last executing test programs: 1h21m3.983871713s ago: executing program 1 (id=297): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9}) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x3, 0x27, 0x6, 0x0, 0x4, 0x9, 0xff, 0x7, 0xc7, 0x43, 0x5, 0x7, 0x0, 0x5, 0x2e, 0xd7, 0x10, 0xaa, 0x7, '\x00', 0x2, 0x100000000000000}) (async) write$eventfd(r2, &(0x7f00000001c0)=0x9, 0x1d) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r5, 0x800454df, 0x110e22fffb) (async) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x40305839, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x3, &(0x7f0000000000)=0x2f7}) 1h20m56.546372935s ago: executing program 1 (id=299): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x32) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000000)={0xa, 0xffffffffffffffff}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3b) (async) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3b) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000040)={0x54000, 0x100000, 0x6, 0x1, 0xfffffff7}) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3f) (async) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x3f) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r0, 0x4068aea3, &(0x7f0000000080)) (async) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r0, 0x4068aea3, &(0x7f0000000080)) ioctl$KVM_GET_DEVICE_ATTR_vm(r3, 0x4018aee2, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0x8, 0x45a8, 0x1}}) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000000580)={0x0, 0x80, 0x180, &(0x7f0000000180)=[0xffffffffffffffff, 0x5, 0x9, 0x7, 0xfffffffffffffe01, 0xfffffffffffffff9, 0x4, 0x8, 0x6, 0x2, 0x8, 0x8000000000000000, 0x8, 0x47, 0x0, 0x4, 0xff, 0x7, 0x200000000000, 0x4, 0xc746, 0x5978, 0x91f, 0x3, 0x3ff, 0x2, 0x1, 0xc, 0x5, 0x100000001, 0x1, 0x24, 0x0, 0x0, 0x5, 0x8, 0x8, 0x7, 0x2, 0x3, 0xffffffffffffffff, 0x7, 0x6, 0x3, 0xc49, 0x7, 0x7, 0x38, 0x7, 0x0, 0xffffffff, 0x7, 0x8001, 0x9, 0x0, 0x1000, 0x58, 0xc2, 0x7, 0x5, 0x1, 0x400, 0x3ec, 0x10000, 0xbe, 0x9, 0x0, 0xe976, 0x7fff, 0x9, 0x81, 0x9, 0x7, 0x5, 0x8000000000000000, 0x4, 0x2, 0x1, 0x7e, 0xd3, 0x3, 0x3, 0x7f, 0x0, 0x9, 0x65d5, 0x3, 0x1c00000000, 0xc460, 0x9, 0x4, 0x9, 0x0, 0x8, 0x70c2, 0x7ff, 0x7, 0x98ae, 0xb, 0x0, 0x4, 0xfffffffffffffffd, 0x1000, 0x1, 0x7, 0x7, 0x4f1, 0x3, 0x5, 0xfffffffffffffc00, 0x0, 0xfc1d, 0x4, 0xfffffffffffffffd, 0x0, 0x8, 0x4, 0x800, 0x70, 0x3, 0x774, 0x2, 0x9, 0x4, 0x8, 0x81, 0x4, 0x1000]}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r4, 0x4010aeab, &(0x7f00000005c0)={0x6, 0x698c72eeec16a86d}) ioctl$KVM_GET_ONE_REG(r4, 0x4010aeab, &(0x7f0000000640)=@arm64_core={0x6030000000100000, &(0x7f0000000600)=0x3}) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x2000)=nil, r5, 0x2, 0x10, 0xffffffffffffffff, 0x0) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0x800, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r6, 0xae04) ioctl$KVM_ARM_PREFERRED_TARGET(r4, 0x8020aeaf, &(0x7f00000006c0)) ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f0000000700)={0x2, 0x2000}) (async) ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f0000000700)={0x2, 0x2000}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r2, 0x4068aea3, &(0x7f0000000740)) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x1) (async) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x1) syz_kvm_vgic_v3_setup(r7, 0x0, 0x380) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f00000007c0)={0x6, 0x9}) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfe000/0x400000)=nil) (async) r8 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfe000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000840)={0x0, &(0x7f0000000800)=[@msr={0x14, 0x20, {0x603000000013801e, 0x2}}], 0x20}, &(0x7f0000000880)=[@featur1={0x1, 0x66}], 0x1) (async) r9 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000840)={0x0, &(0x7f0000000800)=[@msr={0x14, 0x20, {0x603000000013801e, 0x2}}], 0x20}, &(0x7f0000000880)=[@featur1={0x1, 0x66}], 0x1) ioctl$KVM_RESET_DIRTY_RINGS(r7, 0xaec7) (async) ioctl$KVM_RESET_DIRTY_RINGS(r7, 0xaec7) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000000900)=@attr_arm64={0x0, 0x8, 0x1, &(0x7f00000008c0)=0x1f2}) (async) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000000900)=@attr_arm64={0x0, 0x8, 0x1, &(0x7f00000008c0)=0x1f2}) ioctl$KVM_GET_SREGS(r9, 0x8000ae83, &(0x7f0000000940)) ioctl$KVM_GET_DIRTY_LOG(r7, 0x4010ae42, &(0x7f0000000a80)={0x10001, 0x0, &(0x7f0000dc7000/0x1000)=nil}) (async) ioctl$KVM_GET_DIRTY_LOG(r7, 0x4010ae42, &(0x7f0000000a80)={0x10001, 0x0, &(0x7f0000dc7000/0x1000)=nil}) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r4, 0x4018aee2, &(0x7f0000000b00)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000ac0)=0x401}) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r2, 0x4068aea3, &(0x7f0000000b40)={0xdf, 0x0, 0x4000}) 1h20m50.57019713s ago: executing program 1 (id=300): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r3 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000100)=@attr_riscv64=@attr_imsic={0x0, 0x1, 0x8, &(0x7f0000000180)}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000780)={0x4, 0x0, [{0x7ff, 0x4, 0x0, 0x0, @sint={0x8, 0x14a}}, {0x0, 0x1, 0x0, 0x0, @sint={0x8, 0x9}}, {0x3, 0x3, 0x0, 0x0, @irqchip={0x6, 0x4}}, {0x0, 0x1, 0x1, 0x0, @irqchip={0x9, 0x8}}]}) syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000700)={0x0, &(0x7f00000002c0)=[@irq_setup={0x46, 0x18, {0x2, 0x1ae}}, @irq_setup={0x46, 0x18, {0x0, 0x273}}, @eret={0xe6, 0x18, 0x4}, @eret={0xe6, 0x18, 0xfffffffffffffffb}, @code={0xa, 0x9c, {"007008d5807294d200a0b0f2610080d2420080d2a30080d2e40080d2020000d400f8b07e20e79bd200a0b0f2810180d2c20080d2630080d2640180d2020000d400e0400da05f8ad20020b0f2410180d2c20080d2c30080d2240180d2020000d4000028d5809b9ed20020b8f2c10080d2020180d2a30080d2440080d2020000d40000609e0054207e"}}, @hvc={0x32, 0x40, {0x6000003, [0xffffffffffffb926, 0x3, 0x0, 0x3, 0xe30]}}, @msr={0x14, 0x20, {0x603000000013c2a4, 0xabf}}, @hvc={0x32, 0x40, {0x84000008, [0x4, 0x1, 0xfff, 0x9, 0xa37]}}, @code={0xa, 0x6c, {"0058000e007008d5a09f92d20060b0f2e10180d2820080d2a30080d2840080d2020000d4c08083d200e0b0f2010180d2020080d2830080d2440080d2020000d40080200e000008d5008008d500000053007008d50000c06d"}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x4, 0x6, 0x0, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x1, 0x2, 0xd, 0x9, 0x400}}, @msr={0x14, 0x20, {0x6030000000131a02, 0x1}}, @hvc={0x32, 0x40, {0x8400000d, [0x10, 0xffff, 0x33972207, 0xe9d, 0x101]}}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x1, 0x1, 0x2, 0x149b7014}}, @svc={0x122, 0x40, {0x200, [0xffffffffffffffff, 0xf760000000000000, 0x8d, 0x3, 0x7fffffff]}}, @irq_setup={0x46, 0x18, {0x2, 0x1b3}}, @its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x1, 0x3, 0x6, 0x1}}, @uexit={0x0, 0x18, 0x4}, @smc={0x1e, 0x40, {0xc4000001, [0x3, 0x8, 0x1, 0xfafd, 0x2]}}, @smc={0x1e, 0x40, {0x84000001, [0x94f8, 0x7, 0x8000000000000000, 0x8, 0x7fff]}}, @eret={0xe6, 0x18, 0x10001}], 0x410}, &(0x7f0000000740)=[@featur2={0x1, 0x8e}], 0x1) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x40000000000001, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0x0, 0x1, 0x80000, 0xf, 0x0, 0x9, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r4, 0x1, 0x80) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r7, 0xc020660b, 0xe1) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000240)=0x8080000}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r11, 0x800454d7, 0x800000000000000d) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r13, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r14, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_ONE_REG(r14, 0x4010aeac, &(0x7f0000000240)=@arm64_bitmap={0x6030000000160002, 0x0}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1h20m38.016657923s ago: executing program 1 (id=303): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000fa3000/0x1000)=nil, 0x0, 0x5, 0x2010, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_MMIO(r1, 0x20, &(0x7f0000000040)="5bbb056b33c5dd04cde54d9b83a9d00fd3a6edbf55caa104", 0x0, 0x18) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x26) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0xd, 0x1, 0xb, 0x0, 0xb5c, 0x6, 0x6, 0x9, 0x8, 0x89, 0x2f, 0x2, 0x0, 0x6, 0x6, 0x9, 0x3, 0x27, 0x0, '\x00', 0x12, 0x6}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x101000, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000080)=@arm64_core={0x6030000000100034, &(0x7f0000000040)=0x8000000000000005}) close(r3) r7 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_GET_DIRTY_LOG(r5, 0x4010ae42, &(0x7f0000000180)={0x2, 0x0, &(0x7f0000dcd000/0x3000)=nil}) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) openat$kvm(0x0, &(0x7f0000000100), 0x8880, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000280), 0x103080, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_vgic_v3_setup(r10, 0x1, 0x40) ioctl$KVM_GET_DEVICE_ATTR(r11, 0x4018aee2, &(0x7f0000000040)=@attr_other={0x0, 0x9, 0x10080000000084, 0x0}) write$eventfd(r8, &(0x7f00000001c0)=0x7ffffff, 0xe80) r12 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=[@featur2={0x1, 0x2}], 0x1) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@x86={0x9, 0xe, 0x3, 0x0, 0x1b2, 0x99, 0x6, 0x9, 0x4, 0xa, 