Extracting prog: 42m18.214735038s
Minimizing prog: 6h47m7.291040572s
Simplifying prog options: 0s
Extracting C: 5m52.160796024s
Simplifying C: 38m56.967579999s


extracting reproducer from 12 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 45s
testing program (duration=45s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU-mmap$KVM_VCPU-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CHECK_EXTENSION
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)

program did not crash
single: failed to extract reproducer
bisect: bisecting 12 programs with base timeout 45s
testing program (duration=48s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): [6, 8, 8, 13, 5, 2, 3, 3, 3, 4, 30, 14]
detailed listing:
executing program 1:
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0)
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x10482, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0x5452, 0x2000fdfd)
r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000000)={0xfffffffffffffffd, 0x8000000000000001})
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x2, 0x0, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x1, r2})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x10482, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0x5452, 0x2000fdfd) (async)
ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000000)={0xfffffffffffffffd, 0x8000000000000001}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x2, 0x0, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x1, r2}) (async)
executing program 1:
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000000)={0x3, 0x0, [{0x8, 0x1, 0x0, 0x0, @adapter={0x4, 0x5, 0x5, 0x7fffffff, 0x7}}, {0x2d60, 0x2, 0x1, 0x0, @irqchip={0x7ff, 0x6}}, {0x2, 0x5, 0x1, 0x0, @sint={0x3, 0x4}}]})
r0 = eventfd2(0x3, 0x80800)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x69)
r2 = eventfd2(0x5, 0x801)
r3 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
ioctl$KVM_ARM_VCPU_FINALIZE(r3, 0x4004aec2, &(0x7f0000000140)=0x6)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000000c0)={r0, 0x40, 0x1, r2})
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r1, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r1, 0x4020aeae, &(0x7f0000000040)={0x4, 0x19})
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x7)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0)
r2 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0xfffffffffffffffd)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r2, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000000))
executing program 1:
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f00006b3000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (fail_nth: 3)
executing program 0:
munmap(&(0x7f0000584000/0x800000)=nil, 0x800000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) (fail_nth: 9)
executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8521, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0x5452, 0x3a)
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000000)=0x2f)
executing program 0:
close(0xffffffffffffffff) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x9)
executing program 1:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bff000/0x400000)=nil) (fail_nth: 9)
executing program 0:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
ioctl$KVM_IOEVENTFD(r1, 0xc0189436, &(0x7f0000000080)={0x0, 0x0, 0x5dabdef0cbf6a717, 0xffffffffffffffff, 0x5})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x1237c0, 0x0)
executing program 1:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)
executing program 0:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x10000, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0x801c581f, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x18)
r3 = eventfd2(0x1, 0x80802)
r4 = eventfd2(0x7fff, 0x0)
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000540)={r3, 0x8, 0x2, r4})
r5 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000080)=[@its_setup={0x82, 0x28, {0x3, 0x2, 0x390}}, @smc={0x1e, 0x40, {0x8400000e, [0x9, 0x3, 0x4, 0x8, 0x7d]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x0, 0x2, 0xe, 0x800, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x48, 0xc58, 0x1}}, @code={0xa, 0xcc, {"a0409fd20040b0f2810080d2a20080d2430180d2240080d2020000d4a06d88d20080b8f2610180d2020180d2c30180d2e40080d2020000d40000181ee0b586d200e0b8f2610080d2420080d2830080d2640080d2020000d4007008d520768fd20020b8f2610180d2a20080d2c30180d2840080d2020000d4601d8cd200e0b8f2a10080d2c20080d2a30180d2a40080d2020000d41f0000ea005682d20020b0f2210180d2c20080d2230080d2240080d2020000d400d4a07e"}}, @hvc={0x32, 0x40, {0xc4000004, [0xffffffff000, 0x80000001, 0x401, 0x4, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c212, 0xffffffff}}, @mrs={0xbe, 0x18, {0x603000000013806c}}, @code={0xa, 0xb4, {"007008d500848fd20000b0f2210080d2e20180d2c30180d2640080d2020000d4000008d5e0bb8bd20020b0f2a10080d2620180d2630080d2e40080d2020000d4000028d5604395d20080b0f2a10080d2220080d2430180d2840080d2020000d4009386d20040b8f2e10180d2820180d2c30080d2e40180d2020000d40020004fc0968bd20040b0f2010080d2420080d2630080d2640180d2020000d4000008d5"}}, @smc={0x1e, 0x40, {0xc5000021, [0x0, 0x8, 0x100, 0x101, 0x100000000]}}, @smc={0x1e, 0x40, {0x4, [0x8, 0x0, 0x46e, 0x1, 0x1]}}, @code={0xa, 0x9c, {"007008d540138cd20000b0f2010080d2e20180d2c30080d2240080d2020000d4a0a691d20060b0f2010180d2220180d2230080d2240080d2020000d4000028d580ff98d20060b8f2a10180d2420180d2230180d2840180d2020000d400d8a12e000060880000003ae08082d200e0b8f2810180d2020180d2a30180d2640080d2020000d4007008d5"}}], 0x3d4}, &(0x7f0000000480)=[@featur2={0x1, 0x10}], 0x1)
ioctl$KVM_GET_REG_LIST(r7, 0xc008aeb0, &(0x7f00000004c0)={0x8, [0x9, 0x0, 0x2, 0x3, 0xe, 0x100000000, 0x100, 0x5]})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000680)="38ce8347fc1e86008cfc72bb352c8659dcc9225b48cb5cb00c73b0b33018748e73f7f1f493e89c859e17625ad1b19ca88da9c227db3473a7fd4ce992bfc316bd22ccc646cd69c728", 0x0, 0x48)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000bff000/0x400000)=nil)

