &(0x7f0000000cc0)=[@irq_setup={0x46, 0x18, {0x0, 0x3d8}}, @code={0xa, 0x6c, {"007008d500bc8ed20080b0f2c10080d2220180d2030180d2040080d2020000d4008008d500000033000000d80080ff0d008008d500d68ad20040b8f2610080d2020180d2c30080d2640080d2020000d4000008d5007008d5"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x300, 0x8, 0x1}}, @eret={0xe6, 0x18, 0xff}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x4, 0xb, 0x9c2, 0x1, 0x3}}, @memwrite={0x6e, 0x30, @generic={0x26000, 0xab8, 0x2, 0x8}}, @hvc={0x32, 0x40, {0x8400000d, [0x5, 0x1ff, 0x7, 0x7, 0x4]}}, @irq_setup={0x46, 0x18, {0x2, 0x3ce}}, @code={0xa, 0x84, {"000000110090204e20aa99d20040b0f2410080d2620180d2230180d2640180d2020000d4000c403c007008d5a02c9ad200a0b8f2810180d2820180d2630180d2e40180d2020000d4007008d5408f9ed20020b8f2c10080d2420180d2c30180d2e40180d2020000d4007008d5007008d5"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x10, 0x1, 0x8}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x4, 0x10, 0x7f, 0x6c6}}, @mrs={0xbe, 0x18, {0x6030000000138044}}, @memwrite={0x6e, 0x30, @generic={0x1d5d6b000, 0x31e, 0x3, 0x18}}, @svc={0x122, 0x40, {0xc400000d, [0x1, 0x6, 0x5, 0x80, 0x8]}}, @msr={0x14, 0x20, {0x603000000013de95, 0x9}}, @uexit={0x0, 0x18, 0xfffffffffffffffb}, @its_setup={0x82, 0x28, {0x0, 0x0, 0x2ad}}, @hvc={0x32, 0x40, {0x80000000, [0x0, 0xd3d6, 0x4, 0x0, 0x81f]}}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x335}}, @uexit={0x0, 0x18, 0xfffffffffffffff9}, @smc={0x1e, 0x40, {0x2, [0x1, 0xff, 0x9, 0x6, 0x400]}}, @svc={0x122, 0x40, {0x30000000, [0x100, 0x5, 0x3, 0x5, 0x7fff]}}, @smc={0x1e, 0x40, {0xc4000004, [0xc6bb, 0x40, 0xfffffffffffffffe, 0x5, 0x195]}}, @eret={0xe6, 0x18, 0xfffffffffffffffb}, @hvc={0x32, 0x40, {0xc4000053, [0x6, 0x4, 0xfffffffffffffff8, 0xffffffffffffff01, 0x3]}}, @eret={0xe6, 0x18, 0xfffffffffffffffa}, @uexit={0x0, 0x18, 0x1}, @code={0xa, 0x84, {"804594d200a0b0f2e10080d2820080d2a30080d2c40180d2020000d40078205e000028d5606395d20080b8f2610080d2e20080d2a30180d2240080d2020000d4000028d5007008d500a8217e00000033a09f84d20080b0f2a10180d2a20080d2430080d2440180d2020000d400c8212e"}}, @eret={0xe6, 0x18, 0x2}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x2, 0xf, 0x9, 0x9}}, @code={0xa, 0x84, {"0000c03d008008d500e4a02e00c0000f5f2003d50000406c601084d200c0b0f2e10080d2420180d2830080d2440080d2020000d4002a9dd200c0b0f2010180d2620180d2030080d2440180d2020000d4007008d5003593d200c0b8f2e10080d2420180d2430180d2840180d2020000d4"}}], 0x650}, &(0x7f0000001380)=[@featur2={0x1, 0x10}], 0x1) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f00000013c0)={0x9, 0xffffffffffffffff, 0x1}) 25m44.91882226s ago: executing program 2 (id=386): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2b) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000200)={0x1, 0x6000, 0x4}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000200)={0x1, 0x6000, 0x4}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)={0x4000, 0x3000, 0x1}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x3000, 0x1000, 0x1}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x3000, 0x1000, 0x1}) openat$kvm(0x0, &(0x7f00000001c0), 0x4080, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f00000001c0), 0x4080, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2e) (async) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2e) ioctl$KVM_CAP_HALT_POLL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000240)={0xb6, 0x0, 0x4}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r5, r6, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x2001, 0x0) r8 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r10, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r10, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000002000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x40, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) r11 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60) (async) ioctl$KVM_CREATE_IRQCHIP(r11, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f0000000140)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @msi={0x0, 0x3, 0x1, 0x2}}, {0x3, 0x1, 0x0, 0x0, @msi={0x2, 0x7, 0xb, 0x5}}]}) (async) ioctl$KVM_SET_GSI_ROUTING(r11, 0x4008ae6a, &(0x7f0000000140)={0x2, 0x0, [{0x3, 0x1, 0x0, 0x0, @msi={0x0, 0x3, 0x1, 0x2}}, {0x3, 0x1, 0x0, 0x0, @msi={0x2, 0x7, 0xb, 0x5}}]}) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) (async) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_GUEST_MEMFD(r13, 0xc040aed4, &(0x7f0000000040)={0x1000200001fe0000, 0x1}) ioctl$KVM_SET_USER_MEMORY_REGION2(r13, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0x2000, &(0x7f0000ffc000/0x2000)=nil, 0x100000000000000, r14}) close(r13) (async) close(r13) 25m38.14250751s ago: executing program 3 (id=387): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 64) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) (rerun: 64) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) (async) r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) (async) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r8, 0x1, 0x100) (async) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000180)={0x8}) ioctl$KVM_CAP_HALT_POLL(r8, 0x4068aea3, &(0x7f0000000180)={0xb6, 0x0, 0x100000000}) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2e) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r10, r11, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x6030000000100042, &(0x7f0000000000)=0x13}) (async) r12 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x0, {0x84000053, [0x1000009, 0x8000000000000001, 0xffffffffffffffff, 0x400, 0xfffffffffffff801]}}], 0xc7}, 0x0, 0x0) ioctl$KVM_RUN(r15, 0xae80, 0x0) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r6, 0x2000003, 0x11, r5, 0x0) (async, rerun: 32) r16 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000100)={0x0, &(0x7f0000000880)=[@msr={0x14, 0x20, {0x603000000013defc, 0x5a8}}], 0x20}, 0x0, 0x0) ioctl$KVM_RUN(r16, 0xae80, 0x0) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) (rerun: 32) 25m30.558012295s ago: executing program 2 (id=388): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vm(r0, 0x4018aee3, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x7, 0x2}}) (async) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r0, 0x4068aea3, &(0x7f0000000080)={0xdf, 0x0, 0x2000}) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x0, 0x1, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000140)={0x4, 0x4, 0x58000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) (async) ioctl$KVM_CAP_HALT_POLL(r0, 0x4068aea3, &(0x7f0000000180)={0xb6, 0x0, 0x9}) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xb) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f0000000200)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f00000002c0)={0x7}) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1b) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) (async) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r3, 0x4010aeb5, &(0x7f0000000300)={0x6, 0xe}) (async) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000340)={0x0, 0x8}) (async) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x13) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil) (async) r5 = eventfd2(0x80, 0x801) (async) r6 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000540)={0x0, &(0x7f0000000380)=[@mrs={0xbe, 0x18, {0x6030000000138007}}, @smc={0x1e, 0x40, {0x84000001, [0xc, 0x4, 0x8, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013c804}}, @mrs={0xbe, 0x18, {0x603000000013c119}}, @code={0xa, 0x9c, {"602298d20060b8f2810180d2820180d2830180d2240080d2020000d40000403a80fd99d20020b0f2010080d2620080d2830180d2a40180d2020000d4e0a699d20020b0f2410080d2e20080d2e30080d2e40180d2020000d4409b9bd200c0b8f2810080d2620180d2a30180d2c40080d2020000d40000641e007008d50008a038006c202e007008d5"}}, @uexit={0x0, 0x18, 0x9}, @code={0xa, 0x84, {"207e8dd20040b8f2810080d2c20180d2830180d2e40080d2020000d4000008d560ae81d20020b0f2410180d2420080d2c30080d2c40180d2020000d4008008d5000028d5600892d200e0b8f2010180d2c20080d2a30080d2e40080d2020000d4000480da000008d50034002f0058000e"}}], 0x1c0}, &(0x7f0000000580)=[@featur1={0x1, 0x52}], 0x1) ioctl$KVM_RUN(r6, 0xae80, 0x0) (async) r7 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x4) ioctl$KVM_IRQ_LINE_STATUS(r7, 0xc008ae67, &(0x7f00000005c0)={0xffffffff, 0x3}) (async) syz_kvm_vgic_v3_setup(r7, 0x0, 0x480) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000600)={0xfec00000, 0x18000, 0x1}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async) r8 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1a) r9 = eventfd2(0x7fff, 0x0) ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f0000000640)={r5, 0x77, 0x2, r9}) r10 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x39) ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f0000000680)={r9, 0x2, 0x3, r5}) (async) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r8, 0x4068aea3, &(0x7f00000006c0)={0xdf, 0x0, 0x2000}) 25m20.881211658s ago: executing program 2 (id=389): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x29) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfe000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000180)={0x0, 0x0, 0xfffffffffffffed1}, 0x0, 0x42) syz_kvm_vgic_v3_setup(r3, 0x4, 0x80) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000040)={0x2000000, 0x8000bb28}) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000700)={0x7, 0x0}) (async) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000240)={0x200002f}) (async) r7 = eventfd2(0x2, 0x80001) write$eventfd(r7, &(0x7f0000000000)=0x8000000000000, 0x8) r8 = openat$kvm(0x0, &(0x7f0000000040), 0xe62806e7fbced34b, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) r10 = syz_kvm_vgic_v3_setup(r9, 0x4, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r10, 0x4018aee1, &(0x7f0000000000)=@attr_other={0x0, 0x6, 0x100382bc664, 0x0}) r11 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async, rerun: 64) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x100) ioctl$KVM_RUN(r12, 0xae80, 0x0) (async) ioctl$KVM_IRQ_LINE(0xffffffffffffffff, 0x4008ae61, &(0x7f0000000100)={0x1000020, 0x1}) (async, rerun: 32) ioctl$KVM_RUN(r12, 0xae80, 0x0) (rerun: 32) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) 25m15.552026652s ago: executing program 3 (id=390): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000000)=@x86={0x9, 0xe, 0x3, 0x0, 0x1b2, 0x99, 0x6, 0x9, 0x4, 0xa, 0x5, 0x0, 0x0, 0x6, 0x1, 0x11, 0x1, 0x9, 0xfb, '\x00', 0x97, 0x9}) r4 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000040)=[@its_setup={0x82, 0x28, {0x4, 0x3, 0x3ac}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r5, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0x12a00000, 0x8}}) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r12, 0x2, 0x100) close(r12) r13 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) close(r13) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x30) ioctl$KVM_RUN(r7, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) 25m4.114566891s ago: executing program 2 (id=391): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) munmap$KVM_VCPU(0x0, 0x1000000000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000040)={0x5}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) r10 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r10, 0x4040aea0, &(0x7f0000000100)=@arm64={0x4e, 0x2, 0x0, '\x00', 0x4}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r11 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000000)={0x0, 0x0}, &(0x7f00000000c0)=[@featur1={0x1, 0x5}], 0x1) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000180)={0x2}) r12 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x84000003, [0x80000000000000, 0x53960c3d, 0xac8, 0x2, 0x7fffffffffffffff]}}], 0x40}, &(0x7f00000001c0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f0000000140)=@arm64_fp={0x604000000010005c, &(0x7f0000000080)=0xe03}) 24m42.609394237s ago: executing program 3 (id=392): ioctl$KVM_CAP_PTP_KVM(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)) r0 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) syz_kvm_vgic_v3_setup(r0, 0x4, 0x40) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x109040, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f00000000c0)={0x3a, "476afbc490cfcfb849d228928fc0afdf494ca3f09ed11428cac98442c017d87a847b37c9a3ad0f54ee3e53ee4fef5f73a519feb3091d41c59594"}) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x80000000) r2 = syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000bfe000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, &(0x7f0000000100)=[@eret={0xe6, 0x18, 0x7}, @code={0xa, 0x54, {"00e78bd20060b0f2410080d2e20080d2c30180d2840080d2020000d4002c004e007008d50004000f008008d5000028d50040005e0040601e007008d5000028d5"}}, @code={0xa, 0x9c, {"a0218dd200a0b8f2a10080d2a20180d2030080d2e40180d2020000d420eb90d20060b0f2e10180d2820080d2e30180d2240180d2020000d4e0030032c0dd9bd20020b0f2210080d2620080d2c30080d2e40080d2020000d400c4202e0000719e008008d5000028d5000040b340fa9fd20020b8f2a10080d2a20180d2c30080d2840180d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0x374}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x1, 0xd, 0x3, 0xf, 0x3}}, @uexit={0x0, 0x18, 0x6c6}, @msr={0x14, 0x20, {0x603000000013808c, 0x4}}, @uexit={0x0, 0x18}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x4, 0x2, 0xe6, 0x9, 0x4}}, @msr={0x14, 0x20, {0x603000000013c01c, 0x7fffffff}}, @code={0xa, 0xcc, {"203785d20080b8f2610080d2e20180d2630180d2240080d2020000d4e0019bd20060b8f2810080d2220180d2830080d2240080d2020000d4804a9ed20060b8f2e10080d2e20080d2830180d2c40080d2020000d4007008d50000af9ee05396d200c0b8f2610080d2420080d2c30080d2e40080d2020000d4008008d5007008d540be94d20020b8f2610180d2a20080d2e30080d2040180d2020000d4206296d200a0b8f2810180d2020080d2c30180d2c40180d2020000d4"}}, @code={0xa, 