0x5, 0x0, 0x0, 0x6, 0x1, 0x11, 0x1, 0x9, 0xfb, '\x00', 0x97, 0x9}) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f00000000c0)={0x9000, 0x26000, 0x7, 0x0, 0xe}) 1h20m24.009248058s ago: executing program 1 (id=305): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x9, 0x86, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x807}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000100)={0x6, [0xffff, 0x8ce9, 0x5, 0x8, 0x934, 0x8]}) write$eventfd(r5, &(0x7f00000001c0)=0x3, 0xfdef) r6 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x3, 0x40000000, 0x10000, 0x0, 0x105, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000240)=@arm64={0xa, 0x6, 0x2, '\x00', 0x8}) ioctl$KVM_SET_DEVICE_ATTR(r7, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1h20m13.314698992s ago: executing program 1 (id=308): ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040)=0x7) (async, rerun: 32) r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000500)={0x0, &(0x7f0000000240)=[@svc={0x122, 0x40, {0x2000, [0x1, 0xde, 0xb0, 0x0, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013df19}}, @mrs={0xbe, 0x18, {0x603000000013e703}}, @svc={0x122, 0x40, {0x8400000b, [0xd, 0x9, 0xfffffffffffffff8, 0x3, 0x3]}}, @uexit={0x0, 0x18, 0x5}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x1d6}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x1ac}}, @mrs={0xbe, 0x18, {0x603000000013f602}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x3, 0x0, 0x1000, 0x10001, 0x2}}, @smc={0x1e, 0x40, {0xc200020b, [0x7fffffff, 0x99f, 0x9, 0x6, 0xc]}}, @mrs={0xbe, 0x18, {0x603000000013f089}}, @svc={0x122, 0x40, {0x80000002, [0x8, 0x81, 0xff, 0x9, 0x3]}}, @hvc={0x32, 0x40, {0x8, [0x6, 0xc, 0x6, 0x2, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x56, 0x6, 0x8, 0xffff, 0xfffffffffffffffc]}}, @eret={0xe6, 0x18, 0x92}, @eret={0xe6, 0x18, 0x200}], 0x2a0}, &(0x7f0000000540)=[@featur1={0x1, 0x10}], 0x1) (rerun: 32) ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f0000000580)={0x70000, 0x2000}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) ioctl$KVM_RUN(r0, 0xae80, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x33) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x7c3c, 0x2, 0x1, 0x0, @sint={0x7, 0x994}}, {0x5, 0x5, 0x0, 0x0, @sint={0x8, 0x3}}, {0x4, 0x1, 0x1, 0x0, @msi={0x7ff, 0x3, 0x8001, 0x9}}, {0x80, 0x4, 0x0, 0x0, @adapter={0x3ff, 0x0, 0x1, 0x2ddd, 0x5}}]}) 1h19m26.641696868s ago: executing program 32 (id=308): ioctl$KVM_ARM_VCPU_FINALIZE(0xffffffffffffffff, 0x4004aec2, &(0x7f0000000040)=0x7) (async, rerun: 32) r0 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000500)={0x0, &(0x7f0000000240)=[@svc={0x122, 0x40, {0x2000, [0x1, 0xde, 0xb0, 0x0, 0x6]}}, @mrs={0xbe, 0x18, {0x603000000013df19}}, @mrs={0xbe, 0x18, {0x603000000013e703}}, @svc={0x122, 0x40, {0x8400000b, [0xd, 0x9, 0xfffffffffffffff8, 0x3, 0x3]}}, @uexit={0x0, 0x18, 0x5}, @its_setup={0x82, 0x28, {0x2, 0x4, 0x1d6}}, @its_setup={0x82, 0x28, {0x4, 0x2, 0x1ac}}, @mrs={0xbe, 0x18, {0x603000000013f602}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x3, 0x0, 0x1000, 0x10001, 0x2}}, @smc={0x1e, 0x40, {0xc200020b, [0x7fffffff, 0x99f, 0x9, 0x6, 0xc]}}, @mrs={0xbe, 0x18, {0x603000000013f089}}, @svc={0x122, 0x40, {0x80000002, [0x8, 0x81, 0xff, 0x9, 0x3]}}, @hvc={0x32, 0x40, {0x8, [0x6, 0xc, 0x6, 0x2, 0x4]}}, @hvc={0x32, 0x40, {0x84000051, [0x56, 0x6, 0x8, 0xffff, 0xfffffffffffffffc]}}, @eret={0xe6, 0x18, 0x92}, @eret={0xe6, 0x18, 0x200}], 0x2a0}, &(0x7f0000000540)=[@featur1={0x1, 0x10}], 0x1) (rerun: 32) ioctl$KVM_PRE_FAULT_MEMORY(r0, 0xc040aed5, &(0x7f0000000580)={0x70000, 0x2000}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async) ioctl$KVM_RUN(r0, 0xae80, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x33) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x7c3c, 0x2, 0x1, 0x0, @sint={0x7, 0x994}}, {0x5, 0x5, 0x0, 0x0, @sint={0x8, 0x3}}, {0x4, 0x1, 0x1, 0x0, @msi={0x7ff, 0x3, 0x8001, 0x9}}, {0x80, 0x4, 0x0, 0x0, @adapter={0x3ff, 0x0, 0x1, 0x2ddd, 0x5}}]}) 48m4.781061243s ago: executing program 0 (id=608): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="f21bc75509bf71c9d70236fc044842da0700ffffffffffd24993f297e87fd62c18b875c2357c6ed6000000000000000000000000002000e4ff00", 0x0, 0x48) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0xffffff7f, 0xff25) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000240)={0x1fe, 0x3, 0xffff6000, 0x1000, &(0x7f0000b24000/0x1000)=nil}) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0xb, 0x28031, 0xffffffffffffffff, 0x0) ioctl$KVM_HAS_DEVICE_ATTR_vm(r1, 0x4018aee3, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x19, 0x3, 0x1}}) 47m56.130691573s ago: executing program 2 (id=610): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x7, 0x4f832, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x1000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x9000000) munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CREATE_VM(r2, 0x8927, 0x110c230004) (async) ioctl$KVM_CREATE_VM(r2, 0x8927, 0x110c230004) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) (async) ioctl$KVM_ARM_VCPU_INIT(r6, 0x4020aeae, &(0x7f0000000100)={0x5, 0x18}) ioctl$KVM_GET_ONE_REG(r6, 0x4010aeab, &(0x7f0000000000)=@arm64_core={0x603000000010002c, &(0x7f00000001c0)=0x9}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 47m55.440900169s ago: executing program 0 (id=611): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) (async) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r3 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x41000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000aba000/0x400000)=nil) openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) r9 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, 0x0, 0x1000002, 0x4010, r9, 0x0) (async) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000a, 0x53033, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) (async) munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) (async) syz_kvm_add_vcpu$arm64(r8, 0x0, 0x0, 0x0) (async) r10 = syz_kvm_add_vcpu$arm64(r8, &(0x7f0000000000)={0x0, &(0x7f0000000780)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xf6}}], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r7, 0xff7ffffffffffffd, 0x360) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r10, 0xae80, 0x0) 47m48.849011234s ago: executing program 2 (id=612): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000aba000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000cc0)={0x0, 0x0}, 0x0, 0x0) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000300)={0x0, &(0x7f0000000140)=[@its_setup={0x82, 0x28, {0x1, 0x3, 0x121}}], 0x28}, 0x0, 0x0) r5 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000780)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0xf6}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0xff7ffffffffffffd, 0x360) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000040)={0x5, 0x6, 0x6a93}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r3, 0x4004ae8b, &(0x7f0000000d00)={0x1000, "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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) 47m47.184215401s ago: executing program 0 (id=613): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2e) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x3c0) (async) ioctl$KVM_IRQ_LINE(r9, 0x4008ae61, &(0x7f0000000000)={0x1002022, 0x7}) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x60300000001000d7, 0x0}) (async) r10 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7fff}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r12, 0xae80, 0x0) (async) r13 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x2e) ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x0) (async) ioctl$KVM_IRQ_LINE(r14, 0x4008ae61, &(0x7f00000000c0)={0x8, 0x9}) (async) ioctl$KVM_RUN(r12, 0xae80, 0x0) r15 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r16, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_vgic_v3_setup(r16, 0x1, 0x100) 47m37.214446323s ago: executing program 2 (id=614): r0 = syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x3, 0x2e0) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000040)=@attr_riscv64=@attr_addr={0x0, 0x1, @imsic, &(0x7f0000000000)=0x5}) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x1}}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r2, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1e010000000000004000000000000000000000ef0000000000000000000000000500000000000000020000000000000003000000000000000000000000000000639c864f5a7e1efa45dfea0fd3f2084bfc30a829686d41259774aee02891661b9d9b7a6413c51b5844b0e31e1cf0c96c52f7b0d2c28b2ea4d58d6b58"], 0x40}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 47m28.880630841s ago: executing program 0 (id=615): openat$kvm(0x0, &(0x7f00000002c0), 0xa000, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x24ca00, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) (async) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x2e) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r4, r5, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async) openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) (async) r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x20e) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) r8 