program did not crash
replaying the whole log did not cause a kernel crash
single: executing 1 programs separately with timeout 5m0s
testing program (duration=5m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU-mmap$KVM_VCPU-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CHECK_EXTENSION
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)

program did not crash
single: failed to extract reproducer
bisect: bisecting 12 programs with base timeout 5m0s
testing program (duration=5m3s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): [6, 8, 8, 13, 5, 2, 3, 3, 3, 4, 30, 14]
detailed listing:
executing program 1:
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000)
mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b6565d2f1, 0xffffffffffffffff, 0x0)
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x10482, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0x5452, 0x2000fdfd)
r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000000)={0xfffffffffffffffd, 0x8000000000000001})
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x2, 0x0, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x1, r2})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x10482, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0x5452, 0x2000fdfd) (async)
ioctl$KVM_CREATE_GUEST_MEMFD(r0, 0xc040aed4, &(0x7f0000000000)={0xfffffffffffffffd, 0x8000000000000001}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION2(r1, 0x40a0ae49, &(0x7f0000000080)={0x2, 0x0, 0x4000, 0x2000, &(0x7f0000ffd000/0x2000)=nil, 0x1, r2}) (async)
executing program 1:
ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000000)={0x3, 0x0, [{0x8, 0x1, 0x0, 0x0, @adapter={0x4, 0x5, 0x5, 0x7fffffff, 0x7}}, {0x2d60, 0x2, 0x1, 0x0, @irqchip={0x7ff, 0x6}}, {0x2, 0x5, 0x1, 0x0, @sint={0x3, 0x4}}]})
r0 = eventfd2(0x3, 0x80800)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x69)
r2 = eventfd2(0x5, 0x801)
r3 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece)
ioctl$KVM_ARM_VCPU_FINALIZE(r3, 0x4004aec2, &(0x7f0000000140)=0x6)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f00000000c0)={r0, 0x40, 0x1, r2})
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r1, 0x0)
ioctl$KVM_ARM_VCPU_INIT(r1, 0x4020aeae, &(0x7f0000000040)={0x4, 0x19})
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x7)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0)
r2 = syz_kvm_add_vcpu$arm64(0x0, 0x0, &(0x7f0000000840)=[@featur1={0x1, 0xc7}], 0x1)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0xfffffffffffffffd)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, r2, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x8040ae9f, &(0x7f0000000000))
executing program 1:
munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f00006b3000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (fail_nth: 3)
executing program 0:
munmap(&(0x7f0000584000/0x800000)=nil, 0x800000)
mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x1000000) (fail_nth: 9)
executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8521, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0x5452, 0x3a)
ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000000)=0x2f)
executing program 0:
close(0xffffffffffffffff) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x9)
executing program 1:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bff000/0x400000)=nil) (fail_nth: 9)
executing program 0:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
ioctl$KVM_IOEVENTFD(r1, 0xc0189436, &(0x7f0000000080)={0x0, 0x0, 0x5dabdef0cbf6a717, 0xffffffffffffffff, 0x5})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x1237c0, 0x0)
executing program 1:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)
executing program 0:
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x10000, 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0x801c581f, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x18)
r3 = eventfd2(0x1, 0x80802)
r4 = eventfd2(0x7fff, 0x0)
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000540)={r3, 0x8, 0x2, r4})
r5 = ioctl$KVM_CREATE_VM(r0, 0xae03, 0xbb)
r6 = mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0)
r7 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000080)=[@its_setup={0x82, 0x28, {0x3, 0x2, 0x390}}, @smc={0x1e, 0x40, {0x8400000e, [0x9, 0x3, 0x4, 0x8, 0x7d]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x0, 0x0, 0x2, 0xe, 0x800, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x48, 0xc58, 0x1}}, @code={0xa, 0xcc, {"a0409fd20040b0f2810080d2a20080d2430180d2240080d2020000d4a06d88d20080b8f2610180d2020180d2c30180d2e40080d2020000d40000181ee0b586d200e0b8f2610080d2420080d2830080d2640080d2020000d4007008d520768fd20020b8f2610180d2a20080d2c30180d2840080d2020000d4601d8cd200e0b8f2a10080d2c20080d2a30180d2a40080d2020000d41f0000ea005682d20020b0f2210180d2c20080d2230080d2240080d2020000d400d4a07e"}}, @hvc={0x32, 0x40, {0xc4000004, [0xffffffff000, 0x80000001, 0x401, 0x4, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c212, 0xffffffff}}, @mrs={0xbe, 0x18, {0x603000000013806c}}, @code={0xa, 0xb4, {"007008d500848fd20000b0f2210080d2e20180d2c30180d2640080d2020000d4000008d5e0bb8bd20020b0f2a10080d2620180d2630080d2e40080d2020000d4000028d5604395d20080b0f2a10080d2220080d2430180d2840080d2020000d4009386d20040b8f2e10180d2820180d2c30080d2e40180d2020000d40020004fc0968bd20040b0f2010080d2420080d2630080d2640180d2020000d4000008d5"}}, @smc={0x1e, 0x40, {0xc5000021, [0x0, 0x8, 0x100, 0x101, 0x100000000]}}, @smc={0x1e, 0x40, {0x4, [0x8, 0x0, 0x46e, 0x1, 0x1]}}, @code={0xa, 0x9c, {"007008d540138cd20000b0f2010080d2e20180d2c30080d2240080d2020000d4a0a691d20060b0f2010180d2220180d2230080d2240080d2020000d4000028d580ff98d20060b8f2a10180d2420180d2230180d2840180d2020000d400d8a12e000060880000003ae08082d200e0b8f2810180d2020180d2a30180d2640080d2020000d4007008d5"}}], 0x3d4}, &(0x7f0000000480)=[@featur2={0x1, 0x10}], 0x1)
ioctl$KVM_GET_REG_LIST(r7, 0xc008aeb0, &(0x7f00000004c0)={0x8, [0x9, 0x0, 0x2, 0x3, 0xe, 0x100000000, 0x100, 0x5]})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r6, 0x20, &(0x7f0000000680)="38ce8347fc1e86008cfc72bb352c8659dcc9225b48cb5cb00c73b0b33018748e73f7f1f493e89c859e17625ad1b19ca88da9c227db3473a7fd4ce992bfc316bd22ccc646cd69c728", 0x0, 0x48)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000bff000/0x400000)=nil)