0x9c, {"80c68ad20000b8f2610180d2a20180d2e30080d2c40180d2020000d4000028d5007008d5007008d50020204ee0428fd20040b0f2610080d2a20080d2630080d2840180d2020000d400fc001b5f2003d500399fd200a0b0f2410180d2820180d2430080d2a40080d2020000d440819fd200e0b8f2c10180d2a20080d2a30080d2640080d2020000d4"}}, @smc={0x1e, 0x40, {0x84000002, [0x7fffffff, 0x4, 0xa, 0x8, 0x80000000]}}, @svc={0x122, 0x40, {0x0, [0x8, 0x80000000, 0x6, 0x1, 0xfffffffffffffff2]}}, @svc={0x122, 0x40, {0x3f000000, [0x7, 0x5, 0x8000, 0x81, 0x8000000000000001]}}, @msr={0x14, 0x20, {0x603000000013e6c1}}], 0x428}, &(0x7f0000000580)=[@featur1={0x1, 0x1}], 0x1) ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f00000005c0)={0x5, 0xffffffffffffffff}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000600)={0x928, 0x4}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r0, 0x4068aea3, &(0x7f0000000640)={0xe4, 0x0, 0x6efa}) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x39) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r4, 0x4010ae74, &(0x7f00000006c0)={0x2, 0x80000001, 0x100}) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(r3, 0x4018aee3, &(0x7f0000000740)=@attr_other={0x0, 0xb, 0x654e, &(0x7f0000000700)=0x4}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x40) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000780)={0x5, 0xaa}) r5 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece) r6 = ioctl$KVM_GET_STATS_FD_vm(r5, 0xaece) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f00000007c0)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000800)={0x2e, "5d6852b975df6a30246e50ee5479894efe86baf4332f6fb3a9be0e48e9bc712d8cb6fea2cb2c9a1b8151464e1bf2"}) r7 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000e00)={0x0, &(0x7f0000000840)=[@code={0xa, 0x6c, {"000028d500804048000028d5000028d5806283d200a0b8f2010080d2020180d2230080d2c40180d2020000d4007008d5803d90d20080b8f2e10080d2420180d2430180d2a40080d2020000d40008e078008008d50000407d"}}, @uexit={0x0, 0x18}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x383}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x3c9}}, @eret={0xe6, 0x18, 0x5}, @its_send_cmd={0xaa, 0x28, {0xd, 0x0, 0x1, 0x3, 0x11af, 0x2, 0x1}}, @uexit={0x0, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x67}}, @svc={0x122, 0x40, {0x80000001, [0x400, 0x2, 0x100, 0x5, 0x3]}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x200}, @code={0xa, 0x84, {"1f0000f1007008d5000c403800b8a10e0000df0d809886d20000b0f2c10080d2820180d2630080d2c40080d2020000d4c0a690d20020b0f2e10180d2820180d2230180d2240180d2020000d4000860f8005b9ad20000b0f2610080d2420080d2230080d2e40180d2020000d40084ff0d"}}, @code={0xa, 0x54, {"009295d200c0b8f2a10080d2e20080d2630080d2640180d2020000d4008008d5007008d50054207e00a8a15e0000007d007008d50000206a0000311e007008d5"}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x380, 0x5, 0x5}}, @code={0xa, 0xb4, {"00a8a12ea0eb8ad20080b8f2410080d2e20080d2430180d2e40180d2020000d40038601e000028d540ab86d20080b8f2410080d2620180d2630080d2840180d2020000d4604398d200c0b8f2a10180d2c20080d2430080d2640180d2020000d4a0cd8ed20080b0f2a10080d2620080d2a30180d2840180d2020000d440759dd20080b0f2210080d2620080d2430080d2e40180d2020000d4007008d50068284e"}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x0, 0x0, 0xa, 0x0, 0x8, 0x1}}, @msr={0x14, 0x20, {0xc06000000027cd17, 0xc672}}, @uexit={0x0, 0x18, 0x1d}, @eret={0xe6, 0x18, 0x40}, @mrs={0xbe, 0x18, {0x603000000013c038}}, @msr={0x14, 0x20, {0x603000000013e6c4, 0x6}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x142}}, @msr={0x14, 0x20, {0x603000000013df6a, 0x5}}, @mrs={0xbe, 0x18, {0x603000000013c201}}, @eret={0xe6, 0x18, 0x7}, @mrs={0xbe, 0x18, {0x603000000013df63}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x65}}, @msr={0x14, 0x20, {0x603000000013e180, 0x8}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x1, 0x10, 0x9, 0x8}}, @eret={0xe6, 0x18, 0x2}, @its_setup={0x82, 0x28, {0x1, 0x3, 0x166}}, @hvc={0x32, 0x40, {0x4, [0x3, 0xfffffffffffffff8, 0x3, 0x47, 0x9]}}], 0x5b0}, &(0x7f0000000e40)=[@featur1={0x1, 0x42}], 0x1) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f0000000e80)=@x86={0x3, 0x8b, 0x80, 0x0, 0x9, 0x8, 0x0, 0x4, 0x12, 0x3, 0x1, 0x0, 0x0, 0xa7a, 0x3, 0x81, 0x3, 0x9, 0xb, '\x00', 0xa2, 0x2}) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f0000000ec0)=0x15) ioctl$KVM_SET_USER_MEMORY_REGION2(r6, 0x40a0ae49, &(0x7f0000000f00)={0x2710, 0x7, 0x41000, 0x2000, &(0x7f0000c62000/0x2000)=nil, 0x7, r5}) r8 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000001440)={0x0, &(0x7f0000000fc0)=[@memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x80, 0xffffffffffffffff, 0x2}}, @mrs={0xbe, 0x18, {0x603000000013ff11}}, @uexit={0x0, 0x18, 0x6}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x124}}, @hvc={0x32, 0x40, {0x84000011, [0x2, 0x706, 0x8001, 0x3, 0x4]}}, @svc={0x122, 0x40, {0xc000105a, [0x0, 0x0, 0x3ff, 0x5, 0x8]}}, @code={0xa, 0x84, {"007008d500e694d20040b8f2e10180d2e20080d2830180d2440080d2020000d4000028d5a0458cd200a0b0f2210180d2c20080d2230180d2c40080d2020000d40000651e004c200ee0d994d200e0b8f2410180d2c20180d2c30080d2240080d2020000d4000028d5007008d50084007f"}}, @irq_setup={0x46, 0x18, {0x2, 0x370}}, @its_setup={0x82, 0x28, {0x1, 0x1, 0x2ca}}, @msr={0x14, 0x20, {0x603000000013c3a0, 0x4}}, @uexit={0x0, 0x18, 0x2}, @msr={0x14, 0x20, {0x0, 0x401}}, @eret={0xe6, 0x18, 0x906}, @smc={0x1e, 0x40, {0x100000f, [0x9, 0x4, 0x37, 0x7, 0x9]}}, @uexit={0x0, 0x18, 0x401}, @msr={0x14, 0x20, {0x603000000013c523, 0x7fffffffffffffff}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x0, 0x8, 0x8, 0x80000001, 0x1}}, @eret={0xe6, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8600ff01, [0x2bca, 0x9, 0x84, 0x1, 0x9]}}, @msr={0x14, 0x20, {0x603000000013c085, 0x7}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x12a8}}, @code={0xa, 0x54, {"0020000e00000079007008d500004093008008d5000028d5008008d5007008d5a06b9fd200a0b8f2e10180d2020180d2e30180d2e40080d2020000d40020ff0d"}}, @smc={0x1e, 0x40, {0x84000012, [0x2, 0x4, 0x5372b716, 0x7, 0x7]}}, @smc={0x1e, 0x40, {0xc4000004, [0x9, 0x42, 0x5, 0x7, 0x3]}}, @eret={0xe6, 0x18, 0x3}], 0x470}, &(0x7f0000001480)=[@featur2={0x1, 0x81}], 0x1) r9 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0xc) syz_kvm_setup_cpu$arm64(r9, r8, &(0x7f0000b04000/0x400000)=nil, &(0x7f0000001500)=[{0x0, &(0x7f00000014c0)=[@irq_setup={0x46, 0x18, {0x1, 0x337}}, @eret={0xe6, 0x18, 0x7}], 0x30}], 0x1, 0x0, &(0x7f0000001540)=[@featur2={0x1, 0x40}], 0x1) r10 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) ioctl$KVM_KVMCLOCK_CTRL(r10, 0xaead) 24m40.813169836s ago: executing program 2 (id=393): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x8040aeb6, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x9, 0x7fffffff, 0x2}}) r2 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_add_vcpu$arm64(r2, 0x0, 0x0, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000000)=@x86={0x1, 0x80, 0x7, 0x0, 0x0, 0x2, 0x6e, 0xf8, 0x46, 0x3, 0x8, 0xb9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x9, '\x00', 0xff, 0x80000001}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0xc4000053, [0x9, 0x0, 0x6, 0x6, 0x800]}}], 0x40}, 0x0, 0x0) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) 24m33.66266511s ago: executing program 3 (id=394): r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r1 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r1, 0x2800002, 0x4010, 0xffffffffffffffff, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, r1, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x2, 0x1, 0x0, @adapter={0x7, 0x100000000, 0x8, 0x0, 0x7}}, {0x9, 0x2, 0x1, 0x0, @adapter={0xd4ff, 0x6d39, 0x2, 0x0, 0x7f}}, {0x3, 0x0, 0x1, 0x0, @sint={0x6, 0x8000}}, {0x0, 0x0, 0x0, 0x0, @adapter={0x8f9, 0xe808e8f, 0x3f, 0x7, 0x332ccd89}}]}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4000ae84, &(0x7f0000000300)={{0x40000, 0x5112230311195ad3, 0x3, 0x81, 0x5b, 0xb, 0x81, 0x8, 0xe, 0x78, 0x3, 0x6}, {0x7f625000, 0xdddd1000, 0x10, 0x81, 0xb, 0x0, 0x0, 0xf2, 0x10, 0xcb, 0x9, 0x98}, {0x40000, 0x100000, 0x10, 0x0, 0xa6, 0x7, 0x2d, 0xf2, 0xa, 0x0, 0x2, 0x4}, {0x26000, 0x54000, 0xa, 0x7e, 0x6, 0x7, 0x5c, 0x9, 0x4, 0x2, 0xe, 0xef}, {0x6000, 0x81c0003, 0x4, 0x1b, 0xf1, 0xa4, 0x0, 0xa, 0x5, 0x2, 0xff}, {0x0, 0x6000, 0x8, 0x7, 0x4, 0x40, 0x8, 0x9, 0x4, 0x9a, 0xd, 0x7}, {0x26000, 0x26000, 0xbd6e87c0ceccddee, 0x9, 0x5, 0x8, 0xf6, 0xa, 0x0, 0x5, 0x8, 0x2}, {0x8000000, 0x5000, 0x10, 0x6, 0x2, 0x7f, 0x5, 0x5, 0x4, 0x1, 0x6, 0x81}, {0x80a0000, 0x2}, {0x58000, 0xfffd}, 0x40000000, 0x0, 0x58000, 0x200b8, 0xf, 0x1, 0xdddd0000, [0x4, 0x1, 0x81, 0x2]}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x46, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x900001, 0x0, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x93}) write$eventfd(r6, &(0x7f00000001c0)=0x3, 0xfdef) r7 = syz_kvm_add_vcpu$arm64(r3, 0x0, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000000)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x10003}) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (rerun: 64) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) eventfd2(0x3ff, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x2) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0) 24m27.202580377s ago: executing program 2 (id=395): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x1a9980, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x26) ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000200)={0x3e8}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000b7b000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000040)=@other={0x0, &(0x7f00000001c0)}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000bae000/0x1000)=nil, 0x930, 0x2, 0x11, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x1000) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x33) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0xe000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r9, 0xb701, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f0000000000)={0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x6}) eventfd2(0x0, 0x0) 24m16.13225691s ago: executing program 3 (id=396): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000340)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000000)=0xcb1}) 23m39.888573305s ago: executing program 34 (id=395): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b7b000/0x400000)=nil) openat$kvm(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x1a9980, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x26) ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000200)={0x3e8}) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000b7b000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000000)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r3, 0x4010aeac, &(0x7f0000000040)=@other={0x0, &(0x7f00000001c0)}) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000bae000/0x1000)=nil, 0x930, 0x2, 0x11, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, r3, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x1000) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x33) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0xe000, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r9 = ioctl$KVM_CREATE_VM(r8, 0x894c, 0x0) ioctl$KVM_CREATE_VCPU(r9, 0xb701, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(r10, 0x4020ae76, &(0x7f0000000000)={0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x6}) eventfd2(0x0, 0x0) 23m27.900914377s ago: executing program 35 (id=396): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000340)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000000)=0xcb1}) 17m45.721697828s ago: executing program 4 (id=397): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$KVM_CREATE_VM(r3, 0x5452, 0x2000fdfd) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r7 = ioctl$KVM_CREATE_VM(r6, 0x800454dd, 0x800000000000000d) r8 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x0, 0x0}) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r12 = ioctl$KVM_CREATE_VM(r11, 0x894c, 0x0) close(r12) ioctl$KVM_CREATE_VCPU(r12, 0xb704, 0x0) r13 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000001240)=[@smc={0x1e, 0x40, {0x1, [0x8, 0xc7f, 0x3, 0x8000, 0x9]}}, @svc={0x122, 0x40, {0x20, [0x100000001, 0x1, 0x2d, 0x2865d33b, 0x8]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x20020, 0x6, 0xd}}, @smc={0x1e, 0x40, {0x0, [0x2, 0x2, 0x9, 0x3, 0x2]}}, @eret={0xe6, 0x18, 0x8c0}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x88, 0x4, 0xd}}, @svc={0x122, 0x40, {0xc400000d, [0x1, 0x2, 0x2, 0xc, 0x6]}}, @smc={0x1e, 0x40, {0x1000, [0x4, 0x9, 0x3b, 0xfff, 0x9]}}, @uexit={0x0, 0x18, 0xffffe00000000000}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80e0000, 0x100, 0x1, 0x4}}, @hvc={0x32, 0x40, {0x80008000, [0x1, 0xe, 0x8, 0x8001, 0x7]}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0x4d7, 0x80, 0x7}}, @code={0xa, 0x6c, {"0028c01a007008d500b8205e007008d5009c000f40e797d20040b0f2410180d2820080d2430080d2440180d2020000d4007008d5007008d5000028d580ac8dd20080b0f2010180d2020080d2a30080d2c40080d2020000d4"}}, @code={0xa, 0x9c, {"000028d5e0888dd20040b8f2e10080d2620180d2430180d2c40180d2020000d40080206e608995d200e0b8f2010180d2c20080d2430180d2840080d2020000d40020601ec0a683d20020b8f2610180d2020180d2430180d2c40080d2020000d4c03d99d200a0b0f2610180d2e20180d2630080d2440180d2020000d4007008d5000000330024202e"}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0x18a, 0x9}}, @code={0xa, 0x9c, {"c01c99d20060b0f2e10080d2a20080d2230080d2040080d2020000d4607b9ed20000b8f2210080d2620180d2830080d2840080d2020000d4007008d50098202e000028d5000028d520719ed20080b0f2e10180d2220080d2630080d2a40180d2020000d4007008d580a89dd20040b8f2a10080d2a20080d2830080d2640080d2020000d40060c00c"}}, @code={0xa, 