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r7, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) (async) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r7, 0x0) (async) r9 = eventfd2(0x70, 0x0) close(r9) (async) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) (async) write$eventfd(r9, &(0x7f0000000000)=0xfffffffffffffffe, 0x10) (async) r10 = eventfd2(0x0, 0x0) close(r10) r11 = eventfd2(0x0, 0x0) close(r11) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x492000, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r11, 0x0) mmap$KVM_VCPU(&(0x7f0000008000/0x3000)=nil, 0x930, 0x2000004, 0x2011, r10, 0x0) (async) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) 47m27.259943046s ago: executing program 2 (id=616): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x25) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, 0x0}) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x89000, 0x0) ioctl$KVM_GET_ONE_REG(r3, 0x4010aeab, &(0x7f0000000240)=@arm64_core={0x603000000010003c, &(0x7f0000000080)=0x5}) r5 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000b80)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) r10 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000b80)={0x0, &(0x7f0000000080)=[@hvc={0x32, 0x40, {0x84000003, [0x5, 0x4, 0x4, 0x9, 0x4d]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r10, 0xae80, 0x0) 47m16.108592634s ago: executing program 0 (id=617): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, 0x0) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0xc4000004, [0x40000099a, 0x4, 0x9, 0x89, 0xffffffffffffffff]}}], 0x40}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$kvm(0x0, &(0x7f00000001c0), 0x80, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x2e) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r5, r6, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000180)=@arm64_bitmap={0x6030000000160002, &(0x7f0000000080)=0x1}) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r8, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r8, r9, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1e000000000000004000000000000000000000ef000000000000000000000000010000000000000002000000000000000300000000000000040000000000000032000000000000004000000000000000000000efe9ff0000000000000000000001000000000000000200000000000000030000000000000004000000000000ac5c26535c9300"], 0x80}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) 47m15.331722995s ago: executing program 2 (id=618): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000240)={0x1fe, 0x3, 0xdddd0000, 0x1000, &(0x7f0000007000/0x1000)=nil}) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x3, 0x100000, 0x2000, &(0x7f000000f000/0x2000)=nil}) (rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xeeee8000, 0x1000, &(0x7f0000f15000/0x1000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000200)={0x1fd, 0x0, 0xeeee0000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r6, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (async, rerun: 32) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) (async, rerun: 32) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x161942, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_SET_GSI_ROUTING(r9, 0x4008ae6a, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x2, 0xbf6a7be1b71b6187, 0x0, @irqchip={0x0, 0x8}}]}) r10 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000140)={0x0, &(0x7f0000000180)=[@msr={0x14, 0x20, {0x603000000013df65}}], 0x20}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_init) ioctl$KVM_RUN(r13, 0xae80, 0x0) (async) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f00000002c0)={0x5}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f0000000000)=@arm64_sys={0x603000000013c038, &(0x7f0000000080)=0x1}) syz_kvm_vgic_v3_setup(r1, 0x2, 0x100) (async, rerun: 64) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000180)={0x1010020}) (rerun: 64) 46m59.592025668s ago: executing program 0 (id=619): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, &(0x7f0000000240)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x194}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x337}}, @code={0xa, 0x9c, {"007008d5e08681d20040b0f2610080d2820080d2c30180d2040080d2020000d4c0ca93d200c0b8f2010080d2020180d2c30180d2840180d2020000d400009f0d007008d5406185d20060b8f2e10080d2c20080d2030180d2840080d2020000d440de8cd200c0b0f2410180d2c20180d2630080d2240180d2020000d40000202b003c4093000008d5"}}, @irq_setup={0x46, 0x18, {0x0, 0x38}}, @eret={0xe6, 0x18, 0x3}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0x8000000000000001, 0xb}}, @mrs={0xbe, 0x18, {0x390a}}, @svc={0x122, 0x40, {0x5000000, [0xffffffffffffffff, 0x5, 0xba40, 0x0, 0xc]}}, @smc={0x1e, 0x40, {0x5000000, [0x5, 0x5, 0x4, 0x1, 0x400]}}, @msr={0x14, 0x20, {0x603000000013e665}}, @code={0xa, 0xcc, {"a0d99fd20080b0f2c10180d2220080d2430080d2a40180d2020000d4402a92d200c0b8f2810080d2420180d2a30080d2040180d2020000d4a01099d20020b8f2610080d2620180d2a30180d2240180d2020000d41020601e000800f800dc9bd200e0b0f2210080d2820080d2e30180d2240180d2020000d4007008d5007008d500228fd20020b0f2410080d2820180d2a30080d2e40080d2020000d4205291d20080b0f2e10080d2420080d2e30180d2c40080d2020000d4"}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x1, 0x9, 0xdc, 0x9, 0x3}}], 0x2f8}, &(0x7f0000000580)=[@featur2={0x1, 0x1ff8419030e30fdf}], 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000001, 0x12, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000040)={0x3}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @sint={0x9, 0x3800000}}, {0x9, 0x3, 0x0, 0x0, @irqchip={0x3, 0x1}}, {0x0, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4}}, {0x0, 0x0, 0x1, 0x0, @adapter={0x0, 0x5, 0xffffffffffffffff, 0x7f, 0xb2d}}]}) write$eventfd(r7, &(0x7f00000001c0)=0x3, 0x50) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000005c0)=@x86={0x2, 0x1, 0xfa, 0x0, 0x1, 0x8, 0x2, 0xb, 0x6, 0x6, 0x7, 0x65, 0x0, 0x327d, 0x100, 0x5, 0x0, 0xf7, 0x9, '\x00', 0xa, 0x5}) r8 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x5, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x2000, 0x0, 0xfffffffd, 0x3}}], 0x50}, 0x0, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4000ae84, &(0x7f0000000600)={{0x0, 0x4, 0x10, 0x3, 0x3, 0x6, 0xb, 0x7, 0x3, 0x42, 0x5, 0x1}, {0x40000, 0x2000, 0xc, 0x4, 0xd7, 0x7f, 0x2, 0x66, 0x7, 0x1, 0x2, 0x5}, {0x70000, 0xfec00000, 0x9, 0xa5, 0x4, 0x42, 0x2, 0x6, 0x31, 0xd, 0x6, 0x8}, {0x6000, 0x7000, 0xb, 0x5, 0x7, 0x3, 0x2d, 0x5, 0x8, 0xd4, 0x1, 0x5}, {0x0, 0xc000, 0x0, 0xd, 0xff, 0x8e, 0x5, 0x0, 0x6, 0x0, 0x6, 0x9}, {0xc000, 0xdddd1000, 0xa, 0x0, 0x1, 0x0, 0xc0, 0x7, 0x2, 0x5, 0x83, 0x73}, {0x40000, 0x40000, 0x3, 0x7, 0x6, 0x1a, 0xe, 0x8, 0xfa, 0xae, 0x5, 0x8}, {0x4, 0x1, 0x9, 0x0, 0x0, 0x6, 0x1, 0x5, 0x7f, 0x9, 0x1, 0xe}, {0x1, 0x6}, {0x2000, 0x4}, 0x4, 0x0, 0x1000, 0x80, 0xc, 0x2000, 0x200000, [0x3, 0x7, 0x0, 0xeae]}) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) 46m59.139187692s ago: executing program 2 (id=620): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x81000, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r2, 0x4068aea3, &(0x7f0000000080)) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0xa) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfe000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000440)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x36}}, @code={0xa, 0x6c, {"001781d20080b8f2810180d2a20080d2a30180d2640080d2020000d480b28bd20000b0f2410080d2620080d2a30180d2a40180d2020000d4000008d5000400f8008008d5005c202e007008d50010201e000030d500086038"}}, @svc={0x122, 0x40, {0x84000051, [0x100, 0x10, 0x6, 0x0, 0x6]}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @mrs={0xbe, 0x18, {0x603000000013e535}}, @eret={0xe6, 0x18, 0x8000}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x1, 0x5, 0x3ff, 0x4, 0x1}}, @hvc={0x32, 0x40, {0xbf000002, [0x4, 0xb, 0x2e, 0x6b, 0xfffffffffffffe35]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2a5}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x70, 0x401, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x90, 0x6, 0x8}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x3, 0x8, 0x87b, 0x2}}, @eret={0xe6, 0x18, 0x9}, @uexit={0x0, 0x18, 0x3}, @mrs={0xbe, 0x18, {0x603000000013e081}}, @msr={0x14, 0x20, {0x603000000013e718, 0x3}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @generic={0x50000, 0xc51, 0xfffffffffffffff7, 0x1}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @hvc={0x32, 0x40, {0x8, [0x5, 0x6, 0x2, 0x9, 0x844]}}], 0x32c}, &(0x7f0000000480)=[@featur1={0x1, 0x88}], 0x1) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f00000004c0)={0x6, [0xffffffff, 0x0, 0x1, 0xfffffffffffff084, 0x81, 0x7]}) r6 = eventfd2(0x6, 0x80801) r7 = eventfd2(0x2, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000500)={r6, 0x1, 0x1, r7}) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x90) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000540)={0x7}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000005c0)=@riscv64_sbi_sta={0x1, &(0x7f0000000580)=0xcbfa}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x40800, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x33) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000680)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000640)={0x7fff, 