program did not crash
replaying the whole log did not cause a kernel crash
single: executing 1 programs separately with timeout 16m0s
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU-mmap$KVM_VCPU-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CHECK_EXTENSION
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)

program crashed: kernel panic: Unhandled exception
single: successfully extracted reproducer
found reproducer with 30 syscalls
minimizing guilty program
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU-mmap$KVM_VCPU-ioctl$KVM_ARM_PREFERRED_TARGET
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)
ioctl$KVM_ARM_PREFERRED_TARGET(r5, 0x8020aeaf, &(0x7f0000001d00))

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU-mmap$KVM_VCPU
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
mmap$KVM_VCPU(&(0x7f0000ae5000/0x2000)=nil, 0x0, 0x3000003, 0x2012, r6, 0x0)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET-ioctl$KVM_CREATE_VCPU
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64-ioctl$KVM_ARM_PREFERRED_TARGET
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)
ioctl$KVM_ARM_PREFERRED_TARGET(r0, 0x8020aeaf, &(0x7f0000001cc0))

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB-syz_kvm_setup_cpu$arm64
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f00009bf000/0x400000)=nil, &(0x7f0000001c40)=[{0x0, &(0x7f0000001800)=[@svc={0x122, 0x40, {0xc4000004, [0x5, 0x6, 0x7, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @hvc={0x32, 0x40, {0x8400000a, [0x7f, 0x297, 0xa9ab, 0x6, 0x55]}}, @mrs={0xbe, 0x18, {0x6030000000138036}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x4, 0x10, 0x3, 0x80, 0x4}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x2e}}, @memwrite={0x6e, 0x30, @generic={0xdddd0000, 0xfb5, 0x5, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x40, 0x8, 0x8}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x159}}, @irq_setup={0x46, 0x18, {0x4, 0x2be}}, @smc={0x1e, 0x40, {0xc5000020, [0x5, 0x7, 0x4, 0x5, 0x1]}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x4, 0x8, 0x9, 0x4, 0x1}}, @smc={0x1e, 0x40, {0x40, [0x17fd00, 0x8, 0x8, 0x4, 0x6]}}, @uexit={0x0, 0x18, 0xdb96}, @its_send_cmd={0xaa, 0x28, {0xc, 0x0, 0x2, 0x7, 0x5, 0x9, 0x4}}, @uexit={0x0, 0x18, 0x3d3}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0xa, 0x3, 0xff, 0x4}}, @hvc={0x32, 0x40, {0x8400000d, [0x4, 0x5, 0x6, 0x4, 0xfffffffffffffff7]}}, @svc={0x122, 0x40, {0xc400000d, [0x9, 0x80000000, 0x66f, 0xa96, 0x6]}}, @msr={0x14, 0x20, {0x603000000013de92, 0xa96}}, @smc={0x1e, 0x40, {0x84000005, [0x6, 0xc4, 0x1, 0x7, 0x2]}}, @msr={0x14, 0x20, {0x603000000013e534, 0x80000001}}, @smc={0x1e, 0x40, {0xc4000012, [0x5ec, 0xffffffffffffff81, 0x5, 0x8, 0x4]}}, @eret={0xe6, 0x18, 0x4}], 0x420}], 0x1, 0x0, &(0x7f0000001c80)=[@featur1={0x1, 0x9}], 0x1)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM-ioctl$KVM_DIRTY_TLB
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)
ioctl$KVM_DIRTY_TLB(r1, 0x4010aeaa, &(0x7f00000017c0)={0x1, 0x3})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB-ioctl$KVM_CHECK_EXTENSION_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})
ioctl$KVM_CHECK_EXTENSION_VM(r4, 0xae03, 0x5)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM-ioctl$KVM_DIRTY_TLB
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))
ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000001780)={0xfffffffffffffff7, 0x8})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG-ioctl$KVM_CAP_PTP_KVM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})
ioctl$KVM_CAP_PTP_KVM(r4, 0x4068aea3, &(0x7f0000001700))