0x9c, {"a01c9bd200a0b8f2810080d2020080d2c30180d2040180d2020000d400fc200ee08498d20080b8f2810180d2e20180d2c30080d2040080d2020000d40094005f805697d20040b0f2a10080d2220080d2230080d2040080d2020000d40050805f0000c02d007008d520e49fd20000b8f2e10180d2820080d2a30080d2e40080d2020000d4008008d5"}}, @irq_setup={0x46, 0x18, {0x4, 0x211}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x4, 0x3, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0xd00, 0xec, 0xb}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x380, 0x101, 0x2}}, @smc={0x1e, 0x40, {0x84000050, [0x6, 0x3, 0x1, 0xa, 0x7]}}, @eret={0xe6, 0x18, 0x80000001}, @smc={0x1e, 0x40, {0xffff, [0x3, 0x2, 0xffffffff, 0xfffffffffffffffe, 0x822]}}, @mrs={0xbe, 0x18, {0x603000000013e18c}}], 0x638}, &(0x7f0000000bc0)=[@featur2], 0x1) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x9, 0x6, 0x16, '\x00', 0x7}) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r7, 0x4068aea3, &(0x7f00000000c0)={0xa8, 0x0, 0x3}) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) 17m27.911236707s ago: executing program 4 (id=399): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x27) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000140)=@attr_set_pmu={0x0, 0x0, 0x3, &(0x7f0000000100)=0x80000}) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur2={0x1, 0x90}], 0x1) r12 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x7ab, 0x0, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0) r13 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f0000000240)=[@irq_setup={0x5, 0x18}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@arm64={0x0, 0x1, 0xf, '\x00', 0xfffffffffffff105}) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0) r17 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r16, 0x0) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) syz_memcpy_off$KVM_EXIT_HYPERCALL(r17, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r16, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) 17m2.581439555s ago: executing program 4 (id=400): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000100), 0x80402, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x80181, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x83) r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x2c) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x2101c0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, &(0x7f00000000c0)=0xa) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000140)=@other={0x4, &(0x7f0000000040)}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x21) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r11, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r4, 0x4018aee1, &(0x7f0000000080)=@attr_arm64={0x0, 0x0, 0x0, 0x0}) r12 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r12, 0x4010aeac, &(0x7f00000002c0)=@arm64_sys={0x603000000013df61, &(0x7f00000001c0)}) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000240)=@arm64_sys={0x603000000013de94, &(0x7f0000000180)=0x43ff}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_init) r13 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x2d) r15 = syz_kvm_vgic_v3_setup(r14, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x3, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r12, 0xae80, 0x0) 16m55.253317592s ago: executing program 5 (id=398): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x20080, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) eventfd2(0xeffffffd, 0x801) ioctl$KVM_CHECK_EXTENSION(r2, 0xae03, 0x58) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = syz_kvm_vgic_v3_setup(r3, 0x3, 0xc0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)=0x9}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103100, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SIGNAL_MSI(r6, 0x4020aea5, 0xffffffffffffffff) 16m29.761156329s ago: executing program 4 (id=401): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) (async) r1 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x3, 0x0, 0x0}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) (async) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000100)={0x5, 0x0, &(0x7f0000f7a000/0x3000)=nil}) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000580)={0x0, &(0x7f0000000140)=[@eret={0xe6, 0x18, 0xe2}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xf10, 0x0, 0x8}}, @code={0xa, 0x6c, {"00009f0c007008d5007008d5000028d5000cc03c604080d20060b8f2810180d2c20080d2230080d2840180d2020000d40070004f008008d5004d80d20020b0f2e10180d2a20180d2630180d2840080d2020000d4000440bc"}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x2, 0x5, 0xfffffd63, 0x101, 0x2}}, @svc={0x122, 0x40, {0x0, [0x4, 0x9, 0x3, 0x2, 0x1]}}, @hvc={0x32, 0x40, {0xc400000c, [0x100000000, 0xf, 0x2, 0x1, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x1, 0xe, 0x4a, 0x6, 0x1}}, @eret={0xe6, 0x18, 0x8}, @hvc={0x32, 0x40, {0x40, [0x3ff, 0x9, 0xb, 0x3, 0x3]}}, @smc={0x1e, 0x40, {0x80000000, [0x1, 0x5, 0xffffffffffffff27, 0x0, 0x3]}}, @svc={0x122, 0x40, {0xc4000010, [0xb9da, 0x1, 0x9, 0x1, 0xff]}}, @uexit={0x0, 0x18, 0x7}, @code={0xa, 0x9c, {"607093d20000b0f2010080d2620080d2030180d2a40180d2020000d40058201e803582d200a0b8f2410180d2220180d2830080d2640180d2020000d4007008d5008008d5a0ff8ed20060b0f2e10180d2220180d2430180d2640180d2020000d400b4205e007008d5000008d5a0b69dd200a0b0f2c10180d2420180d2c30180d2a40080d2020000d4"}}, @hvc={0x32, 0x40, {0x84000006, [0x10000, 0x6, 0x6, 0x100, 0x274d824d]}}, @hvc={0x32, 0x40, {0x400, [0x1, 0x8, 0x7, 0x5, 0x7fffffff]}}, @irq_setup={0x46, 0x18, {0x4, 0x1d9}}, @smc={0x1e, 0x40, {0x4000000, [0x1ff, 0x8, 0x7, 0x2, 0x3]}}, @eret={0xe6, 0x18, 0x8}, @memwrite={0x6e, 0x30, @generic={0x41000, 0x75b, 0x6, 0x8}}], 0x430}, &(0x7f00000005c0)=[@featur1={0x1, 0x9}], 0x1) ioctl$KVM_ARM_VCPU_FINALIZE(r6, 0x4004aec2, &(0x7f0000000000)=0x5) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r6, 0x4018aee2, &(0x7f0000000640)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000600)={0xa, 0x2, 0x1}}) 16m29.12789877s ago: executing program 5 (id=402): openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000700)={0xa, 0xffffffffffffffff}) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee3, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x10003, 0x6, 0x0, 0x2000, &(0x7f0000d72000/0x2000)=nil}) (async) ioctl$KVM_CREATE_DEVICE(r6, 0xc018aec0, &(0x7f00000000c0)={0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000340)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000000)=0xcb1}) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) (rerun: 64) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x7}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x7, &(0x7f0000000280)=0x6}) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff, 0x77de3196e5b43121}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async, rerun: 32) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (rerun: 32) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) (async) r10 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r11, 0x4010ae68, &(0x7f0000000040)={0x4000, 0x2000}) (async, rerun: 32) ioctl$KVM_GET_DIRTY_LOG(r9, 0x4010ae42, &(0x7f0000000000)={0x10000, 0x0, &(0x7f0000d73000/0x1000)=nil}) (rerun: 32) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x27) syz_kvm_vgic_v3_setup(r13, 0x1, 0x100) (async) ioctl$KVM_IRQFD(r13, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xfffffff8}) openat$kvm(0x0, &(0x7f00000001c0), 0x0, 0x0) 16m11.215088853s ago: executing program 4 (id=403): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013df61, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r4 = openat$kvm(0x0, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, 0xfffffffffffffffe) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 15m40.290638261s ago: executing program 36 (id=402): openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000700)={0xa, 0xffffffffffffffff}) (async) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee3, &(0x7f00000000c0)=@attr_irq_timer={0x0, 0x1, 0x0, 0x0}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x10003, 0x6, 0x0, 0x2000, &(0x7f0000d72000/0x2000)=nil}) (async) ioctl$KVM_CREATE_DEVICE(r6, 0xc018aec0, &(0x7f00000000c0)={0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async) ioctl$KVM_GET_DEVICE_ATTR(r4, 0x4018aee2, &(0x7f0000000340)=@attr_other={0x0, 0x5, 0x8, &(0x7f0000000000)=0xcb1}) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) (rerun: 64) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000000c0)={0x7}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x7, &(0x7f0000000280)=0x6}) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff, 0x77de3196e5b43121}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async, rerun: 32) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) (rerun: 32) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) (async) r10 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r11, 0x4010ae68, &(0x7f0000000040)={0x4000, 0x2000}) (async, rerun: 32) ioctl$KVM_GET_DIRTY_LOG(r9, 0x4010ae42, &(0x7f0000000000)={0x10000, 0x0, &(0x7f0000d73000/0x1000)=nil}) (rerun: 32) openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x27) syz_kvm_vgic_v3_setup(r13, 0x1, 0x100) (async) ioctl$KVM_IRQFD(r13, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xfffffff8}) openat$kvm(0x0, &(0x7f00000001c0), 0x0, 0x0) 15m18.324428647s ago: executing program 37 (id=403): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}, @msr={0x14, 0x20, {0x603000000013df61, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r4 = openat$kvm(0x0, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, 0xfffffffffffffffe) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3m23.811649972s ago: executing program 6 (id=424): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x82880, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000140), 0x101282, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x7, 0x7ff, &(0x7f0000000040)=0xffffffffffffffff}) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) mmap$KVM_VCPU(&(0x7f0000c0b000/0x1000)=nil, r6, 0x2000003, 0x11, r5, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r8 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000100)={0x3, 0x18}) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f00000000c0)=@arm64_sve_vls={0x606000000015ffff, &(0x7f0000000000)=0x1}) ioctl$KVM_CREATE_VM(r10, 0x400454d1, 0x110c230004) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r14 = ioctl$KVM_GET_STATS_FD_cpu(r5, 0xaece) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(r14, 0x4040aea0, &(0x7f00000001c0)=@x86={0x7f, 0x2, 0x42, 0x0, 0x4, 0xd, 0x4, 0x2, 0x3, 0xe4, 0xab, 0xff, 0x0, 0xc, 0x8680, 0x9, 0x7, 0x3, 0x4, '\x00', 0x1, 0x3}) write$eventfd(r15, &(0x7f00000001c0)=0x3, 0xfdef) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000000)={0x100000, 0x8000, 0x1}) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000b0d000/0x400000)=nil) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x1a0) syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000100)={0x0, &(0x7f0000000880)=[@msr={0x14, 0x20, {0x603000000013defc, 0x5a8}}], 0x20}, 0x0, 0x0) 3m3.831645138s ago: executing program 7 (id=425): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2c) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_REG_LIST(r7, 0xc008aeb0, &(0x7f0000000300)={0x2000034d, [0x6, 0x8, 0x1000, 0x100000001, 0x5, 0x4, 0x10001]}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$KVM_CHECK_EXTENSION(r8, 0x40086602, 0x110c230000) 2m55.316044765s ago: executing program 6 (id=426): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r2, 0x4068aea3, &(0x7f0000000000)={0xef, 0x0, 0x7}) (async) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) openat$kvm(0x0, 0x0, 0x0, 0x0) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000000)={0xffffffffffffffff, 0x2, 0x1}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) (async) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r6, 0x1000002, 0x13, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r5, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x454303, 0x0) (async) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0) ioctl$KVM_CREATE_VM(r8, 0x40049409, 0x6) r9 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ee0000/0x1000)=nil, r6, 0x0, 0x10, r5, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r10, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) (async, rerun: 64) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0xb, 0xffffffffffffffff, 0x1}) (async, rerun: 32) syz_kvm_setup_cpu$arm64(r10, 0xffffffffffffffff, &(0x7f0000001000/0x400000)=nil, &(0x7f0000000140)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8000000000000000}) (async) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) (async) r12 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@mrs={0xbe, 0x18, {0x603000000013c807}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r12, 0xae80, 0x0) 2m32.237885417s ago: executing program 7 (id=427): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@smc={0x1e, 0x40, {0x8400000a, [0x84000001, 0xa, 0x0, 0x6, 0x10]}}], 0x40}, &(0x7f00000000c0)=[@featur1={0x1, 0x4}], 0x1) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fed000/0x3000)=nil, 0x930, 0x0, 0x4030031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000e8b000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) munmap(&(0x7f00006b3000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f000064b000/0x4000)=nil, r5, 0x100000d, 0x9032, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000667000/0x2000)=nil, 0x2000) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2m26.854436934s ago: executing program 6 (id=428): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) ioctl$KVM_SET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee1, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r4, 0x400454d0, 0x0) r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x9) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r5, 0x4010aeb5, &(0x7f0000000080)={0x7ff, 0x10001}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_vgic_v3_setup(r1, 0x4, 0x80) r6 = eventfd2(0x0, 0x0) close(r6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40800, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x6000004, 0x2011, r6, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000040)={0x2000010, 0xbb28}) 2m5.007494299s ago: executing program 7 (id=429): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x4, 0x2000, 0x8, 0xffffffffffffffff, 0x20}) 2m0.199957834s ago: executing program 6 (id=430): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x8) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000000)={0xa, 0xffffffffffffffff, 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) r4 = openat$kvm(0x0, &(0x7f0000000180), 0x501200, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f00000001c0)={0xa, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x4) r8 = eventfd2(0xffff, 0x80001) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x4) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(0xffffffffffffffff, &(0x7f00000001c0)=0x3, 0x8) ioctl$KVM_IRQFD(r7, 0x4020ae76, &(0x7f00000000c0)={r8, 0x2, 0x1}) ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f00000002c0)=@attr_other={0x0, 0x4, 0x8, 0x0}) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x8001, 0x55e}}) r11 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x25) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000100)=@arm64_bitmap={0x6030000000160003}) r14 = eventfd2(0x0, 0x0) close(r14) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x109200, 0x0) 1m42.716110522s ago: executing program 7 (id=431): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x26e8, 0x0, 0x2000, 0x1000, &(0x7f0000fa2000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1, 0x0, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x0, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x26e8, 0x0, 0x2000, 0x1000, &(0x7f0000fa2000/0x1000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x1, 0x0, 0x5000, 0x2000, &(0x7f0000fa2000/0x2000)=nil}) (async) 1m35.952544795s ago: executing program 6 (id=432): ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1fd, 0x1, 0x4, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2) ioctl$KVM_CAP_PTP_KVM(r0, 0x4068aea3, &(0x7f0000000040)) r1 = eventfd2(0xea1, 0x0) write$eventfd(r1, &(0x7f00000000c0)=0x1, 0x8) write$eventfd(r1, &(0x7f0000000100)=0x5, 0x8) ioctl$KVM_CAP_PTP_KVM(r0, 0x4068aea3, &(0x7f0000000140)) ioctl$KVM_HAS_DEVICE_ATTR_vm(r0, 0x4018aee3, &(0x7f0000000200)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000001c0)={0x81, 0x9, 0x2}}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000240)={0x2, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_arm64={0x0, 0x4, 0x3, &(0x7f0000000280)=0x7}) r3 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000800)={0x0, &(0x7f0000000300)=[@its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x0, 0x4, 0x5be12507, 0xfffffffd, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013df5c}}, @irq_setup={0x46, 0x18, {0x0, 0x326}}, @smc={0x1e, 0x40, {0x40004012, [0x4, 0x7, 0x4, 0x5, 0x1]}}, @mrs={0xbe, 0x18, {0x603000000013c029}}, @eret={0xe6, 0x18, 0x3}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0xb, 0xffff, 0x7}}, @msr={0x14, 0x20, {0x603000000013c4ca, 0x9}}, @smc={0x1e, 0x40, {0x4, [0x4, 0x8, 0xc0000000, 0x5, 0x211f]}}, @smc={0x1e, 0x40, {0x1000000, [0x2, 0x101, 0x4, 0x200, 0xd3]}}, @code={0xa, 0xcc, {"20e98ed20040b8f2a10080d2e20080d2e30080d2c40080d2020000d4e00d95d20020b8f2c10080d2c20080d2a30180d2640180d2020000d4007008d5e0bb83d200e0b0f2010080d2e20080d2830180d2840080d2020000d4005592d200c0b8f2010080d2220180d2430180d2640080d2020000d40098205e008008d5000028d5c07f82d20000b0f2810080d2220180d2630080d2e40180d2020000d4604e91d20060b8f2010180d2a20180d2e30080d2040180d2020000d4"}}, @memwrite={0x6e, 0x30, @generic={0x10000, 0x183, 0x100000000, 0x9}}, @msr={0x14, 0x20, {0x603000000013df7f, 0x9}}, @msr={0x14, 0x20, {0x603000000013e6ca, 0xec23}}, @smc={0x1e, 0x40, {0x8500000d, [0x3, 0xf, 0x2, 0x2b0, 0xffffffffffffffff]}}, @eret={0xe6, 0x18, 0x5}, @eret={0xe6, 0x18, 0x40}, @irq_setup={0x46, 0x18, {0x1, 0x10a}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0xffd0, 0x8000000000000000, 0xa}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x1, 0x2, 0x200, 0x5, 0x2}}, @eret={0xe6, 0x18, 0x7fff}, @svc={0x122, 0x40, {0x30000000, [0x1, 0xfffffffffffffff7, 0x6, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x3, 0x10000, 0xff, 0x1}}, @its_setup={0x82, 0x28, {0x4, 0x1, 0x278}}, @uexit={0x0, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013e180}}, @eret={0xe6, 0x18, 0x1}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x278}}, @eret={0xe6, 0x18, 0x40}], 0x4dc}, &(0x7f0000000840)=[@featur1={0x1, 0x24}], 0x1) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000000880)=@arm64={0x2, 0x30, 0xf3, '\x00', 0x25}) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r0, 0x4010aeb5, &(0x7f00000008c0)={0x200, 0x1}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000900)={0x1, 0x4331}) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000940)=@arm64) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xfffffffffffff135) ioctl$KVM_SET_VCPU_EVENTS(r5, 0x4040aea0, &(0x7f0000000980)=@arm64={0xb8, 0x5e, 0x8, '\x00', 0x8}) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f00000009c0), 0x50600, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) ioctl$KVM_ARM_VCPU_INIT(r3, 0x4020aeae, &(0x7f0000000a00)={0x3, 0x20}) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x15) ioctl$KVM_CAP_HALT_POLL(r7, 0x4068aea3, &(0x7f0000000a40)={0xb6, 0x0, 0xfffffffffffffff8}) ioctl$KVM_CAP_ARM_EAGER_SPLIT_CHUNK_SIZE(r0, 0x4068aea3, &(0x7f0000000ac0)={0xe4, 0x0, 0x7fff}) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000b40)={0x10200, 0x3, 0x5000, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000b80)={0x6, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f0000000bc0)=0x1) ioctl$KVM_CAP_DIRTY_LOG_RING(r0, 0x4068aea3, &(0x7f0000000c00)={0xc0, 0x0, 0x2000}) 1m19.368401538s ago: executing program 7 (id=433): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000f0f000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) munmap(&(0x7f00004a0000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x0, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000f1a000/0x4000)=nil, 0x930, 0x0, 0x9032, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000ad0000/0x400000)=nil) 1m16.461010728s ago: executing program 6 (id=434): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x4f832, 0xffffffffffffffff, 0x1000000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 32) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) (rerun: 32) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000340)=0xfffffffffffffffc}) (async) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) r8 = eventfd2(0x2, 0x80001) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async, rerun: 32) write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) (async, rerun: 32) r9 = eventfd2(0x0, 0x0) (async, rerun: 64) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) (rerun: 64) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x21) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x6) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r12, 0x0) mmap$KVM_VCPU(&(0x7f0000003000/0x2000)=nil, 0x930, 0x100000a, 0x10011, r12, 0x0) (async) close(r9) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r13, 0x2000004, 0x2011, r9, 0x0) 51.260751246s ago: executing program 7 (id=435): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) close(r4) ioctl$KVM_SET_SREGS(r2, 0x4000ae84, &(0x7f00000001c0)={{0x9000, 0x30000, 0x10, 0x35, 0x7, 0x2, 0x1, 0x98, 0x90, 0x3, 0x0, 0x8}, {0xeeee0000, 0x40000, 0xe, 0xd, 0xc, 0x1, 0x7f, 0x4, 0x1, 0x7, 0x1, 0x4}, {0x41000, 0x54000, 0x4, 0x2, 0xfe, 0x5, 0x0, 0xff, 0x1, 0x0, 0x81, 0x2}, {0x58000, 0x5000, 0x3, 0x8, 0x3, 0x8, 0x6, 0x2, 0x6, 0x1, 0x1}, {0x80cb000, 0x41000, 0xe, 0x81, 0x2, 0xff, 0x7, 0xd9, 0x5, 0x4, 0x3, 0x7}, {0x30000, 0x7ffabfff, 0xd, 0x4, 0x8, 0x9, 0x4, 0x80, 0x2, 0x7, 0x3, 0x6d}, {0xd000, 0x2, 0x8, 0x1a, 0x7, 0xe8, 0x8, 0x2, 0x3, 0x0, 0x2, 0xee}, {0xc000, 0x8000000, 0x4, 0x9, 0x1, 0x3, 0x49, 0x5, 0x2, 0x7f, 0xbc, 0x5}, {0xc000, 0x3}, {0x54000, 0x72}, 0x8, 0x0, 0x7000, 0x10418, 0x1, 0x8000, 0xddcdc001, [0xffffffff, 0x1, 0x8a5a, 0x5]}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) write$eventfd(r4, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) 25.894088913s ago: executing program 38 (id=434): mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x4f832, 0xffffffffffffffff, 0x1000000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) (async) r1 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r4 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r3, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) (async, rerun: 32) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) (rerun: 32) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000340)=0xfffffffffffffffc}) (async) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) r8 = eventfd2(0x2, 0x80001) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async, rerun: 32) write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) (async, rerun: 32) r9 = eventfd2(0x0, 0x0) (async, rerun: 64) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) (rerun: 64) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x21) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x6) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r12, 0x0) mmap$KVM_VCPU(&(0x7f0000003000/0x2000)=nil, 0x930, 0x100000a, 0x10011, r12, 0x0) (async) close(r9) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async) r13 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r13, 0x2000004, 0x2011, r9, 0x0) 0s ago: executing program 39 (id=435): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = eventfd2(0x0, 0x0) close(r4) ioctl$KVM_SET_SREGS(r2, 0x4000ae84, &(0x7f00000001c0)={{0x9000, 0x30000, 0x10, 0x35, 0x7, 0x2, 0x1, 0x98, 0x90, 0x3, 0x0, 0x8}, {0xeeee0000, 0x40000, 0xe, 0xd, 0xc, 0x1, 0x7f, 0x4, 0x1, 0x7, 0x1, 0x4}, {0x41000, 0x54000, 0x4, 0x2, 0xfe, 0x5, 0x0, 0xff, 0x1, 0x0, 0x81, 0x2}, {0x58000, 0x5000, 0x3, 0x8, 0x3, 0x8, 0x6, 0x2, 0x6, 0x1, 0x1}, {0x80cb000, 0x41000, 0xe, 0x81, 0x2, 0xff, 0x7, 0xd9, 0x5, 0x4, 0x3, 0x7}, {0x30000, 0x7ffabfff, 0xd, 0x4, 0x8, 0x9, 0x4, 0x80, 0x2, 0x7, 0x3, 0x6d}, {0xd000, 0x2, 0x8, 0x1a, 0x7, 0xe8, 0x8, 0x2, 0x3, 0x0, 0x2, 0xee}, {0xc000, 0x8000000, 0x4, 0x9, 0x1, 0x3, 0x49, 0x5, 0x2, 0x7f, 0xbc, 0x5}, {0xc000, 0x3}, {0x54000, 0x72}, 0x8, 0x0, 0x7000, 0x10418, 0x1, 0x8000, 0xddcdc001, [0xffffffff, 0x1, 0x8a5a, 0x5]}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) write$eventfd(r4, &(0x7f0000000180)=0x5, 0xfffffde3) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) write$eventfd(r4, 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x8, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): [ 374.147228][ T24] audit: type=1400 audit(373.330:74): avc: denied { write } for pid=3258 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 378.018615][ T24] audit: type=1400 audit(377.180:75): avc: denied { write } for pid=3262 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 380.538831][ T3205] 8021q: adding VLAN 0 to HW filter on device bond0 [ 388.913643][ T24] audit: type=1400 audit(388.110:76): avc: denied { write } for pid=3268 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 394.460686][ T24] audit: type=1400 audit(393.660:77): avc: denied { write } for pid=3271 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 411.581383][ T24] audit: type=1400 audit(410.780:78): avc: denied { write } for pid=3278 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 415.406554][ T24] audit: type=1400 audit(414.570:79): avc: denied { write } for pid=3281 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 425.737303][ T24] audit: type=1400 audit(424.900:80): avc: denied { write } for pid=3286 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 429.518468][ T24] audit: type=1400 audit(428.690:81): avc: denied { write } for pid=3289 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 432.042356][ T3205] eql: remember to turn off Van-Jacobson compression on your slave devices [ 440.867622][ T24] audit: type=1400 audit(440.070:82): avc: denied { write } for pid=3294 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 444.678590][ T24] audit: type=1400 audit(443.850:83): avc: denied { write } for pid=3297 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 450.358017][ T24] audit: type=1400 audit(449.560:84): avc: denied { write } for pid=3299 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 455.426792][ T24] audit: type=1400 audit(454.620:85): avc: denied { write } for pid=3302 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 469.613403][ T24] audit: type=1400 audit(468.810:86): avc: denied { write } for pid=3308 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 473.486270][ T24] audit: type=1400 audit(472.640:87): avc: denied { write } for pid=3311 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 478.619606][ T24] audit: type=1400 audit(477.820:88): avc: denied { write } for pid=3313 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 482.539830][ T24] audit: type=1400 audit(481.740:89): avc: denied { write } for pid=3316 