0xc12}}) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000006c0)={0x1, 0xa000, 0x1, r7, 0x4}) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000700)={0x8, 0xffff1000, 0x0, r6}) r10 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b00)={0x0, &(0x7f0000000740)=[@hvc={0x32, 0x40, {0xc400000d, [0x10001, 0xfff, 0x100000000, 0x1, 0x7ff]}}, @smc={0x1e, 0x40, {0x84000014, [0x200, 0x2, 0x7, 0x1, 0x4]}}, @code={0xa, 0x9c, {"204395d200a0b0f2610180d2620180d2230080d2840080d2020000d4a09596d20040b0f2810180d2c20080d2c30180d2440180d2020000d4007008d50094006f0000311e807595d20040b0f2e10180d2220080d2630180d2e40180d2020000d40000800d000028d5007008d5606890d200c0b8f2c10180d2620080d2830080d2040180d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0xca}}, @mrs={0xbe, 0x18, {0x603000000013c00e}}, @msr={0x14, 0x20, {0x6030000000138056, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013de83}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0xb9}}, @code={0xa, 0x9c, {"007008d520e095d200a0b0f2810180d2a20080d2230180d2240080d2020000d40010805f005786d20020b8f2010080d2420180d2230080d2640180d2020000d4007008d5e01083d20060b8f2e10080d2820180d2030180d2440180d2020000d4e0268dd20000b8f2410180d2620180d2230180d2c40180d2020000d40040611e0000c06d008008d5"}}, @eret={0xe6, 0x18, 0x3}, @mrs={0xbe, 0x18, {0x603000000013fe6e}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @svc={0x122, 0x40, {0x84000051, [0x9, 0xd, 0x8, 0x1, 0xf70]}}, @uexit={0x0, 0x18}, @uexit={0x0, 0x18, 0xd7}, @uexit={0x0, 0x18, 0x2}, @msr={0x14, 0x20, {0x603000000013dea8, 0x8}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x32b}}, @smc={0x1e, 0x40, {0x84000010, [0x33, 0xb10a, 0x1, 0x8000000000000000, 0x10000]}}, @irq_setup={0x46, 0x18, {0x3, 0x266}}], 0x3b8}, &(0x7f0000000b40)=[@featur2={0x1, 0x2}], 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000b80), 0x0, 0x0) r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) r12 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000d38000/0x1000)=nil, r11, 0x2000004, 0x10, r12, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r10, 0x4040aea0, &(0x7f0000000bc0)=@arm64={0xe0, 0x5a, 0x9, '\x00', 0x2}) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f0000000c00)={r7, 0x586d8a5, 0x2, r6}) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000c40)={r6, 0x4ef6, 0x2, r7}) ioctl$KVM_RESET_DIRTY_RINGS(r9, 0xaec7) 46m13.580894402s ago: executing program 33 (id=619): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000540)={0x0, &(0x7f0000000240)=[@its_setup={0x82, 0x28, {0x2, 0x1, 0x194}}, @its_setup={0x82, 0x28, {0x1, 0x4, 0x337}}, @code={0xa, 0x9c, {"007008d5e08681d20040b0f2610080d2820080d2c30180d2040080d2020000d4c0ca93d200c0b8f2010080d2020180d2c30180d2840180d2020000d400009f0d007008d5406185d20060b8f2e10080d2c20080d2030180d2840080d2020000d440de8cd200c0b0f2410180d2c20180d2630080d2240180d2020000d40000202b003c4093000008d5"}}, @irq_setup={0x46, 0x18, {0x0, 0x38}}, @eret={0xe6, 0x18, 0x3}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0x8000000000000001, 0xb}}, @mrs={0xbe, 0x18, {0x390a}}, @svc={0x122, 0x40, {0x5000000, [0xffffffffffffffff, 0x5, 0xba40, 0x0, 0xc]}}, @smc={0x1e, 0x40, {0x5000000, [0x5, 0x5, 0x4, 0x1, 0x400]}}, @msr={0x14, 0x20, {0x603000000013e665}}, @code={0xa, 0xcc, {"a0d99fd20080b0f2c10180d2220080d2430080d2a40180d2020000d4402a92d200c0b8f2810080d2420180d2a30080d2040180d2020000d4a01099d20020b8f2610080d2620180d2a30180d2240180d2020000d41020601e000800f800dc9bd200e0b0f2210080d2820080d2e30180d2240180d2020000d4007008d5007008d500228fd20020b0f2410080d2820180d2a30080d2e40080d2020000d4205291d20080b0f2e10080d2420080d2e30180d2c40080d2020000d4"}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x1, 0x1, 0x9, 0xdc, 0x9, 0x3}}], 0x2f8}, &(0x7f0000000580)=[@featur2={0x1, 0x1ff8419030e30fdf}], 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000001, 0x12, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000040)={0x3}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @sint={0x9, 0x3800000}}, {0x9, 0x3, 0x0, 0x0, @irqchip={0x3, 0x1}}, {0x0, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4}}, {0x0, 0x0, 0x1, 0x0, @adapter={0x0, 0x5, 0xffffffffffffffff, 0x7f, 0xb2d}}]}) write$eventfd(r7, &(0x7f00000001c0)=0x3, 0x50) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000005c0)=@x86={0x2, 0x1, 0xfa, 0x0, 0x1, 0x8, 0x2, 0xb, 0x6, 0x6, 0x7, 0x65, 0x0, 0x327d, 0x100, 0x5, 0x0, 0xf7, 0x9, '\x00', 0xa, 0x5}) r8 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x5, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0x3, 0x0, 0x0, 0x2000, 0x0, 0xfffffffd, 0x3}}], 0x50}, 0x0, 0x0) ioctl$KVM_SET_SREGS(r3, 0x4000ae84, &(0x7f0000000600)={{0x0, 0x4, 0x10, 0x3, 0x3, 0x6, 0xb, 0x7, 0x3, 0x42, 0x5, 0x1}, {0x40000, 0x2000, 0xc, 0x4, 0xd7, 0x7f, 0x2, 0x66, 0x7, 0x1, 0x2, 0x5}, {0x70000, 0xfec00000, 0x9, 0xa5, 0x4, 0x42, 0x2, 0x6, 0x31, 0xd, 0x6, 0x8}, {0x6000, 0x7000, 0xb, 0x5, 0x7, 0x3, 0x2d, 0x5, 0x8, 0xd4, 0x1, 0x5}, {0x0, 0xc000, 0x0, 0xd, 0xff, 0x8e, 0x5, 0x0, 0x6, 0x0, 0x6, 0x9}, {0xc000, 0xdddd1000, 0xa, 0x0, 0x1, 0x0, 0xc0, 0x7, 0x2, 0x5, 0x83, 0x73}, {0x40000, 0x40000, 0x3, 0x7, 0x6, 0x1a, 0xe, 0x8, 0xfa, 0xae, 0x5, 0x8}, {0x4, 0x1, 0x9, 0x0, 0x0, 0x6, 0x1, 0x5, 0x7f, 0x9, 0x1, 0xe}, {0x1, 0x6}, {0x2000, 0x4}, 0x4, 0x0, 0x1000, 0x80, 0xc, 0x2000, 0x200000, [0x3, 0x7, 0x0, 0xeae]}) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r8, 0xae80, 0x0) 46m10.199849103s ago: executing program 34 (id=620): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x81000, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x3) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r2, 0x4068aea3, &(0x7f0000000080)) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0xa) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000bfe000/0x400000)=nil) r5 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000440)={0x0, &(0x7f0000000100)=[@irq_setup={0x46, 0x18, {0x1, 0x36}}, @code={0xa, 0x6c, {"001781d20080b8f2810180d2a20080d2a30180d2640080d2020000d480b28bd20000b0f2410080d2620080d2a30180d2a40180d2020000d4000008d5000400f8008008d5005c202e007008d50010201e000030d500086038"}}, @svc={0x122, 0x40, {0x84000051, [0x100, 0x10, 0x6, 0x0, 0x6]}}, @uexit={0x0, 0x18, 0xfffffffffffffffd}, @mrs={0xbe, 0x18, {0x603000000013e535}}, @eret={0xe6, 0x18, 0x8000}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x1, 0x5, 0x3ff, 0x4, 0x1}}, @hvc={0x32, 0x40, {0xbf000002, [0x4, 0xb, 0x2e, 0x6b, 0xfffffffffffffe35]}}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x2a5}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0x70, 0x401, 0x4}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x90, 0x6, 0x8}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x3, 0x8, 0x87b, 0x2}}, @eret={0xe6, 0x18, 0x9}, @uexit={0x0, 0x18, 0x3}, @mrs={0xbe, 0x18, {0x603000000013e081}}, @msr={0x14, 0x20, {0x603000000013e718, 0x3}}, @uexit={0x0, 0x18, 0x5}, @memwrite={0x6e, 0x30, @generic={0x50000, 0xc51, 0xfffffffffffffff7, 0x1}}, @uexit={0x0, 0x18, 0xffffffffffffffff}, @hvc={0x32, 0x40, {0x8, [0x5, 0x6, 0x2, 0x9, 0x844]}}], 0x32c}, &(0x7f0000000480)=[@featur1={0x1, 0x88}], 0x1) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f00000004c0)={0x6, [0xffffffff, 0x0, 0x1, 0xfffffffffffff084, 0x81, 0x7]}) r6 = eventfd2(0x6, 0x80801) r7 = eventfd2(0x2, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000500)={r6, 0x1, 0x1, r7}) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x90) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000540)={0x7}) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f00000005c0)=@riscv64_sbi_sta={0x1, &(0x7f0000000580)=0xcbfa}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x40800, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x33) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_DEVICE_ATTR_vm(r2, 0x4018aee1, &(0x7f0000000680)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000640)={0x7fff, 0xc12}}) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f00000006c0)={0x1, 0xa000, 0x1, r7, 0x4}) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, &(0x7f0000000700)={0x8, 0xffff1000, 0x0, r6}) r10 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b00)={0x0, &(0x7f0000000740)=[@hvc={0x32, 0x40, {0xc400000d, [0x10001, 0xfff, 0x100000000, 0x1, 0x7ff]}}, @smc={0x1e, 0x40, {0x84000014, [0x200, 0x2, 0x7, 0x1, 0x4]}}, @code={0xa, 0x9c, {"204395d200a0b0f2610180d2620180d2230080d2840080d2020000d4a09596d20040b0f2810180d2c20080d2c30180d2440180d2020000d4007008d50094006f0000311e807595d20040b0f2e10180d2220080d2630180d2e40180d2020000d40000800d000028d5007008d5606890d200c0b8f2c10180d2620080d2830080d2040180d2020000d4"}}, @irq_setup={0x46, 0x18, {0x3, 0xca}}, @mrs={0xbe, 0x18, {0x603000000013c00e}}, @msr={0x14, 0x20, {0x6030000000138056, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013de83}}, @its_setup={0x82, 0x28, {0x1, 0x3, 0xb9}}, @code={0xa, 0x9c, {"007008d520e095d200a0b0f2810180d2a20080d2230180d2240080d2020000d40010805f005786d20020b8f2010080d2420180d2230080d2640180d2020000d4007008d5e01083d20060b8f2e10080d2820180d2030180d2440180d2020000d4e0268dd20000b8f2410180d2620180d2230180d2c40180d2020000d40040611e0000c06d008008d5"}}, @eret={0xe6, 0x18, 0x3}, @mrs={0xbe, 0x18, {0x603000000013fe6e}}, @mrs={0xbe, 0x18, {0x603000000013800c}}, @svc={0x122, 0x40, {0x84000051, [0x9, 0xd, 