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT-ioctl$KVM_SET_ONE_REG
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)
ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000016c0)=@arm64_fp={0x6040000000100058, &(0x7f0000001680)=0x1})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64-ioctl$KVM_S390_VCPU_FAULT
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)
ioctl$KVM_S390_VCPU_FAULT(r1, 0x4008ae52, &(0x7f0000001640)=0x2)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64-syz_kvm_setup_cpu$arm64
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)
syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f00000015c0)=[{0x0, &(0x7f0000001280)=[@smc={0x1e, 0x40, {0x84000008, [0x5, 0x7, 0xd2f6, 0x4, 0x9]}}, @mrs={0xbe, 0x18, {0x780bb8d16d0d76dd}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfff8, 0x1, 0x1}}, @irq_setup={0x46, 0x18, {0x4, 0x145}}, @mrs={0xbe, 0x18, {0x6030000000138005}}, @mrs={0xbe, 0x18, {0x603000000013df77}}, @svc={0x122, 0x40, {0x40, [0x64862c9c, 0x4, 0xffff, 0x6, 0x5]}}, @code={0xa, 0xb4, {"0088601ee04188d20000b8f2010180d2820180d2430080d2e40180d2020000d420b080d20040b8f2e10180d2620080d2c30080d2840180d2020000d4e03b94d200e0b0f2e10080d2020080d2e30180d2e40080d2020000d40008c09ae0638cd20080b8f2210180d2820180d2230180d2640080d2020000d40020400c007008d5000008d540a59bd200e0b8f2210180d2620180d2830080d2040080d2020000d4"}}, @mrs={0xbe, 0x18, {0xdd64}}, @mrs={0xbe, 0x18, {0x603000000013c800}}, @hvc={0x32, 0x40, {0xc4000010, [0x1, 0x1, 0x10000, 0x5, 0xb]}}, @svc={0x122, 0x40, {0x84000014, [0x9, 0x100000001, 0x81, 0x2, 0xffffffff]}}, @smc={0x1e, 0x40, {0x6000000, [0x18a, 0x1, 0x7, 0x1, 0x5]}}, @its_setup={0x82, 0x28, {0x0, 0x4, 0x1c6}}, @its_setup={0x82, 0x28, {0x0, 0x2, 0x2ca}}], 0x304}], 0x1, 0x0, &(0x7f0000001600)=[@featur1={0x1, 0x49}], 0x1)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_setup_cpu$arm64
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})
syz_kvm_setup_cpu$arm64(r4, r1, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000001200)=[{0x0, &(0x7f0000000d00)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x165}}, @uexit={0x0, 0x18, 0x10000}, @its_setup={0x82, 0x28, {0x4, 0x4, 0x288}}, @svc={0x122, 0x40, {0x3000000, [0x7, 0x2, 0x100000001, 0xe95f, 0xffffffff7fffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x12a}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x26c}}, @code={0xa, 0x54, {"0080000f000008d50000271e0084df0d008008d500ad92d200e0b8f2c10080d2420080d2830180d2640180d2020000d4000008d5007008d5007008d5008008d5"}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x0, 0x1, 0xd, 0x9, 0x1, 0x4}}, @smc={0x1e, 0x40, {0x31000000, [0x0, 0x83, 0x4, 0x3, 0x2]}}, @msr={0x14, 0x20, {0x603000000013c4f1, 0x10000000000000}}, @msr={0x14, 0x20, {0x603000000013802f, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b1, 0x986e}}, @smc={0x1e, 0x40, {0x0, [0x7f, 0x4, 0x7, 0x9, 0x4]}}, @msr={0x14, 0x20, {0x6030000000138075, 0x6}}, @uexit={0x0, 0x18, 0xdc64}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x0, 0xfffffffffffffffa, 0x2}}, @uexit={0x0, 0x18, 0x8}, @mrs={0xbe, 0x18, {0x603000000013e641}}, @mrs={0xbe, 0x18, {0x603000000013c032}}, @code={0xa, 0x54, {"00000028007008d50040df0d000028d5000020ab007008d5e0a985d20080b0f2c10080d2e20180d2230180d2a40080d2020000d40078210e007008d5007008d5"}}, @irq_setup={0x46, 0x18, {0x1, 0x1bb}}, @uexit={0x0, 0x18, 0x9}, @eret={0xe6, 0x18, 