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 493.818501][ T24] audit: type=1400 audit(493.020:90): avc: denied { write } for pid=3321 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 497.626546][ T24] audit: type=1400 audit(496.820:91): avc: denied { write } for pid=3324 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 519.455539][ T24] audit: type=1400 audit(518.650:92): avc: denied { write } for pid=3333 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 524.532285][ T24] audit: type=1400 audit(523.720:93): avc: denied { write } for pid=3336 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 540.945606][ T24] audit: type=1400 audit(540.140:94): avc: denied { write } for pid=3343 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 544.753484][ T24] audit: type=1400 audit(543.950:95): avc: denied { write } for pid=3346 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 551.103419][ T24] audit: type=1400 audit(550.300:96): avc: denied { write } for pid=3349 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 554.947794][ T24] audit: type=1400 audit(554.130:97): avc: denied { write } for pid=3352 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 562.261881][ T24] audit: type=1400 audit(561.460:98): avc: denied { write } for pid=3354 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 566.022576][ T24] audit: type=1400 audit(565.220:99): avc: denied { write } for pid=3357 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:50065' (ED25519) to the list of known hosts. [ 596.097613][ T24] audit: type=1400 audit(595.290:100): avc: denied { name_bind } for pid=3362 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 597.468461][ T24] audit: type=1400 audit(596.640:101): avc: denied { execute } for pid=3363 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 597.505357][ T24] audit: type=1400 audit(596.700:102): avc: denied { execute_no_trans } for pid=3363 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 625.027318][ T24] audit: type=1400 audit(624.220:103): avc: denied { mounton } for pid=3363 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 625.077206][ T24] audit: type=1400 audit(624.260:104): avc: denied { mount } for pid=3363 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 625.160497][ T3363] cgroup: Unknown subsys name 'net' [ 625.218836][ T24] audit: type=1400 audit(624.420:105): avc: denied { unmount } for pid=3363 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 625.619175][ T3363] cgroup: Unknown subsys name 'cpuset' [ 625.723746][ T3363] cgroup: Unknown subsys name 'rlimit' [ 626.115849][ T24] audit: type=1400 audit(625.310:106): avc: denied { setattr } for pid=3363 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 626.143041][ T24] audit: type=1400 audit(625.340:107): avc: denied { mounton } for pid=3363 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 626.165655][ T24] audit: type=1400 audit(625.360:108): avc: denied { mount } for pid=3363 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 627.163900][ T3366] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 627.183641][ T24] audit: type=1400 audit(626.380:109): avc: denied { relabelto } for pid=3366 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 627.216299][ T24] audit: type=1400 audit(626.390:110): avc: denied { write } for pid=3366 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 627.398787][ T24] audit: type=1400 audit(626.590:111): avc: denied { read } for pid=3363 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 627.416968][ T24] audit: type=1400 audit(626.610:112): avc: denied { open } for pid=3363 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 627.469814][ T3363] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 688.772482][ T24] audit: type=1400 audit(687.970:113): avc: denied { execmem } for pid=3367 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 693.481258][ T24] audit: type=1400 audit(692.680:114): avc: denied { open } for pid=3370 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 693.496468][ T24] audit: type=1400 audit(692.690:115): avc: denied { read } for pid=3369 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 693.578870][ T24] audit: type=1400 audit(692.780:116): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 693.799108][ T24] audit: type=1400 audit(693.000:118): avc: denied { module_request } for pid=3369 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 693.826847][ T24] audit: type=1400 audit(692.990:117): avc: denied { module_request } for pid=3370 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 694.806962][ T24] audit: type=1400 audit(694.000:119): avc: denied { sys_module } for pid=3369 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 720.290616][ T3369] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 720.400827][ T3369] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 721.390151][ T3370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 721.542817][ T3370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 732.643220][ T3369] hsr_slave_0: entered promiscuous mode [ 732.675681][ T3369] hsr_slave_1: entered promiscuous mode [ 733.790726][ T3370] hsr_slave_0: entered promiscuous mode [ 733.821536][ T3370] hsr_slave_1: entered promiscuous mode [ 733.858610][ T3370] debugfs: 'hsr0' already exists in 'hsr' [ 733.862499][ T3370] Cannot create hsr debugfs directory [ 739.366044][ T24] audit: type=1400 audit(738.560:120): avc: denied { create } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 739.415812][ T24] audit: type=1400 audit(738.610:121): avc: denied { write } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 739.459552][ T24] audit: type=1400 audit(738.650:122): avc: denied { read } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 739.608352][ T3369] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 739.929938][ T3369] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 740.058710][ T3369] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 740.317774][ T3369] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 740.385297][ T3369] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 740.508819][ T3369] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 740.589992][ T3369] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 740.693447][ T3369] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 742.501400][ T3370] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 742.670152][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 742.749411][ T3370] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 742.882009][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 742.980495][ T3370] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 743.175960][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 743.229445][ T3370] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 743.413506][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 754.611054][ T3369] 8021q: adding VLAN 0 to HW filter on device bond0 [ 757.710599][ T3370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 808.859423][ T3369] veth0_vlan: entered promiscuous mode [ 809.453560][ T3369] veth1_vlan: entered promiscuous mode [ 811.318349][ T3369] veth0_macvtap: entered promiscuous mode [ 811.681914][ T3369] veth1_macvtap: entered promiscuous mode [ 812.457245][ T3370] veth0_vlan: entered promiscuous mode [ 813.239532][ T3370] veth1_vlan: entered promiscuous mode [ 814.338044][ T3375] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.381530][ T3375] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.391652][ T3375] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.485134][ T3375] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 816.827181][ T3370] veth0_macvtap: entered promiscuous mode [ 817.007438][ T24] audit: type=1400 audit(816.200:123): avc: denied { mount } for pid=3369 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 817.301253][ T24] audit: type=1400 audit(816.370:124): avc: denied { mounton } for pid=3369 comm="syz-executor" path="/syzkaller.G99KCv/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 817.579157][ T24] audit: type=1400 audit(816.770:125): avc: denied { mount } for pid=3369 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 817.589409][ T3370] veth1_macvtap: entered promiscuous mode [ 817.911068][ T24] audit: type=1400 audit(817.110:126): avc: denied { mounton } for pid=3369 comm="syz-executor" path="/syzkaller.G99KCv/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 818.086048][ T24] audit: type=1400 audit(817.280:127): avc: denied { mounton } for pid=3369 comm="syz-executor" path="/syzkaller.G99KCv/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3727 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 819.059825][ T24] audit: type=1400 audit(818.250:128): avc: denied { unmount } for pid=3369 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 819.562665][ T24] audit: type=1400 audit(818.760:129): avc: denied { mounton } for pid=3369 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 819.652327][ T24] audit: type=1400 audit(818.850:130): avc: denied { mount } for pid=3369 comm="syz-executor" name="/" dev="gadgetfs" ino=3736 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 820.205965][ T24] audit: type=1400 audit(819.330:131): avc: denied { mount } for pid=3369 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 820.338823][ T24] audit: type=1400 audit(819.490:132): avc: denied { mounton } for pid=3369 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 820.651797][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 820.665738][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 820.685801][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 820.697071][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 822.533600][ T3369] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 824.226151][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 824.232926][ T24] audit: type=1400 audit(823.410:134): avc: denied { read write } for pid=3369 comm="syz-executor" name="loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 824.298412][ T24] audit: type=1400 audit(823.470:135): avc: denied { open } for pid=3369 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 824.365345][ T24] audit: type=1400 audit(823.550:136): avc: denied { ioctl } for pid=3369 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 837.985891][ T24] audit: type=1400 audit(837.030:137): avc: denied { read } for pid=3522 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 838.018829][ T24] audit: type=1400 audit(837.210:138): avc: denied { open } for pid=3522 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 838.572301][ T24] audit: type=1400 audit(837.770:139): avc: denied { ioctl } for pid=3522 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 851.761549][ T24] audit: type=1400 audit(850.950:140): avc: denied { append } for pid=3530 comm="syz.1.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 887.666826][ T24] audit: type=1400 audit(886.860:141): avc: denied { write } for pid=3548 comm="syz.1.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 934.019729][ T24] audit: type=1400 audit(933.210:142): avc: denied { setattr } for pid=3574 comm="syz.1.16" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1024.721060][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1024.770425][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1024.961176][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1024.993603][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.042156][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.146638][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.160882][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.213475][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.252154][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.320689][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.410215][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.552034][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.779242][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1025.903554][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.092373][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.180881][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.363178][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.410674][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.481120][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.570345][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1026.661137][ T3625] kvm [3625]: Failed to find VMA for hva 0x20c01000 [ 1045.342537][ T24] audit: type=1400 audit(1044.500:143): avc: denied { create } for pid=3635 comm="syz.0.34" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1062.276697][ T24] audit: type=1400 audit(1061.460:144): avc: denied { execute } for pid=3642 comm="syz.0.36" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=6138 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1093.379308][ T24] audit: type=1400 audit(1092.580:145): avc: denied { write } for pid=3655 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1101.298808][ T24] audit: type=1400 audit(1100.490:146): avc: denied { write } for pid=3664 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1179.209578][ T3705] kvm [3705]: Failed to find VMA for hva 0x20dca000 [ 1281.527968][ T3751] kvm [3751]: Failed to find VMA for hva 0x20d8d000 [ 1345.477225][ T24] audit: type=1400 audit(1344.670:147): avc: denied { map } for pid=3780 comm="syz.0.79" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=8888 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1345.520460][ T24] audit: type=1400 audit(1344.720:148): avc: denied { read } for pid=3780 