0x8, 0x1, 0xf70]}}, @uexit={0x0, 0x18}, @uexit={0x0, 0x18, 0xd7}, @uexit={0x0, 0x18, 0x2}, @msr={0x14, 0x20, {0x603000000013dea8, 0x8}}, @its_setup={0x82, 0x28, {0x3, 0x3, 0x32b}}, @smc={0x1e, 0x40, {0x84000010, [0x33, 0xb10a, 0x1, 0x8000000000000000, 0x10000]}}, @irq_setup={0x46, 0x18, {0x3, 0x266}}], 0x3b8}, &(0x7f0000000b40)=[@featur2={0x1, 0x2}], 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000b80), 0x0, 0x0) r11 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r8, 0xae04) r12 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000d38000/0x1000)=nil, r11, 0x2000004, 0x10, r12, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r10, 0x4040aea0, &(0x7f0000000bc0)=@arm64={0xe0, 0x5a, 0x9, '\x00', 0x2}) ioctl$KVM_IRQFD(r9, 0x4020ae76, &(0x7f0000000c00)={r7, 0x586d8a5, 0x2, r6}) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000c40)={r6, 0x4ef6, 0x2, r7}) ioctl$KVM_RESET_DIRTY_RINGS(r9, 0xaec7) 39m48.962947783s ago: executing program 3 (id=628): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x22) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0x400454da, 0x2f) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000040)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r4, 0x4018aee1, &(0x7f0000000000)=@attr_pvtime_ipa={0x0, 0x2, 0x0, 0x8001}) 39m36.618742129s ago: executing program 3 (id=630): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_GUEST_MEMFD(r3, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) (async) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r5, 0x2000003, 0x2013, r4, 0x0) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000007000/0x2000)=nil, r6, 0x0, 0x2011, r7, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r9 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1, 0x16831, 0xffffffffffffffff, 0x0) (async) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x5) ioctl$KVM_GET_DEVICE_ATTR_vcpu(r11, 0x4018aee2, &(0x7f0000000140)=@attr_irq_timer={0x0, 0x1, 0x1, 0x0}) r12 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r13, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000001, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x0) 39m31.420550666s ago: executing program 4 (id=631): mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ce5000/0x1000)=nil, 0x930, 0x6, 0x4102932, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) munmap(&(0x7f0000cc9000/0x2000)=nil, 0x2000) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfd000/0x400000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c1800, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x17) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r5, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000100)=@arm64_sys={0x603000000013df1a, 0x0}) r6 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x2b) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000aec000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000001c0)={0x0, 0x0, 0x1e}, 0x0, 0x0) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x2a) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x14) r13 = ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r13, 0x4020aeae, &(0x7f0000000140)={0x5, 0x8}) ioctl$KVM_GET_ONE_REG(r11, 0x4010aeab, &(0x7f0000000240)=@arm64_extra={0x603000000013c02a, 0x0}) syz_kvm_setup_cpu$arm64(r10, r13, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000b40)=[{0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x39c}], 0x1, 0x0, &(0x7f0000000b80)=[@featur1={0x1, 0x2}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, 0x0) r14 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x0, 0x1000001, 0x11, r14, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, &(0x7f00000000c0)=@arm64={0x5, 0x0, 0xfc, '\x00', 0x4}) 39m19.29875308s ago: executing program 3 (id=632): openat$kvm(0x0, 0x0, 0x0, 0x0) munmap$KVM_VCPU(0x0, 0x1000000000) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) (async, rerun: 32) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c79000/0x4000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000fff000/0x1000)=nil, 0x930, 0x1000004, 0x24132, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x8521, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x15) (async) syz_kvm_vgic_v3_setup(r1, 0xff7fffffffffffff, 0x360) (async) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r1, 0x4010aeb5, &(0x7f0000000040)={0x0, 0x1c00}) (async) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f00000001c0)={0x9000, 0x2000, 0x401, 0x0, 0x7d}) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000080)={0x0, &(0x7f0000000000)=[@irq_setup={0x5, 0x18, {0x1, 0x20}}], 0x18}, 0x0, 0x0) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x31) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000000c0)={0x4, 0x200000, 0x1}) (async) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r2, 0x4068aea3, &(0x7f0000000100)={0xdf, 0x0, 0x4000}) 39m16.234179416s ago: executing program 4 (id=633): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_IRQ_LINE(r3, 0x4008ae61, &(0x7f0000000000)={0x8, 0x55}) ioctl$KVM_CREATE_VM(r4, 0x400454da, 0x2f) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r5, 0x800454d7, 0x20000003) 39m3.339130475s ago: executing program 3 (id=634): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x100000000000000) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, 0x0) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000b80)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x100, [0x40000099a, 0x4, 0x9, 0x89, 0xffffffffffffffff]}}], 0x40}, &(0x7f0000000bc0)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r7, 0xae80, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r11, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce9, 0x8000}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r12, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) ioctl$KVM_RUN(r12, 0xae80, 0x0) r13 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) r15 = syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r13, 0x4010aeb5, &(0x7f00000002c0)={0x200}) ioctl$KVM_RUN(r15, 0xae80, 0x0) r16 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000bfe000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r16, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x80000, 0x6, 0x20, 0x0, 0x2}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r17 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r17, 0xae03, 0x78) 39m1.138910402s ago: executing program 4 (id=635): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x32) r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xef000000, 0x1000, 0x2}}) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000140)={0x0, &(0x7f0000000200)=[@hvc={0x32, 0x40, {0xc4000053, [0xfffffffffffffffc, 0x1, 0x1, 0x9d, 0x6]}}], 0x40}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000840)=[{0x0, 0x0, 0x248}], 0x1, 0x0, 0x0, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000040)={0x1, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000000)=@x86={0x19, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x1, 0x42, 0x48, 0x86, 0xdd, 0x68, 0x0, 0xffffe, 0x12b, 0x4, 0x3, 0x4, 0x8, '\x00', 0x5, 0x80000008}) write$eventfd(r6, &(0x7f00000001c0)=0x3, 0x8e80) 38m46.292909374s ago: executing program 4 (id=636): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_GUEST_MEMFD(r1, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) r3 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, r3, 0x2000003, 0x2013, r2, 0xff010000) r4 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r5 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r4, &(0x7f00000000c0)={0x0, &(0x7f00000002c0)=[@memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0xa0, 0x8001, 0x3}}], 0x30}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x100) r8 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, &(0x7f00000000c0)={0x0, &(0x7f0000000040)=[@its_setup={0x82, 0x28, {0x4, 0x3, 0x3ac}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r9, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000240)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r11, 0xae80, 0x0) munmap(&(0x7f0000011000/0xc00000)=nil, 0xc00000) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) ioctl$KVM_RUN(r7, 0xae80, 0x0) 38m43.389392221s ago: executing program 3 (id=637): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x401, 0x0) r1 = openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x28) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f0000000080)={0x0, 0xffffff6e}) ioctl$KVM_IRQ_LINE(r6, 0x4008ae61, &(0x7f00000001c0)={0x0, 0xffffffff}) r7 = eventfd2(0xffff, 0x80001) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101080, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000040)={0x4, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r10, 0x4018aee3, 0x0) r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x18) r12 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000280)=[@eret={0xe6, 0x18, 0x3}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x4, 0x7, 0x7, 0x27}}, @eret={0xe6, 0x18, 0x359d}, @mrs={0xbe, 0x18, {0x603000000013e6c2}}, @msr={0x14, 0x20, {0x603000000013c681, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x1, 0xe, 0x8001, 0x1}}, @irq_setup={0x46, 0x18, {0x3, 0x180}}, @its_setup={0x82, 0x28, {0x3, 0x4, 