0x80}, @its_send_cmd={0xaa, 0x28, {0xa, 0x1, 0x1, 0x9, 0xd, 0x5, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x397}}, @irq_setup={0x46, 0x18, {0x0, 0x1f4}}, @mrs={0xbe, 0x18, {0x603000000013e298}}, @uexit={0x0, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x2, 0xe, 0x5, 0x200}}, @code={0xa, 0x84, {"000028d5808a94d200c0b8f2810080d2820080d2230180d2c40080d2020000d4007008d5e09080d200a0b0f2210180d2020080d2c30080d2c40180d2020000d4007008d50000709e007008d50000c0dae09f8fd20020b0f2010080d2820180d2030080d2a40080d2020000d4008008d5"}}], 0x4c4}], 0x1, 0x0, &(0x7f0000001240)=[@featur2={0x1, 0x2}], 0x1)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_GUEST_DEBUG
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
r5 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4208ae9b, &(0x7f0000000c80)={0x10003, 0x0, [0x7, 0x0, 0x0, 0x9, 0xb594, 0x76e1, 0x3, 0xb]})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG-syz_kvm_add_vcpu$arm64
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000c00)={0x0, &(0x7f0000000840)=[@hvc={0x32, 0x40, {0x84000001, [0xd1, 0xff, 0xed, 0xb, 0x7fff]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x16c}}, @svc={0x122, 0x40, {0xc4000001, [0x7, 0x4, 0x6, 0x0, 0x801b]}}, @its_setup={0x82, 0x28, {0x2, 0x3, 0x51}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x1b4}}, @irq_setup={0x46, 0x18, {0x3, 0x36e}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x200, 0x5000000000000, 0x8}}, @msr={0x14, 0x20, {0x603000000013e664, 0x10001}}, @svc={0x122, 0x40, {0xc4000014, [0x9, 0x7, 0x7, 0xffffffffffff8a03, 0x6772]}}, @msr={0x14, 0x20, {0x603000000013c2aa, 0x100}}, @its_send_cmd={0xaa, 0x28, {0xc, 0x1, 0x4, 0x0, 0x9, 0xf5efc17a, 0x3}}, @uexit={0x0, 0x18, 0x8000000000000001}, @uexit={0x0, 0x18, 0xfffffffffffffe00}, @svc={0x122, 0x40, {0x84000006, [0x1000, 0x482b, 0x8, 0x10]}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x0, 0x10, 0x5, 0x9, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x2, 0x1, 0x7, 0x7fff, 0x2}}, @irq_setup={0x46, 0x18, {0x3, 0x77}}, @mrs={0xbe, 0x18, {0x603000000013e681}}, @msr={0x14, 0x20, {0x603000000013e710, 0xf014}}, @hvc={0x32, 0x40, {0x84000014, [0x8, 0x0, 0x3, 0xffffffffcf55238a, 0xca1]}}, @memwrite={0x6e, 0x30, @generic={0x0, 0x8e9, 0x1, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x1, 0x4, 0x7, 0xd0, 0x1ff, 0x4}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x5}], 0x3c0}, &(0x7f0000000c40)=[@featur2], 0x1)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close-ioctl$KVM_SET_ONE_REG
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)
ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000800)=@arm64_ccsidr={0x602000000011000c, &(0x7f00000007c0)=0x9})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS-close
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})
close(r1)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION-ioctl$KVM_IRQ_LINE_STATUS
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000780)={0x5, 0x1})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST-ioctl$KVM_GET_API_VERSION
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})
ioctl$KVM_GET_API_VERSION(r3, 0xae00, 0x0)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_GET_REG_LIST
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)
ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000700)={0xa, [0x4, 0x3, 0x4, 0x1ff, 0x0, 0x1000, 0x6e, 0x3, 0x6, 0x401]})