comm="syz.0.79" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=8888 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1345.842206][ T24] audit: type=1400 audit(1345.040:149): avc: denied { write } for pid=3780 comm="syz.0.79" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=8888 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1366.930959][ T24] audit: type=1400 audit(1366.100:150): avc: denied { map } for pid=3791 comm="syz.1.82" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1367.018016][ T24] audit: type=1400 audit(1366.140:151): avc: denied { execute } for pid=3791 comm="syz.1.82" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1423.541527][ T24] audit: type=1400 audit(1422.680:152): avc: denied { write } for pid=3821 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1432.818792][ T24] audit: type=1400 audit(1432.010:153): avc: denied { write } for pid=3832 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1623.389990][ T3918] kvm [3918]: Failed to find VMA for hva 0x20c01000 [ 1646.373718][ T24] audit: type=1400 audit(1645.570:154): avc: denied { ioctl } for pid=3930 comm="syz.0.128" path="net:[4026532627]" dev="nsfs" ino=4026532627 ioctlcmd=0xb709 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1738.545200][ T24] audit: type=1400 audit(1737.690:155): avc: denied { write } for pid=3979 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1748.097612][ T24] audit: type=1400 audit(1747.250:156): avc: denied { write } for pid=3982 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1869.680150][ T4045] kvm [4045]: Failed to find VMA for hva 0x21016000 [ 1869.742130][ T4045] kvm [4045]: Failed to find VMA for hva 0x21016000 [ 2026.575360][ T24] audit: type=1400 audit(2025.760:157): avc: denied { write } for pid=4116 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2036.975374][ T24] audit: type=1400 audit(2036.090:158): avc: denied { write } for pid=4129 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2086.882209][ T4157] kvm [4157]: Failed to find VMA for hva 0x20c79000 [ 2086.899516][ T4158] kvm [4158]: Failed to find VMA for hva 0x20c79000 [ 2450.256565][ T24] audit: type=1400 audit(2449.450:159): avc: denied { write } for pid=4329 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2455.651011][ T4335] kvm [4335]: Failed to find VMA for hva 0x20c01000 [ 2459.706032][ T24] audit: type=1400 audit(2458.830:160): avc: denied { write } for pid=4337 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2617.442907][ T47] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2618.433346][ T47] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2619.549391][ T47] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2621.189900][ T47] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2635.623159][ T47] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2636.027343][ T47] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2636.237367][ T47] bond0 (unregistering): Released all slaves [ 2638.250047][ T47] hsr_slave_0: left promiscuous mode [ 2638.359412][ T47] hsr_slave_1: left promiscuous mode [ 2639.009041][ T47] veth1_macvtap: left promiscuous mode [ 2639.013224][ T47] veth0_macvtap: left promiscuous mode [ 2639.068178][ T47] veth1_vlan: left promiscuous mode [ 2639.079193][ T47] veth0_vlan: left promiscuous mode [ 2658.837602][ T3375] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2660.091283][ T3375] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2661.432906][ T3375] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2662.580952][ T3375] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2666.900690][ T24] audit: type=1400 audit(2666.090:161): avc: denied { write } for pid=4426 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2671.775162][ T24] audit: type=1400 audit(2670.960:162): avc: denied { write } for pid=4434 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2675.194010][ T3375] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2675.329902][ T3375] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2675.410929][ T3375] bond0 (unregistering): Released all slaves [ 2675.888174][ T3205] 8021q: adding VLAN 0 to HW filter on device eth1 [ 2676.269590][ T3375] hsr_slave_0: left promiscuous mode [ 2676.293322][ T3375] hsr_slave_1: left promiscuous mode [ 2676.423914][ T3375] veth1_macvtap: left promiscuous mode [ 2676.428476][ T3375] veth0_macvtap: left promiscuous mode [ 2676.440408][ T3375] veth1_vlan: left promiscuous mode [ 2676.449732][ T3375] veth0_vlan: left promiscuous mode [ 2697.196231][ T24] audit: type=1400 audit(2696.380:163): avc: denied { write } for pid=4443 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2702.627072][ T24] audit: type=1400 audit(2701.780:164): avc: denied { write } for pid=4452 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2706.456015][ T3205] 8021q: adding VLAN 0 to HW filter on device eth2 [ 2716.302387][ T24] audit: type=1400 audit(2715.500:165): avc: denied { write } for pid=4472 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2717.273215][ T4403] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2717.442030][ T4407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2717.638478][ T4403] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2718.277753][ T4407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2719.851749][ T24] audit: type=1400 audit(2719.050:166): avc: denied { write } for pid=4477 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2723.060158][ T3205] 8021q: adding VLAN 0 to HW filter on device eth3 [ 2731.845511][ T24] audit: type=1400 audit(2731.040:167): avc: denied { write } for pid=4490 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2736.526160][ T24] audit: type=1400 audit(2735.720:168): avc: denied { write } for pid=4499 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2737.416688][ T4403] hsr_slave_0: entered promiscuous mode [ 2737.452142][ T4403] hsr_slave_1: entered promiscuous mode [ 2739.110034][ T3205] 8021q: adding VLAN 0 to HW filter on device eth4 [ 2739.451385][ T4407] hsr_slave_0: entered promiscuous mode [ 2739.509367][ T4407] hsr_slave_1: entered promiscuous mode [ 2739.553133][ T4407] debugfs: 'hsr0' already exists in 'hsr' [ 2739.565306][ T4407] Cannot create hsr debugfs directory [ 2747.423899][ T24] audit: type=1400 audit(2746.600:169): avc: denied { write } for pid=4506 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2751.048879][ T4403] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2751.227940][ T24] audit: type=1400 audit(2750.410:170): avc: denied { write } for pid=4510 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2751.498012][ T4403] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2751.628406][ T4403] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2751.987379][ T4403] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2752.076602][ T4403] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2752.330713][ T4403] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2752.528196][ T4403] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2752.912640][ T4403] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2755.751416][ T3205] 8021q: adding VLAN 0 to HW filter on device eth5 [ 2757.470209][ T4407] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 2757.901793][ T4407] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2757.953518][ T4407] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 2758.321738][ T4407] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2758.403370][ T4407] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 2758.786737][ T4407] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2758.843216][ T4407] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 2759.199796][ T4407] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2773.475195][ T24] audit: type=1400 audit(2772.620:171): avc: denied { write } for pid=4535 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2780.866279][ T24] audit: type=1400 audit(2780.050:172): avc: denied { write } for pid=4544 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2781.637919][ T4403] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2785.580285][ T3205] 8021q: adding VLAN 0 to HW filter on device eth6 [ 2786.679235][ T4407] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2799.177019][ T24] audit: type=1400 audit(2798.370:173): avc: denied { write } for pid=4556 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2807.972803][ T24] audit: type=1400 audit(2807.160:174): avc: denied { write } for pid=4564 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2813.352042][ T3205] 8021q: adding VLAN 0 to HW filter on device eth7 [ 2830.185146][ T24] audit: type=1400 audit(2829.380:175): avc: denied { write } for pid=4577 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2838.747117][ T24] audit: type=1400 audit(2837.920:176): avc: denied { write } for pid=4587 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2843.270477][ T3205] 8021q: adding VLAN 0 to HW filter on device eth8 [ 2874.299110][ T4403] veth0_vlan: entered promiscuous mode [ 2875.514742][ T4403] veth1_vlan: entered promiscuous mode [ 2879.281651][ T4403] veth0_macvtap: entered promiscuous mode [ 2880.576861][ T4403] veth1_macvtap: entered promiscuous mode [ 2882.041474][ T4407] veth0_vlan: entered promiscuous mode [ 2883.760779][ T4407] veth1_vlan: entered promiscuous mode [ 2884.162298][ T24] audit: type=1400 audit(2883.290:177): avc: denied { write } for pid=4628 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2886.716112][ T4529] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2886.717439][ T4529] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2886.725615][ T4529] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2886.726469][ T4529] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2891.010516][ T4407] veth0_macvtap: entered promiscuous mode [ 2892.137804][ T4407] veth1_macvtap: entered promiscuous mode [ 2893.208723][ T24] audit: type=1400 audit(2892.370:178): avc: denied { write } for pid=4631 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2893.899040][ T24] audit: type=1400 audit(2893.070:179): avc: denied { unmount } for pid=4403 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 2896.716360][ T21] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2896.737658][ T21] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2896.826663][ T21] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2896.848137][ T21] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2917.442891][ T24] audit: type=1400 audit(2916.640:180): avc: denied { write } for pid=4643 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2927.606177][ T24] audit: type=1400 audit(2926.750:181): avc: denied { write } for pid=4653 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2951.216701][ T24] audit: type=1400 audit(2950.280:182): avc: denied { write } for pid=4662 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2962.196528][ T24] audit: type=1400 audit(2961.340:183): avc: denied { write } for pid=4669 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2983.124794][ T24] audit: type=1400 audit(2982.290:184): avc: denied { write } for pid=4682 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2993.152417][ T24] audit: type=1400 audit(2992.310:185): avc: denied { write } for pid=4688 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3013.443092][ T24] audit: type=1400 audit(3012.630:186): avc: denied { write } for pid=4698 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3025.255014][ T24] audit: type=1400 audit(3024.450:187): avc: denied { write } for pid=4708 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3044.171073][ T24] audit: type=1400 audit(3043.360:188): avc: denied { write } for pid=4719 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3052.925895][ T24] audit: type=1400 audit(3052.120:189): avc: denied { write } for pid=4725 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3091.578581][ T4750] kvm [4750]: Failed to find VMA for hva 0x21016000 [ 3094.956880][ T24] audit: type=1400 audit(3094.130:190): avc: denied { write } for pid=4749 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3104.495782][ T24] audit: type=1400 audit(3103.690:191): avc: denied { write } for pid=4755 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3127.067435][ T24] audit: type=1400 audit(3126.220:192): avc: denied { write } for pid=4764 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3138.499014][ T24] audit: type=1400 audit(3137.670:193): avc: denied { write } for pid=4773 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3156.747041][ T24] audit: type=1400 audit(3155.870:194): avc: denied { write } for pid=4776 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3166.653762][ T24] audit: type=1400 audit(3165.790:195): avc: denied { write } for pid=4785 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3394.099657][ T24] audit: type=1400 audit(3393.260:196): avc: denied { map } for pid=4882 comm="syz.3.327" path="pipe:[21014]" dev="pipefs" ino=21014 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 3468.030327][ T24] audit: type=1400 audit(3467.230:197): avc: denied { write } for pid=4917 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3477.990572][ T24] audit: type=1400 audit(3477.190:198): avc: denied { write } for pid=4925 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3568.917877][ T4966] kvm [4966]: Failed to find VMA for hva 0x20c01000 [ 3647.471928][ T5004] kvm [5004]: Failed to find VMA for hva 0x20dd1000 [ 3785.230969][ T24] audit: type=1400 audit(3784.420:199): avc: denied { write } for pid=5064 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3796.218042][ T24] audit: type=1400 audit(3795.420:200): avc: denied { write } for pid=5071 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3915.966643][ T5127] KVM: debugfs: duplicate directory 5127-10 [ 3916.441172][ T5127] KVM: debugfs: duplicate directory 5127-10 [ 4060.928201][ T4411] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4062.198131][ T4411] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4063.139861][ T4411] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4064.551153][ T4411] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4082.031379][ T4411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4082.537074][ T4411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4082.967957][ T4411] bond0 (unregistering): Released all slaves [ 4085.047903][ T4411] hsr_slave_0: left promiscuous mode [ 4085.155312][ T4411] hsr_slave_1: left promiscuous mode [ 4085.685153][ T4411] veth1_macvtap: left promiscuous mode [ 4085.688788][ T4411] veth0_macvtap: left promiscuous mode [ 4085.711739][ T4411] veth1_vlan: left promiscuous mode [ 4085.737985][ T4411] veth0_vlan: left promiscuous mode [ 4106.113583][ T5150] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4106.552613][ T5150] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4110.421528][ T4411] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4112.019614][ T4411] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4113.312518][ T4411] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4114.688674][ T4411] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4121.688384][ T24] audit: type=1400 audit(4120.880:201): avc: denied { write } for pid=5201 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4127.820294][ T24] audit: type=1400 audit(4127.020:202): avc: denied { write } for pid=5212 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4133.543551][ T4411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4133.643853][ T4411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4133.708003][ T4411] bond0 (unregistering): Released all slaves [ 4134.580560][ T3205] 8021q: adding VLAN 0 to HW filter on device eth9 [ 4134.937950][ T4411] hsr_slave_0: left promiscuous mode [ 4135.059908][ T4411] hsr_slave_1: left promiscuous mode [ 4135.415663][ T4411] veth1_macvtap: left promiscuous mode [ 4135.419303][ T4411] veth0_macvtap: left promiscuous mode [ 4135.441188][ T4411] veth1_vlan: left promiscuous mode [ 4135.468926][ T4411] veth0_vlan: left promiscuous mode [ 4158.697417][ T5150] hsr_slave_0: entered promiscuous mode [ 4158.751584][ T5150] hsr_slave_1: entered promiscuous mode [ 4166.588723][ T24] audit: type=1400 audit(4165.780:203): avc: denied { write } for pid=5225 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4166.707517][ T5160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4167.379938][ T5160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4171.586140][ T24] audit: type=1400 audit(4170.750:204): avc: denied { write } for pid=5228 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4174.333016][ T5150] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 4174.667359][ T5150] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4174.731255][ T5150] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 4174.970432][ T5150] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4175.131685][ T5150] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 4175.372572][ T5150] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4175.469726][ T5150] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 4175.759509][ T5150] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4175.990402][ T3205] 8021q: adding VLAN 0 to HW filter on device eth10 [ 4190.430540][ T24] audit: type=1400 audit(4189.630:205): avc: denied { write } for pid=5248 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4194.571898][ T5160] hsr_slave_0: entered promiscuous mode [ 4194.661599][ T5160] hsr_slave_1: entered promiscuous mode [ 4194.719694][ T5160] debugfs: 'hsr0' already exists in 'hsr' [ 4194.722785][ T5160] Cannot create hsr debugfs directory [ 4195.971391][ T24] audit: type=1400 audit(4195.150:206): avc: denied { write } for pid=5256 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4200.542226][ T3205] 8021q: adding VLAN 0 to HW filter on device eth11 [ 4201.553100][ T5150] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4211.523792][ T5160] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 4212.087534][ T5160] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4212.241193][ T5160] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 4212.680344][ T5160] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4212.829212][ T5160] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 4213.152166][ T5160] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4213.336068][ T5160] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 4213.737811][ T5160] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4223.449447][ T24] audit: type=1400 audit(4222.650:207): avc: denied { write } for pid=5273 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4233.166183][ T24] audit: type=1400 audit(4232.330:208): avc: denied { write } for pid=5283 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4238.941992][ T3205] 8021q: adding VLAN 0 to HW filter on device eth12 [ 4243.832078][ T5160] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4255.745071][ T24] audit: type=1400 audit(4254.940:209): avc: denied { write } for pid=5295 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4263.456628][ T24] audit: type=1400 audit(4262.630:210): avc: denied { write } for pid=5305 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4271.080807][ T3205] 8021q: adding VLAN 0 to HW filter on device eth13 [ 4291.687815][ T24] audit: type=1400 audit(4290.780:211): avc: denied { write } for pid=5321 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4299.896681][ T24] audit: type=1400 audit(4299.010:212): avc: denied { write } for pid=5331 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4305.100813][ T3205] 8021q: adding VLAN 0 to HW filter on device eth14 [ 4321.786189][ T24] audit: type=1400 audit(4320.970:213): avc: denied { write } for pid=5346 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4331.245964][ T24] audit: type=1400 audit(4330.420:214): avc: denied { write } for pid=5357 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4335.346824][ T5150] veth0_vlan: entered promiscuous mode [ 4336.740568][ T5150] veth1_vlan: entered promiscuous mode [ 4338.926564][ T3205] 8021q: adding VLAN 0 to HW filter on device eth15 [ 4340.973083][ T5150] veth0_macvtap: entered promiscuous mode [ 4341.709303][ T5150] veth1_macvtap: entered promiscuous mode [ 4346.038262][ T21] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4346.042052][ T21] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4346.057528][ T21] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4346.116551][ T4411] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4352.067193][ T24] audit: type=1400 audit(4351.220:215): avc: denied { write } for pid=5363 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4363.286533][ T24] audit: type=1400 audit(4362.410:216): avc: denied { write } for pid=5370 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4382.341872][ T5160] veth0_vlan: entered promiscuous mode [ 4383.860269][ T5160] veth1_vlan: entered promiscuous mode [ 4388.612556][ T5160] veth0_macvtap: entered promiscuous mode [ 4389.700365][ T5160] veth1_macvtap: entered promiscuous mode [ 4394.646326][ T5155] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4394.668447][ T5155] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4394.718884][ T5155] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4394.745755][ T5155] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4395.852876][ T24] audit: type=1400 audit(4395.020:217): avc: denied { write } for pid=5387 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4409.587952][ T24] audit: type=1400 audit(4408.760:218): avc: denied { write } for pid=5392 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4418.879331][ T3205] 8021q: adding VLAN 0 to HW filter on device eth16 [ 4480.046887][ T24] audit: type=1400 audit(4479.240:219): avc: denied { write } for pid=5426 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4488.506918][ T24] audit: type=1400 audit(4487.640:220): avc: denied { write } for pid=5430 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4508.811178][ T24] audit: type=1400 audit(4508.010:221): avc: denied { write } for pid=5433 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4523.675556][ T24] audit: type=1400 audit(4522.870:222): avc: denied { write } for pid=5443 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4531.651520][ T4807] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4534.719085][ T4807] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4537.372691][ T4807] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4540.683307][ T4807] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4565.986758][ T4807] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4566.685955][ T4807] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4566.908715][ T4807] bond0 (unregistering): Released all slaves [ 4571.438619][ T4807] hsr_slave_0: left promiscuous mode [ 4571.563135][ T4807] hsr_slave_1: left promiscuous mode [ 4572.420734][ T4807] veth1_macvtap: left promiscuous mode [ 4572.466756][ T4807] veth0_macvtap: left promiscuous mode [ 4572.468416][ T4807] veth1_vlan: left promiscuous mode [ 4572.485932][ T4807] veth0_vlan: left promiscuous mode [ 4579.265303][ T24] audit: type=1400 audit(4578.460:223): avc: denied { write } for pid=5466 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4587.213935][ T24] audit: type=1400 audit(4586.410:224): avc: denied { write } for pid=5471 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4608.603310][ T4529] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4610.396347][ T4529] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4612.166671][ T24] audit: type=1400 audit(4611.350:225): avc: denied { write } for pid=5476 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4612.873932][ T4529] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4614.483419][ T4529] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4619.947917][ T24] audit: type=1400 audit(4619.050:226): avc: denied { write } for pid=5483 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4640.330886][ T4529] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4640.550778][ T4529] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4640.713077][ T4529] bond0 (unregistering): Released all slaves [ 4642.258099][ T4529] hsr_slave_0: left promiscuous mode [ 4642.309217][ T4529] hsr_slave_1: left promiscuous mode [ 4642.716675][ T4529] veth1_macvtap: left promiscuous mode [ 4642.720664][ T4529] veth0_macvtap: left promiscuous mode [ 4642.759583][ T4529] veth1_vlan: left promiscuous mode [ 4642.763425][ T4529] veth0_vlan: left promiscuous mode [ 4676.418832][ T24] audit: type=1400 audit(4675.620:227): avc: denied { write } for pid=5508 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4677.917980][ T5434] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4678.193096][ T5434] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4682.977146][ T24] audit: type=1400 audit(4682.170:228): avc: denied { write } for pid=5518 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4689.290696][ T3205] 8021q: adding VLAN 0 to HW filter on device eth17 [ 4690.711082][ T5448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4691.042515][ T5448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4709.083675][ T24] audit: type=1400 audit(4708.280:229): avc: denied { write } for pid=5534 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4711.485399][ T5434] hsr_slave_0: entered promiscuous mode [ 4711.550007][ T5434] hsr_slave_1: entered promiscuous mode [ 4715.985234][ T24] audit: type=1400 audit(4715.180:230): avc: denied { write } for pid=5541 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4720.505752][ T3205] 8021q: adding VLAN 0 to HW filter on device eth18 [ 4723.421545][ T5448] hsr_slave_0: entered promiscuous mode [ 4723.481698][ T5448] hsr_slave_1: entered promiscuous mode [ 4723.566612][ T5448] debugfs: 'hsr0' already exists in 'hsr' [ 4723.570329][ T5448] Cannot create hsr debugfs directory [ 4727.425247][ T24] audit: type=1400 audit(4726.510:231): avc: denied { write } for pid=5545 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4732.646223][ T5434] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 4733.041671][ T5434] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4733.738436][ T5434] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 4733.987272][ T5434] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4734.446361][ T5434] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 4734.538475][ T24] audit: type=1400 audit(4733.670:232): avc: denied { write } for pid=5550 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4734.785655][ T5434] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4735.449500][ T5434] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 4735.662102][ T5434] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4747.790850][ T5448] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 4748.359751][ T5448] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4748.488694][ T5448] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 4748.908348][ T5448] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4749.123561][ T5448] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 4749.560474][ T5448] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4749.803289][ T5448] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 4750.257363][ T5448] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4774.128304][ T24] audit: type=1400 audit(4773.320:233): avc: denied { write } for pid=5580 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4774.547102][ T5434] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4785.246868][ T24] audit: type=1400 audit(4784.360:234): avc: denied { write } for pid=5588 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4786.243656][ T5448] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4791.973527][ T3205] 8021q: adding VLAN 0 to HW filter on device eth19 [ 4818.618101][ T24] audit: type=1400 audit(4817.800:235): avc: denied { write } for pid=5603 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4830.396565][ T24] audit: type=1400 audit(4829.550:236): avc: denied { write } for pid=5612 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4838.091549][ T3205] 8021q: adding VLAN 0 to HW filter on device eth20 [ 4851.192708][ T24] audit: type=1400 audit(4850.390:237): avc: denied { write } for pid=5623 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4860.225648][ T24] audit: type=1400 audit(4859.420:238): avc: denied { write } for pid=5633 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4889.725812][ T24] audit: type=1400 audit(4888.900:239): avc: denied { write } for pid=5649 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4899.943698][ T24] audit: type=1400 audit(4899.110:240): avc: denied { write } for pid=5659 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4906.422176][ T3205] 8021q: adding VLAN 0 to HW filter on device eth21 [ 4928.169398][ T5434] veth0_vlan: entered promiscuous mode [ 4929.822644][ T5434] veth1_vlan: entered promiscuous mode [ 4930.502171][ T24] audit: type=1400 audit(4929.680:241): avc: denied { write } for pid=5675 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4934.348034][ T5434] veth0_macvtap: entered promiscuous mode [ 4935.179643][ T5434] veth1_macvtap: entered promiscuous mode [ 4940.049980][ T3375] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4940.688002][ T21] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4940.707731][ T21] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4940.730508][ T21] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4943.607799][ T5448] veth0_vlan: entered promiscuous mode [ 4943.610905][ T24] audit: type=1400 audit(4942.740:242): avc: denied { write } for pid=5682 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4946.452351][ T5448] veth1_vlan: entered promiscuous mode [ 4951.682215][ T3205] 8021q: adding VLAN 0 to HW filter on device eth22 [ 4953.236899][ T5448] veth0_macvtap: entered promiscuous mode [ 4954.270121][ T5448] veth1_macvtap: entered promiscuous mode [ 4960.107414][ T3375] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4960.131651][ T3375] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4960.186514][ T3375] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4960.221859][ T3375] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4967.696667][ T24] audit: type=1400 audit(4966.830:243): avc: denied { write } for pid=5684 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4982.447603][ T24] audit: type=1400 audit(4981.620:244): avc: denied { write } for pid=5692 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5031.476751][ T24] audit: type=1400 audit(5030.600:245): avc: denied { write } for pid=5709 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5046.608663][ T24] audit: type=1400 audit(5045.790:246): avc: denied { write } for pid=5722 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5056.889520][ T3205] 8021q: adding VLAN 0 to HW filter on device eth23 [ 5099.280979][ T24] audit: type=1400 audit(5098.390:247): avc: denied { write } for pid=5737 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5113.658967][ T24] audit: type=1400 audit(5112.820:248): avc: denied { write } for pid=5748 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5123.738840][ T3205] 8021q: adding VLAN 0 to HW filter on device eth24 [ 5165.546356][ T24] audit: type=1400 audit(5164.740:249): avc: denied { write } for pid=5767 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5182.425678][ T24] audit: type=1400 audit(5181.610:250): avc: denied { write } for pid=5780 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5219.446325][ T24] audit: type=1400 audit(5218.620:251): avc: denied { write } for pid=5792 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5235.408644][ T24] audit: type=1400 audit(5234.570:252): avc: denied { write } for pid=5802 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5282.372558][ T24] audit: type=1400 audit(5281.550:253): avc: denied { write } for pid=5817 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5298.426656][ T24] audit: type=1400 audit(5297.590:254): avc: denied { write } for pid=5828 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5359.431114][ T24] audit: type=1400 audit(5358.600:255): avc: denied { write } for pid=5849 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5375.185859][ T24] audit: type=1400 audit(5374.330:256): avc: denied { write } for pid=5865 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5427.496877][ T24] audit: type=1400 audit(5426.560:257): avc: denied { write } for pid=5878 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5441.767540][ T24] audit: type=1400 audit(5440.850:258): avc: denied { write } for pid=5887 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5465.458823][ T24] audit: type=1400 audit(5464.640:259): avc: denied { write } for pid=5895 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5479.900068][ T24] audit: type=1400 audit(5479.090:260): avc: denied { write } for pid=5903 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5544.389198][ T24] audit: type=1400 audit(5543.430:261): avc: denied { write } for pid=5930 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5556.646127][ T24] audit: type=1400 audit(5555.840:262): avc: denied { write } for pid=5940 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5556.871902][ T5879] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5559.360756][ T5879] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5580.196491][ T24] audit: type=1400 audit(5579.380:263): avc: denied { write } for pid=5947 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5584.522182][ T5891] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5588.502730][ T5891] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5593.257397][ T24] audit: type=1400 audit(5592.310:264): avc: denied { write } for pid=5955 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5619.493226][ T5879] hsr_slave_0: entered promiscuous mode [ 5619.715684][ T5879] hsr_slave_1: entered promiscuous mode [ 5619.816202][ T5879] debugfs: 'hsr0' already exists in 'hsr' [ 5619.827101][ T5879] Cannot create hsr debugfs directory [ 5644.296157][ T24] audit: type=1400 audit(5643.460:265): avc: denied { write } for pid=5974 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5652.251699][ T5891] hsr_slave_0: entered promiscuous mode [ 5652.468654][ T5891] hsr_slave_1: entered promiscuous mode [ 5652.590571][ T5891] debugfs: 'hsr0' already exists in 'hsr' [ 5652.686204][ T5891] Cannot create hsr debugfs directory [ 5657.950793][ T24] audit: type=1400 audit(5657.100:266): avc: denied { write } for pid=5979 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5662.226599][ T5879] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 5663.010091][ T5879] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5665.630053][ T5879] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 5666.329651][ T5879] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5666.443781][ T5879] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 5667.067598][ T5879] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5668.549033][ T5879] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 5669.143851][ T5879] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5697.367671][ T24] audit: type=1400 audit(5696.540:267): avc: denied { write } for pid=5991 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5697.631293][ T5891] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 5698.436797][ T5891] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5698.639670][ T5891] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 5699.456763][ T5891] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5699.830043][ T5891] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 5700.569745][ T5891] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5700.896181][ T5891] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 5701.473811][ T5891] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5714.863641][ T24] audit: type=1400 audit(5714.050:268): avc: denied { write } for pid=6007 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5738.341680][ T5879] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5752.916767][ T24] audit: type=1400 audit(5752.070:269): avc: denied { write } for pid=6018 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5758.568237][ T5891] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5771.366925][ T24] audit: type=1400 audit(5770.500:270): avc: denied { write } for pid=6027 comm="rm" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5809.958690][ T24] audit: type=1400 audit(5809.100:271): avc: denied { write } for pid=6036 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=92 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5826.580099][ T26] INFO: task syz.7.435:5867 blocked for more than 430 seconds. [ 5826.645908][ T26] Not tainted syzkaller #0 [ 5826.705974][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 5826.706822][ T26] task:syz.7.435 state:D stack:0 pid:5867 tgid:5867 ppid:5448 task_flags:0x400040 flags:0x00000011 [ 5826.708922][ T26] Call trace: [ 5826.709419][ T26] __switch_to+0x5e0/0xb70 (T) [ 5826.711645][ T26] __schedule+0x2554/0x3828 [ 5826.712189][ T26] schedule+0xac/0x278 [ 5826.712652][ T26] schedule_timeout+0x68/0x1ec [ 5826.713125][ T26] do_wait_for_common+0x270/0x428 [ 5826.713568][ T26] wait_for_completion+0x44/0x5c SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 5826.966394][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 5826.972116][ T26] synchronize_srcu+0x668/0x8dc [ 5826.972921][ T26] mmu_notifier_unregister+0x320/0x428 [ 5826.973441][ T26] kvm_put_kvm+0x69c/0xbbc [ 5826.973903][ T26] kvm_vm_release+0x58/0x78 [ 5827.107630][ T26] __fput+0x4ac/0x978 [ 5827.108868][ T26] ____fput+0x20/0x30 [ 5827.109360][ T26] task_work_run+0x1b8/0x250 [ 5827.109862][ T26] exit_to_user_mode_loop+0x110/0x188 [ 5827.110350][ T26] el0_svc+0x184/0x238 [ 5827.110847][ T26] el0t_64_sync_handler+0x84/0x12c [ 5827.111319][ T26] el0t_64_sync+0x198/0x19c [ 5827.227924][ T26] [ 5827.227924][ T26] Showing all locks held in the system: [ 5827.249865][ T26] 2 locks held by kworker/u4:1/21: [ 5827.250628][ T26] 1 lock held by khungtaskd/26: [ 5827.251028][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 5827.253538][ T26] 2 locks held by getty/3234: [ 5827.253921][ T26] #0: 42f00000128b20a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 5827.352264][ T26] #1: 5cff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 5827.354066][ T26] 2 locks held by syz-executor/3363: [ 5827.492594][ T26] 3 locks held by kworker/u4:0/3375: [ 5827.505582][ T26] 2 locks held by kworker/u4:3/4034: [ 5827.506067][ T26] 3 locks held by kworker/u4:5/4405: [ 5827.506375][ T26] 3 locks held by kworker/u4:7/4411: [ 5827.506714][ T26] 3 locks held by kworker/u4:9/4529: [ 5827.507038][ T26] 4 locks held by kworker/0:7/4647: [ 5827.507343][ T26] 3 locks held by kworker/u4:2/5155: [ 5827.508170][ T26] 3 locks held by kworker/u4:8/5162: [ 5827.508544][ T26] 2 locks held by kworker/u4:10/5261: [ 5827.508877][ T26] #0: 94f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 5827.510907][ T26] #1: ffff80008ecb7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 5827.512617][ T26] 3 locks held by kworker/u4:12/5451: [ 5827.513002][ T26] 2 locks held by syz.6.434/5853: [ 5827.513333][ T26] 3 locks held by kworker/u4:6/5929: [ 5827.513690][ T26] 4 locks held by kworker/u4:11/6009: [ 5827.676184][ T26] 3 locks held by kworker/u4:15/6034: [ 5827.676910][ T26] #0: fff0000074d280e0 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x364/0x3828 [ 5827.678683][ T26] #1: fff0000074d13208 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x6c/0x6e8 [ 5827.680344][ T26] #2: fff0000074d14b58 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x5cc/0xe90 [ 5827.682035][ T26] 1 lock held by rm/6045: [ 5827.682346][ T26] 2 locks held by modprobe/6047: [ 5827.805828][ T26] [ 5827.806492][ T26] ============================================= [ 5827.806492][ T26] [ 5827.807523][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 5827.812753][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 5827.814304][ T26] Hardware name: linux,dummy-virt (DT) [ 5827.815269][ T26] Call trace: [ 5827.816140][ T26] show_stack+0x2c/0x3c (C) [ 5827.817281][ T26] __dump_stack+0x30/0x40 [ 5827.818347][ T26] dump_stack_lvl+0x30/0x12c [ 5827.819409][ T26] dump_stack+0x1c/0x28 [ 5827.820431][ T26] vpanic+0x4cc/0x844 [ 5827.821367][ T26] vpanic+0x0/0x844 [ 5827.822237][ T26] hung_task_panic+0x0/0x2c [ 5827.823292][ T26] kthread+0x4d4/0x51c [ 5827.824288][ T26] ret_from_fork+0x10/0x20 [ 5827.826228][ T26] Kernel Offset: disabled [ 5827.827047][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 5827.829920][ T26] Memory Limit: none [ 5827.832275][ T26] Rebooting in 86400 seconds..