0x1e}}, @its_send_cmd={0xaa, 0x28, {0x5, 0x0, 0x4, 0x2, 0x9, 0x5, 0x3}}, @its_setup={0x82, 0x28, {0x3, 0x2, 0xb7}}, @uexit={0x0, 0x18, 0x8}, @svc={0x122, 0x40, {0x40, [0x8000000000000000, 0x3, 0x2, 0x0, 0x1000]}}, @eret={0xe6, 0x18, 0x8}, @svc={0x122, 0x40, {0x3f000000, [0xa, 0x7, 0x1, 0x2, 0xffffffffffffffff]}}, @svc={0x122, 0x40, {0x8400000e, [0x9, 0x7, 0x8, 0xd034, 0xffffffffffffffff]}}], 0x238}, &(0x7f0000000500)=[@featur2={0x1, 0x15}], 0x1) syz_kvm_setup_cpu$arm64(r11, r12, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000ac0)=[{0x0, &(0x7f0000000540)=[@uexit={0x0, 0x18, 0xfffffffffffffe64}, @hvc={0x32, 0x40, {0x3f000000, [0x40, 0x4, 0x1, 0x1, 0x5]}}, @irq_setup={0x46, 0x18, {0x2, 0xb1}}, @mrs={0xbe, 0x18, {0x603000000013def7}}, @svc={0x122, 0x40, {0x30000000, [0x100000000, 0xc700, 0x8, 0x0, 0x6]}}, @hvc={0x32, 0x40, {0x10, [0x2, 0x2, 0x800000000000000, 0x8, 0x3]}}, @eret={0xe6, 0x18, 0x5}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x1, 0xf, 0x10001, 0x2}}, @msr={0x14, 0x20, {0x0, 0x3}}, @mrs={0xbe, 0x18, {0x603000000013df48}}, @msr={0x14, 0x20, {0x603000000013df54, 0x4}}, @mrs={0xbe, 0x18, {0x603000000013c100}}, @smc={0x1e, 0x40, {0x8400000f, [0x6, 0x1, 0x1, 0x7, 0x9]}}, @eret={0xe6, 0x18, 0x9}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x2, 0xc, 0x80000001, 0x7, 0x4}}, @msr={0x14, 0x20, {0x603000000013c2b0, 0xffff}}, @irq_setup={0x46, 0x18, {0x3, 0x384}}, @svc={0x122, 0x40, {0x84000007, [0x6, 0xc00000000000, 0x8001, 0xb114, 0x8000000000000001]}}, @uexit={0x0, 0x18, 0x5}, @svc={0x122, 0x40, {0x10, [0xe000000000000000, 0xfffffffffffffff9, 0x0, 0xe470, 0x6]}}, @code={0xa, 0x84, {"007008d5003c0013603793d200a0b8f2010080d2620080d2c30180d2040080d2020000d40000a09b00f688d200e0b8f2610180d2020180d2630080d2c40080d2020000d4007008d5002c205e007008d5e09598d20080b0f2a10180d2020180d2a30180d2e40180d2020000d4007008d5"}}, @svc={0x122, 0x40, {0x84000052, [0xdde, 0xd, 0xfff, 0x40, 0xc0d7]}}, @svc={0x122, 0x40, {0x40, [0xffffffffffff8000, 0x9, 0x7ff, 0xfff, 0xe48]}}, @eret={0xe6, 0x18, 0x23f}, @its_setup={0x82, 0x28, {0x3, 0x2, 0x74}}, @code={0xa, 0xb4, {"c0618dd200a0b8f2410080d2820180d2630180d2640080d2020000d40094007f20a784d200c0b0f2e10080d2e20180d2230080d2040180d2020000d4208a8ad20000b8f2a10080d2220180d2a30080d2e40080d2020000d4e0278cd200a0b0f2c10180d2820080d2a30080d2840180d2020000d4007008d5c0ba8dd20040b0f2e10180d2420080d2030180d2240180d2020000d40048212e0084400d00fc202e"}}, @memwrite={0x6e, 0x30, @generic={0xa000, 0x60b, 0x2, 0x3}}, @uexit={0x0, 0x18, 0xa52}, @uexit={0x0, 0x18, 0x7}], 0x560}], 0x1, 0x0, &(0x7f0000000b00)=[@featur2={0x1, 0xd4}], 0x1) ioctl$KVM_IRQFD(r4, 0x4020ae76, &(0x7f00000000c0)={r7, 0x2, 0x1}) r13 = openat$kvm(0x0, &(0x7f0000000340), 0x4a080, 0x0) r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0) r15 = syz_kvm_vgic_v3_setup(r14, 0x1, 0x40) r16 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r17 = ioctl$KVM_CREATE_VM(r16, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r17, &(0x7f0000000000/0x400000)=nil) munmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000) ioctl$KVM_SET_DEVICE_ATTR(r15, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x1, 0xffffffffffffffff}) r18 = ioctl$KVM_CREATE_GUEST_MEMFD(r2, 0xc040aed4, &(0x7f00000001c0)={0x200001fe4000, 0x1}) mmap$KVM_VCPU(&(0x7f0000ffc000/0x1000)=nil, 0x930, 0x2000002, 0x2013, r18, 0x0) 38m29.400252266s ago: executing program 4 (id=638): ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) (async) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_RUN(r0, 0xae80, 0x0) r1 = ioctl$KVM_GET_STATS_FD_vm(0xffffffffffffffff, 0xaece) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000000)={0x6}) ioctl$KVM_SET_REGS(r1, 0x4360ae82, &(0x7f0000000040)={[0x8000000000000001, 0x9, 0x5a720231, 0xc4, 0x5, 0x9, 0x1, 0x3, 0x9, 0x0, 0x720, 0x4, 0x10000, 0x3, 0x80000000, 0x3], 0x41000, 0x4140}) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000140)={0x1ff, 0x5, 0x40000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000180)={0x1, [0x100]}) munmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_RESET_DIRTY_RINGS(r1, 0xaec7) (async) ioctl$KVM_RESET_DIRTY_RINGS(r1, 0xaec7) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f00000001c0)={0x6, [0x8, 0x100, 0xffffffffffffffff, 0xba4, 0x8, 0x80000000]}) (async) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f00000001c0)={0x6, [0x8, 0x100, 0xffffffffffffffff, 0xba4, 0x8, 0x80000000]}) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x7) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x4068aea3, &(0x7f0000000200)) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000000280)}) (async) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f0000000280)}) ioctl$KVM_ARM_PREFERRED_TARGET(r3, 0x8020aeaf, &(0x7f0000000300)) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0xd) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000340)={0x1fd, 0x0, &(0x7f0000ffa000/0x3000)=nil}) (async) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f0000000340)={0x1fd, 0x0, &(0x7f0000ffa000/0x3000)=nil}) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x35) (async) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x35) syz_kvm_vgic_v3_setup(r5, 0x4, 0xa0) (async) syz_kvm_vgic_v3_setup(r5, 0x4, 0xa0) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f00000003c0)=@riscv64_v={0x803000000900001d, &(0x7f0000000380)=0x4550be46}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x10001, 0x1, 0x6000, 0x2000, &(0x7f0000ffa000/0x2000)=nil}) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r5, 0x4068aea3, &(0x7f0000000440)) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000500)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f00000004c0)=0x8000000000000001}) (async) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000500)=@attr_riscv64=@attr_ctrl={0x0, 0x1, 0x1, &(0x7f00000004c0)=0x8000000000000001}) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000540)={r4, 0x7, 0x2, r1}) ioctl$KVM_CAP_PTP_KVM(r5, 0x4068aea3, &(0x7f0000000580)) (async) ioctl$KVM_CAP_PTP_KVM(r5, 0x4068aea3, &(0x7f0000000580)) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000600)={r1, 0x0, 0x2}) (async) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000600)={r1, 0x0, 0x2}) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x25) 38m19.666850266s ago: executing program 3 (id=639): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000100)=@arm64_sve={0x60800000001505bf, 0x0}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) ioctl$KVM_CAP_HALT_POLL(r3, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0x3}) 38m17.231891047s ago: executing program 4 (id=640): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x22) openat$kvm(0x0, 0x0, 0x180, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000073000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@mrs={0xbe, 0x18, {0x603000000013803c}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xf, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x3a) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000180)=@arm64_sve={0x608000000015021e, 0x0}) 37m31.740262433s ago: executing program 35 (id=639): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000100)=@arm64_sve={0x60800000001505bf, 0x0}) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) ioctl$KVM_CAP_HALT_POLL(r3, 0x4068aea3, &(0x7f0000000140)={0xb6, 0x0, 0x3}) 37m25.558431511s ago: executing program 36 (id=640): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x22) openat$kvm(0x0, 0x0, 0x180, 0x0) r5 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000073000/0x400000)=nil) r6 = syz_kvm_add_vcpu$arm64(r5, &(0x7f0000000100)={0x0, &(0x7f0000000140)=[@mrs={0xbe, 0x18, {0x603000000013803c}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xf, 0x5c1fd1b6565d2f2, 0xffffffffffffffff, 0x0) ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x3a) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000180)=@arm64_sve={0x608000000015021e, 0x0}) 15m59.736150486s ago: executing program 5 (id=730): r0 = openat$kvm(0x0, &(0x7f0000000200), 0x10000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x2000, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000000)={0x0, 0xf000, 0x1, 0xffffffffffffffff, 0x20}) (async) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x2e) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r6, r7, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000300)=[@featur2={0x1, 0x17}], 0x1) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000140)=@arm64_sve={0x608000000015022c, &(0x7f00000002c0)=0x100000000}) (async) syz_kvm_add_vcpu$arm64(r2, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x0, 0x9, 0x0, 0x0, 0x40000005}}], 0x50}, 0x0, 0x0) (async) r8 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x8}) ioctl$KVM_HAS_DEVICE_ATTR(r8, 0x4018aee3, &(0x7f0000000280)=@attr_riscv64=@attr_aplic={0x0, 0x1, @any=0x5, &(0x7f0000000240)}) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f0000000200)="f30138ddf77f2b380b7bb71c04010003e600020000000003f4ff00061000bb000010090000000000000015051d000000000000000000003f00", 0x0, 0x48) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) (async) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x46, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x100001, 