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-openat$kvm
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)

program did not crash
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-mmap$KVM_VCPU-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
mmap$KVM_VCPU(&(0x7f0000ff9000/0x4000)=nil, r2, 0x1000000, 0x30, r0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x33)

program did not crash
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-ioctl$KVM_GET_VCPU_MMAP_SIZE-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-ioctl$KVM_SET_REGS-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000600)={[0x1, 0x10, 0x8, 0xfffffffffffffffc, 0x6, 0x6d, 0x5, 0x101, 0x1, 0x7ff, 0x3, 0xfffffffffffffffa, 0x7ff, 0x5, 0x6, 0x6e4e], 0x4000, 0x2})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-ioctl$KVM_SET_REGS-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000540)={[0xc, 0x6, 0x100, 0x9, 0x6, 0x80000001, 0x0, 0x4000000000000000, 0x100000001, 0x7fff, 0x1, 0x3, 0x9, 0x3, 0x2, 0x8], 0xdddd0000, 0x200200})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-syz_kvm_add_vcpu$arm64-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000080)=[@mrs={0xbe, 0x18, {0x603000000013deff}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x154}}, @smc={0x1e, 0x40, {0x8600ff01, [0x8, 0x0, 0x1ff, 0xa6, 0x8]}}, @msr={0x14, 0x20, {0x603000000013c664, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x50, 0x48af, 0xc}}, @irq_setup={0x46, 0x18, {0x4, 0x33}}, @code={0xa, 0x9c, {"20d588d20080b0f2010180d2420080d2630180d2e40180d2020000d4c0bb9bd20040b0f2410080d2e20180d2430080d2840180d2020000d4008060c8008008d520a994d200e0b8f2210080d2020080d2030180d2440180d2020000d40000681e0028202e0088202e0060df0c00b389d200e0b8f2610180d2620180d2430080d2a40080d2020000d4"}}, @svc={0x122, 0x40, {0xc4000010, [0x2, 0x0, 0xfc0000000000000, 0x7, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x6, 0x5, 0x6, 0x4, 0x5]}}, @hvc={0x32, 0x40, {0x8400000b, [0x5, 0xfffffffffffff800, 0x15a, 0xd0a1, 0x9]}}, @irq_setup={0x46, 0x18, {0x4, 0x122}}, @smc={0x1e, 0x40, {0x8, [0x0, 0x9, 0x9, 0x3ff00000]}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x3, 0xa}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x1, 0x5, 0x8, 0x9, 0x1}}, @its_setup={0x82, 0x28, {0x0, 0x3, 0x3c1}}, @irq_setup={0x46, 0x18, {0x4, 0x2f4}}, @msr={0x14, 0x20, {0x603000000013c10a, 0x5}}, @irq_setup={0x46, 0x18, {0x3, 0x2e7}}, @smc={0x1e, 0x40, {0x84000008, [0x4, 0x0, 0xfffffffffffff03f]}}, @msr={0x14, 0x20, {0x603000000013e682, 0x271}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x1, 0xf, 0x93d, 0x7}}], 0x40c}, &(0x7f0000000500), 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_GUEST_DEBUG-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4208ae9b, &(0x7f0000000000)={0x10000, 0x0, [0x1, 0x741, 0x8000, 0x7, 0x2, 0x9, 0xc, 0x6]})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): ioctl$KVM_CREATE_VCPU-openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program did not crash
extracting C reproducer
testing compiled C program (duration=16m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
simplifying C reproducer
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:2 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing compiled C program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
program crashed: kernel panic: Unhandled exception
testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
validation run: crashed=true
testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
validation run: crashed=true
testing program (duration=16m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:10 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x33)

program crashed: kernel panic: Unhandled exception
validation run: crashed=true
reproducing took 8h51m14.285191203s
repro crashed as (corrupted=false):
x8 : d2f0000020051d80 x7 : ffff800080aba4c0 x6 : 0000000000000000
x5 : 0000000000000001 x4 : ffff80008e6c7ac0 x3 : 0000000000000004
x2 : 0000000000014ac0 x1 : 0000000000000000 x0 : 00000000c600001b
Kernel panic - not syncing: Unhandled exception
CPU: 0 UID: 0 PID: 3625 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT 
Hardware name: linux,dummy-virt (DT)
Call trace:
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C)
 __dump_stack+0x30/0x40 lib/dump_stack.c:94
 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120
 dump_stack+0x1c/0x28 lib/dump_stack.c:129
 vpanic+0x22c/0x59c kernel/panic.c:430
 vpanic+0x0/0x59c kernel/panic.c:566
 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336
 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635
 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591
 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P)
 kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187
 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline]
 kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline]
 kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:598 [inline]
 __se_sys_ioctl fs/ioctl.c:584 [inline]
 __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151
 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879
 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596
Kernel Offset: disabled
CPU features: 0x00000,000068c0,17de33e1,057ffe1f
Memory Limit: none

================================
WARNING: inconsistent lock state
syzkaller #0 Not tainted
--------------------------------
inconsistent {INITIAL USE} -> {IN-NMI} usage.
syz.2.17/3625 [HC1[1]:SC0[0]:HE0:SE1] takes:
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: spin_lock include/linux/spinlock.h:351 [inline]
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: bus_to_subsys drivers/base/bus.c:68 [inline]
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359
{INITIAL USE} state was registered at:
  lock_acquire+0x14c/0x2e0 kernel/locking/lockdep.c:5868
  __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
  _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154
  spin_lock include/linux/spinlock.h:351 [inline]
  kobj_kset_join lib/kobject.c:180 [inline]
  kobject_add_internal+0x46c/0xee4 lib/kobject.c:231
  kobject_add_varg lib/kobject.c:374 [inline]
  kobject_add+0x10c/0x1d0 lib/kobject.c:426
  device_add+0x494/0xd78 drivers/base/core.c:3627
  device_register+0x28/0x38 drivers/base/core.c:3771
  faux_bus_init+0x1c/0x88 drivers/base/faux.c:238
  driver_init+0x30/0x58 drivers/base/init.c:35
  do_basic_setup+0x1c/0xa8 init/main.c:1363
  kernel_init_freeable+0x244/0x330 init/main.c:1579
  kernel_init+0x24/0x1d0 init/main.c:1469
  ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:844
irq event stamp: 1636
hardirqs last  enabled at (1635): [<ffff80008658e000>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]
hardirqs last  enabled at (1635): [<ffff80008658e000>] _raw_spin_unlock_irqrestore+0x44/0xbc kernel/locking/spinlock.c:194
hardirqs last disabled at (1636): [<ffff800086567f28>] __panic_unhandled+0x24/0x68 arch/arm64/kernel/entry-common.c:327
softirqs last  enabled at (1616): [<ffff8000802cf2f0>] softirq_handle_end kernel/softirq.c:425 [inline]
softirqs last  enabled at (1616): [<ffff8000802cf2f0>] handle_softirqs+0xb8c/0xd08 kernel/softirq.c:607
softirqs last disabled at (1611): [<ffff800080010e20>] __do_softirq+0x14/0x20 kernel/softirq.c:613

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(&k->list_lock);
  <Interrupt>
    lock(&k->list_lock);

 *** DEADLOCK ***

no locks held by syz.2.17/3625.

stack backtrace:
CPU: 0 UID: 0 PID: 3625 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT 
Hardware name: linux,dummy-virt (DT)
Call trace:
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C)
 __dump_stack+0x30/0x40 lib/dump_stack.c:94
 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120
 dump_stack+0x1c/0x28 lib/dump_stack.c:129
 print_usage_bug+0x2f4/0x32c kernel/locking/lockdep.c:4042
 verify_lock_unused+0x78/0x88 kernel/locking/lockdep.c:5792
 lock_acquire+0x22c/0x2e0 kernel/locking/lockdep.c:5859
 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
 _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154
 spin_lock include/linux/spinlock.h:351 [inline]
 bus_to_subsys drivers/base/bus.c:68 [inline]
 bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359
 coresight_panic_cb+0x2c/0x3c drivers/hwtracing/coresight/coresight-core.c:1586
 notifier_call_chain+0x1e8/0x65c kernel/notifier.c:85
 atomic_notifier_call_chain+0xd0/0x180 kernel/notifier.c:223
 vpanic+0x2c4/0x59c kernel/panic.c:459
 vpanic+0x0/0x59c kernel/panic.c:566
 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336
 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635
 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591
 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P)
 kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187
 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline]
 kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline]
 kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:598 [inline]
 __se_sys_ioctl fs/ioctl.c:584 [inline]
 __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151
 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879
 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596
Rebooting in 86400 seconds..

final repro crashed as (corrupted=false):
x8 : d2f0000020051d80 x7 : ffff800080aba4c0 x6 : 0000000000000000
x5 : 0000000000000001 x4 : ffff80008e6c7ac0 x3 : 0000000000000004
x2 : 0000000000014ac0 x1 : 0000000000000000 x0 : 00000000c600001b
Kernel panic - not syncing: Unhandled exception
CPU: 0 UID: 0 PID: 3625 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT 
Hardware name: linux,dummy-virt (DT)
Call trace:
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C)
 __dump_stack+0x30/0x40 lib/dump_stack.c:94
 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120
 dump_stack+0x1c/0x28 lib/dump_stack.c:129
 vpanic+0x22c/0x59c kernel/panic.c:430
 vpanic+0x0/0x59c kernel/panic.c:566
 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336
 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635
 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591
 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P)
 kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187
 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline]
 kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline]
 kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:598 [inline]
 __se_sys_ioctl fs/ioctl.c:584 [inline]
 __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151
 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879
 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596
Kernel Offset: disabled
CPU features: 0x00000,000068c0,17de33e1,057ffe1f
Memory Limit: none