0xffc0000, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x93}) (async) write$eventfd(r12, &(0x7f00000001c0)=0x3, 0xfdef) (async) r13 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r14 = syz_kvm_setup_syzos_vm$arm64(r13, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r14, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r15 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r16 = ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0) r17 = ioctl$KVM_CREATE_GUEST_MEMFD(r16, 0xc040aed4, &(0x7f0000000080)={0x200001fe0000, 0x3}) ioctl$KVM_SET_USER_MEMORY_REGION2(r16, 0x40a0ae49, &(0x7f0000000180)={0x4, 0x4, 0x6000, 0xa7000, &(0x7f0000ffc000/0x2000)=nil, 0x4000, r17}) 15m52.972412653s ago: executing program 6 (id=731): mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(r1, 0x4068aea3, &(0x7f00000000c0)) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000000)={0x0, &(0x7f0000000040)=[@smc={0x1e, 0x40, {0x8400000e, [0x99b, 0x100000003, 0x5, 0x101, 0x10]}}], 0x40}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000040)=@arm64_fp_extra={0x60200000001000d4, &(0x7f0000000000)=0xfffffffffffffffe}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r7 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x80010, r6, 0x0) r8 = eventfd2(0x0, 0x0) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x1f01) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_FINALIZE(r11, 0xc018ae85, 0x0) write$eventfd(r8, &(0x7f0000000180)=0x5, 0xfffffde3) r12 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x38) ioctl$KVM_CREATE_VCPU(r12, 0xae41, 0x0) syz_kvm_vgic_v3_setup(r12, 0x3, 0x300) 15m35.582089302s ago: executing program 5 (id=732): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x22840, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x3}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x9b, 0xf, 0x0, 0x5, 0x8, 0x82, 0x46, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x100001, 0xffc0000, 0x0, 0x3, 0xa, 0x8, '\x00', 0x1, 0x93}) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4000ae84, &(0x7f0000000200)={{0x0, 0x1000, 0x1, 0x3a, 0x0, 0x9, 0xba, 0xc, 0x2, 0x6, 0x0, 0x9}, {0xeeef0000, 0x0, 0xd, 0x1, 0xfc, 0x1, 0x5, 0xc, 0x7, 0x4, 0x6, 0x6}, {0x0, 0xeeee8000, 0x8, 0x9, 0x6, 0x7, 0x3, 0xdb, 0x8, 0x1, 0x1}, {0x2, 0xe000, 0x0, 0x55, 0x7f, 0x80, 0x4, 0x4, 0xa, 0x1, 0x8, 0x9}, {0x6000, 0x0, 0x0, 0x38, 0x0, 0x6, 0x8, 0x1, 0x81, 0x93, 0x7f, 0x8}, {0xdddd1000, 0x41000, 0xd, 0x5, 0x9, 0x5, 0x2, 0x8, 0x81, 0xf, 0x5, 0xfe}, {0xffff1000, 0xb000, 0x14, 0x1, 0x1, 0x7b, 0xfd, 0x9, 0x6a, 0xe, 0x8, 0xd1}, {0xeeef0000, 0x7000, 0x4, 0x3, 0x0, 0x0, 0x7, 0xfa, 0x10, 0x2, 0x2, 0x1}, {0x40000, 0x2}, {0x8000000, 0xc71}, 0x20000002, 0x0, 0x1000, 0x8, 0x8, 0x8000, 0x7000, [0x3, 0x8000000000000000, 0x89, 0x1]}) write$eventfd(r3, &(0x7f00000001c0)=0x3, 0xfdef) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) r8 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000280)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000000)={0xff70, 0x10, 0x1}}) r9 = syz_kvm_add_vcpu$arm64(r7, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r9, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000240)={0x4, 0x9, 0x1}}) r10 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) openat$kvm(0x0, 0x0, 0x161681, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4}) r13 = eventfd2(0xeffffffd, 0x801) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000000)={0x200, 0x200000, 0x4, r13, 0x7}) ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x2, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x100, &(0x7f0000000080)=0x8000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) r14 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103100, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) ioctl$KVM_SIGNAL_MSI(r15, 0x4020aea5, 0xffffffffffffffff) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) 15m34.441922064s ago: executing program 6 (id=733): ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000040)={0x5, 0x1}) (async) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r1 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000180)={0xa8, 0x0, 0x3}) (async) r3 = syz_kvm_add_vcpu$arm64(0x0, 0x0, 0x0, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f0000000200), 0x121040, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x29) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_ONE_REG(r6, 0x4010aeac, &(0x7f0000000080)=@arm64_core={0x603000000010003e, &(0x7f0000000100)=0xed5b}) (async) r7 = openat$kvm(0x0, &(0x7f0000000080), 0x300, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x432141, 0x0) munmap$KVM_VCPU(0x0, 0x1000000000) (async) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x2a) (async) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000e04000/0x2000)=nil, 0x930, 0x1, 0x11, r11, 0x0) r12 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r10, 0xae04) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) (async) mmap$KVM_VCPU(&(0x7f0000c2f000/0x2000)=nil, r12, 0x8, 0x13, r3, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, r12, 0x1000001, 0x12, r11, 0x0) (async) syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) (async) r13 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000200)={0x0, &(0x7f0000000500)=[@mrs={0xbe, 0x18, {0x6030000000138056}}], 0x18}, 0x0, 0x0) ioctl$KVM_RUN(r11, 0xae80, 0x0) (async) ioctl$KVM_SET_VCPU_EVENTS(r13, 0x4040aea0, &(0x7f0000000000)=@x86={0x2, 0x0, 0x7, 0x0, 0x3, 0x2, 0x6e, 0xf5, 0x46, 0x3, 0x8, 0xf9, 0x0, 0x8d0, 0xffffff80, 0x4, 0x5, 0xec, 0x6, '\x00', 0xff, 0x80000001}) (async) syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000300)={0x0, &(0x7f0000000000)=[@smc={0x1e, 0x40, {0x84000002, [0x800d, 0x7, 0x3, 0xd59, 0x7]}}], 0x40}, 0x0, 0x0) (async) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) mmap$KVM_VCPU(&(0x7f0000ce6000/0x1000)=nil, 0x930, 0x5000002, 0x4d832, 0xffffffffffffffff, 0x0) 15m17.390791643s ago: executing program 6 (id=734): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) (async) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f0000000340)=@attr_other={0x0, 0x1, 0x8, &(0x7f0000000000)=0x100000001}) (async) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) openat$kvm(0x0, &(0x7f0000000040), 0xe0000, 0x0) (async) r3 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x1000010, 0x4000010, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) (async) mmap$KVM_VCPU(&(0x7f0000000000/0x3000)=nil, 0x930, 0x1, 0x13, r6, 0x0) (async) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x400, 0x0) ioctl$KVM_CREATE_VM(r8, 0x80086601, 0x10000000000000) (async) r9 = syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000100)={0x0, &(0x7f0000000400)=[@code={0xa, 0x6c, {"00eca07e008c000f0038302ec0c299d200c0b8f2a10080d2e20180d2c30080d2c40180d2020000d4007008d5000028d5000028d5007008d5002b8bd200a0b0f2c10180d2820080d2230180d2040080d2020000d40040000e"}}], 0x6c}, &(0x7f0000000280)=[@featur1={0x1, 0x4}], 0x1) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000200)={0x3, "e0b52f"}) (async) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@arm64={0x7, 0x2, 0xc4, '\x00', 0x400}) r10 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece) ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r10, 0x4068aea3, &(0x7f0000000380)) (async) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8000ae83, &(0x7f0000000480)) (async) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r12, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r13, &(0x7f00000001c0)=0x3, 0x50) (async) r14 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) 15m12.298092847s ago: executing program 5 (id=735): munmap$KVM_VCPU(0x0, 0x1000000000) mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c79000/0x4000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r1 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r1, 0x4010aeab, &(0x7f0000000180)=@arm64_sys={0x603000000013d801, &(0x7f0000000000)=0x1}) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x25) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) mmap$KVM_VCPU(&(0x7f0000008000/0x4000)=nil, 0x930, 0x0, 0x10, r1, 0x0) 14m57.758223722s ago: executing program 5 (id=736): syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = eventfd2(0x8, 0x80800) (async) r2 = eventfd2(0x8, 0x80000) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000000c0)={0x4, 0x25000, 0x0, r2, 0x2}) (async) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000140)={0x8000000000000002, 0x0, 0x2, r1, 0x2}) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) r5 = eventfd2(0x0, 0x0) ioctl$KVM_CREATE_VM(r5, 0x80111500, 0x20000000) (async) r6 = syz_kvm_setup_syzos_vm$arm64(r4, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x4}}], 0x28}, 0x0, 0x0) (async) syz_kvm_vgic_v3_setup(r4, 0x1, 0x100) (async) r8 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) (async) r9 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) r11 = syz_kvm_setup_syzos_vm$arm64(r10, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r11, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r10, 0x0, 0x260) (async) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r12, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1) (async) syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe0, 0x2, 0x4}}], 0x30}, 0x0, 