================================
WARNING: inconsistent lock state
syzkaller #0 Not tainted
--------------------------------
inconsistent {INITIAL USE} -> {IN-NMI} usage.
syz.2.17/3625 [HC1[1]:SC0[0]:HE0:SE1] takes:
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: spin_lock include/linux/spinlock.h:351 [inline]
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: bus_to_subsys drivers/base/bus.c:68 [inline]
40f000000d3ed6e8 (&k->list_lock){+.+.}-{3:3}, at: bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359
{INITIAL USE} state was registered at:
  lock_acquire+0x14c/0x2e0 kernel/locking/lockdep.c:5868
  __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
  _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154
  spin_lock include/linux/spinlock.h:351 [inline]
  kobj_kset_join lib/kobject.c:180 [inline]
  kobject_add_internal+0x46c/0xee4 lib/kobject.c:231
  kobject_add_varg lib/kobject.c:374 [inline]
  kobject_add+0x10c/0x1d0 lib/kobject.c:426
  device_add+0x494/0xd78 drivers/base/core.c:3627
  device_register+0x28/0x38 drivers/base/core.c:3771
  faux_bus_init+0x1c/0x88 drivers/base/faux.c:238
  driver_init+0x30/0x58 drivers/base/init.c:35
  do_basic_setup+0x1c/0xa8 init/main.c:1363
  kernel_init_freeable+0x244/0x330 init/main.c:1579
  kernel_init+0x24/0x1d0 init/main.c:1469
  ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:844
irq event stamp: 1636
hardirqs last  enabled at (1635): [<ffff80008658e000>] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline]
hardirqs last  enabled at (1635): [<ffff80008658e000>] _raw_spin_unlock_irqrestore+0x44/0xbc kernel/locking/spinlock.c:194
hardirqs last disabled at (1636): [<ffff800086567f28>] __panic_unhandled+0x24/0x68 arch/arm64/kernel/entry-common.c:327
softirqs last  enabled at (1616): [<ffff8000802cf2f0>] softirq_handle_end kernel/softirq.c:425 [inline]
softirqs last  enabled at (1616): [<ffff8000802cf2f0>] handle_softirqs+0xb8c/0xd08 kernel/softirq.c:607
softirqs last disabled at (1611): [<ffff800080010e20>] __do_softirq+0x14/0x20 kernel/softirq.c:613

other info that might help us debug this:
 Possible unsafe locking scenario:

       CPU0
       ----
  lock(&k->list_lock);
  <Interrupt>
    lock(&k->list_lock);

 *** DEADLOCK ***

no locks held by syz.2.17/3625.

stack backtrace:
CPU: 0 UID: 0 PID: 3625 Comm: syz.2.17 Not tainted syzkaller #0 PREEMPT 
Hardware name: linux,dummy-virt (DT)
Call trace:
 show_stack+0x2c/0x3c arch/arm64/kernel/stacktrace.c:499 (C)
 __dump_stack+0x30/0x40 lib/dump_stack.c:94
 dump_stack_lvl+0x30/0x12c lib/dump_stack.c:120
 dump_stack+0x1c/0x28 lib/dump_stack.c:129
 print_usage_bug+0x2f4/0x32c kernel/locking/lockdep.c:4042
 verify_lock_unused+0x78/0x88 kernel/locking/lockdep.c:5792
 lock_acquire+0x22c/0x2e0 kernel/locking/lockdep.c:5859
 __raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
 _raw_spin_lock+0x48/0x60 kernel/locking/spinlock.c:154
 spin_lock include/linux/spinlock.h:351 [inline]
 bus_to_subsys drivers/base/bus.c:68 [inline]
 bus_for_each_dev+0x60/0x2a4 drivers/base/bus.c:359
 coresight_panic_cb+0x2c/0x3c drivers/hwtracing/coresight/coresight-core.c:1586
 notifier_call_chain+0x1e8/0x65c kernel/notifier.c:85
 atomic_notifier_call_chain+0xd0/0x180 kernel/notifier.c:223
 vpanic+0x2c4/0x59c kernel/panic.c:459
 vpanic+0x0/0x59c kernel/panic.c:566
 el1t_64_irq_handler+0x0/0x1c arch/arm64/kernel/entry-common.c:336
 el1_abort+0x0/0x5c arch/arm64/kernel/entry-common.c:635
 el1h_64_sync+0x6c/0x70 arch/arm64/kernel/entry.S:591
 pkvm_init_host_vm+0xb8/0x160 arch/arm64/kvm/pkvm.c:234 (P)
 kvm_arch_init_vm+0x150/0x288 arch/arm64/kvm/arm.c:187
 kvm_create_vm virt/kvm/kvm_main.c:1184 [inline]
 kvm_dev_ioctl_create_vm virt/kvm/kvm_main.c:5480 [inline]
 kvm_dev_ioctl+0x838/0x105c virt/kvm/kvm_main.c:5522
 vfs_ioctl fs/ioctl.c:51 [inline]
 __do_sys_ioctl fs/ioctl.c:598 [inline]
 __se_sys_ioctl fs/ioctl.c:584 [inline]
 __arm64_sys_ioctl+0x18c/0x244 fs/ioctl.c:584
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x90/0x2b4 arch/arm64/kernel/syscall.c:49
 el0_svc_common+0x180/0x2f4 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x58/0x74 arch/arm64/kernel/syscall.c:151
 el0_svc+0x58/0x164 arch/arm64/kernel/entry-common.c:879
 el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898
 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:596
Rebooting in 86400 seconds..