0x0) (async) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x1000000) (async) ioctl$KVM_SET_DEVICE_ATTR(r13, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x88, &(0x7f0000000000)=0x10}) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f0000000000)={0x8000, 0x0, 0x2, r1, 0x3}) 14m56.398006139s ago: executing program 6 (id=737): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x101800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_STATS_FD_vm(r1, 0xaece) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000280)=@attr_arm64={0x0, 0x8, 0x3, &(0x7f0000000240)=0xf}) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000700)={0x7, 0xffffffffffffffff}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x0, 0x0}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f0000000080)=@attr_other={0x0, 0x1, 0x4e0, &(0x7f0000000000)=0xfff}) 14m45.498693073s ago: executing program 5 (id=738): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$arm64(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x4, 0x2}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r2, 0x1, 0x100) syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000002000/0x400000)=nil) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r5, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x8600, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_CREATE_DEVICE(r7, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000040)=@attr_other={0x0, 0x8, 0x90, &(0x7f0000000000)=0x10001}) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r10 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f00000000c0)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x4, 0x4, 0x1}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x0, 0x10002, 0x9, 0x0, 0x104, 0x3}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r11, 0x1, 0x140) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f00000001c0)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000200)=0x8080000}) ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1) ioctl$KVM_RUN(r13, 0xae80, 0x0) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000180)={0x8, 0xffffffffffffffff}) ioctl$KVM_GET_DEVICE_ATTR(r15, 0x4018aee2, &(0x7f00000001c0)=@attr_other={0x0, 0x0, 0x5, 0x0}) ioctl$KVM_SET_DEVICE_ATTR_vm(r9, 0x4018aee1, &(0x7f0000000140)=@attr_other={0x0, 0x9, 0x5, &(0x7f0000000100)=0x7}) 14m41.74122298s ago: executing program 6 (id=739): openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) openat$kvm(0xffffffffffffff9c, 0x0, 0x800, 0x0) (async) openat$kvm(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$KVM_GET_DIRTY_LOG(0xffffffffffffffff, 0x4010ae42, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = mmap$KVM_VCPU(&(0x7f000000e000/0x4000)=nil, 0x930, 0x3, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f00000002c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521cd66f8f1f447d3570707cd24b7eebb20700000000000000000000000100", 0x0, 0xffffffffffffffa7) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x400002, 0x1f01) (async) r4 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x400002, 0x1f01) ioctl$KVM_CREATE_VM(r4, 0x541b, 0x2004001c) 14m27.460088551s ago: executing program 6 (id=740): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000100)=@arm64={0x4e, 0x2, 0x0, '\x00', 0x4}) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0xe) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f0000000040)={0x4, 0x2000}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0x4b47, 0xfffffffffffffffe) r10 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, 0x0, 0x0, 0x0) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x26000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r11, 0xae80, 0x0) r14 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r15, 0x800454dd, 0x16) r16 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r16, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x603000000010004a, 0x0}) 14m25.356392099s ago: executing program 5 (id=741): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x2ad, 0x9, &(0x7f0000000080)=0x1ff}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d) ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000100)) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) r4 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000580)={0x0, &(0x7f0000000180)=[@irq_setup={0x46, 0x18, {0x2, 0x2ed}}, @smc={0x1e, 0x40, {0x0, [0xffff, 0x8, 0x10000, 0x39f0, 0xb]}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x2, 0x2, 0x2, 0x2, 0x3}}, @eret={0xe6, 0x18, 0xda}, @mrs={0xbe, 0x18, {0x603000000013c100}}, @eret={0xe6, 0x18, 0x8}, @svc={0x122, 0x40, {0x1000, [0xad, 0x0, 0x9709, 0xfd, 0x10001]}}, @code={0xa, 0x6c, {"000028d50038200e00459fd200c0b0f2210180d2820080d2c30180d2640080d2020000d4000008d5007008d5007008d5007008d5007008d5004e88d20060b8f2a10080d2e20080d2230180d2a40080d2020000d4003c200e"}}, @smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0xffffffffffffffff, 0x5, 0x100000000, 0x5]}}, @eret={0xe6, 0x18, 0x2}, @smc={0x1e, 0x40, {0x84000050, [0x0, 0x100, 0xe, 0x8, 0xa800000000000000]}}, @svc={0x122, 0x40, {0x84000005, [0x31, 0x874, 0x8, 0x8, 0x2]}}, @uexit={0x0, 0x18, 0x8}, @msr={0x14, 0x20, {0x6030000000138015, 0xff}}, @msr={0x14, 0x20, {0x603000000013df6c}}, @svc={0x122, 0x40, {0x80003fff, [0x7, 0x1ff, 0x5, 0x9, 0x8000000000000]}}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x1, 0x6d}}, @svc={0x122, 0x40, {0x80003fff, [0x1, 0x7, 0x3, 0x6, 0xfffffffffffffff9]}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0xc1}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x1fc}}, @uexit={0x0, 0x18, 0xf5}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x4, 0x7, 0x60, 0xfffffffc}}], 0x3e4}, &(0x7f00000005c0)=[@featur2={0x1, 0x48}], 0x1) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000b00)=[{0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x6030000000138002}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x126}}, @eret={0xe6, 0x18}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x1de}}, @code={0xa, 0x84, {"0088210ee0e295d200e0b8f2010080d2a20080d2230080d2240180d2020000d4008008d500a09f0c00d8217e000028d500b8215ee07684d200a0b8f2010080d2820180d2630180d2240180d2020000d420db93d20040b8f2c10180d2020080d2a30080d2440180d2020000d4007008d5"}}, @smc={0x1e, 0x40, {0x8600ff01, [0x2, 0x40, 0x6, 0x2, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x4, 0xc, 0xffffffff, 0x8091, 0x2}}, @mrs={0xbe, 0x18, {0x603000000013c807}}, @irq_setup={0x46, 0x18, {0x3, 0x39a}}, @eret={0xe6, 0x18, 0x10001}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0xe, 0x9, 0xfffffffa, 0x3}}, @irq_setup={0x46, 0x18, {0x1, 0x3d4}}, @msr={0x14, 0x20, {0x603000000013dee2, 0xfffffffffffffff9}}, @irq_setup={0x46, 0x18, {0x3, 0xb}}, @mrs={0xbe, 0x18}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0xd00, 0x1, 0x1}}, @eret={0xe6, 0x18, 0x80000000}, @smc={0x1e, 0x40, {0x80000000, [0xffffffffffffffff, 0x9, 0x7, 0x3ff, 0x6]}}, @hvc={0x32, 0x40, {0x8000, [0x5, 0x7, 0x3ff, 0xfffffffffffffffc, 0xda5]}}, @hvc={0x32, 0x40, {0x200, [0x6, 0x2, 0x8, 0x7f]}}, @hvc={0x32, 0x40, {0x8400000d, [0x3c4, 0x6, 0x9e4b, 0x0, 0x7fffffffffffffff]}}, @smc={0x1e, 0x40, {0x86000001, [0x5, 0xb2b, 0x6c, 0x5, 0x3]}}, @hvc={0x32, 0x40, {0x4000, [0x4f6f285c, 0x8000000000000000, 0xaa7, 0x9, 0x6553]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x3, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x0, 0x8001, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x1, 0x4, 0x4, 0x1, 0x4}}], 0x4c4}], 0x1, 0x0, &(0x7f0000000b40)=[@featur2={0x1, 0x6a}], 0x1) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000b80)={0x2, 0x9d04}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000bc0)) ioctl$KVM_CAP_HALT_POLL(r5, 0x4068aea3, &(0x7f0000000c40)={0xb6, 0x0, 0x3f}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000cc0)={0x9, 0xffffffffffffffff, 0x1}) ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000d00)={0x100000, 0x8080000, 0x9, 0x0, 0x5}) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x18) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r6, 0x4068aea3, &(0x7f0000000d40)={0xdf, 0x0, 0x11000}) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000dc0)=0x3) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000001200)={0x10000, 0x400, 0x1c0, &(0x7f0000000e00)=[0x1, 0x9, 0x4, 0x5, 0x4ba, 0xf, 0x6f6c, 0x9, 0x6, 0x8, 0x200, 0x81, 0x6, 0x3f70, 0x7ff, 0x9, 0x80, 0xa00000000000, 0xfffffffffffffbff, 0xfffffffffffffffa, 0x7f, 0x8001, 0x5, 0xb626, 0xfff, 0x1b, 0x9, 0xda, 0x7, 0xcf1a, 0x3, 0xf7f, 0x6, 0xffffffffffffffff, 0x1, 0x7ff, 0x9, 0x8000, 0x2, 0x1, 0x2, 0x101, 0x4400, 0x2, 0xc, 0xfffffffffffffff9, 0x7, 0xffff, 0x3, 0x1, 0x2, 0x6, 0x0, 0xcd5, 0x4, 0x800, 0x1000, 0x379d1565, 0xb3, 0xffffffffffff8a07, 0x868a, 0x5, 0x8, 0x7, 0x4, 0x3, 0x1ff, 0x7, 0x101, 0x7, 0x5, 0x9, 0x6, 0x2, 0x8, 0xffffffff, 0x5, 0xffff, 0xfffffffffffffff7, 0x90, 0x7, 0xc0, 0x2, 0x5, 0x0, 0x5, 0x7bfe, 0x8, 0x6, 0xb1df, 0x2, 0x64, 0x8000000000000000, 0x8000000000000001, 0x8000, 0x9, 0x3, 0x1ff, 0x7072, 0xfff, 0x5, 0x9, 0x5, 0xfffffffffffffbff, 0x101, 0x0, 0x8, 0x2, 0x9, 0x8, 0x2, 0xd37, 0x3, 0x1, 0x5, 0x49, 0x2, 0x8, 0x0, 0x0, 0x7940, 0xffffffffffffffff, 0x30, 0xd8, 0x0, 0xfffffffffffffffb, 0x0, 0x5]}) ioctl$KVM_GET_MP_STATE(r4, 0x8004ae98, &(0x7f0000001240)) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r7, 0x4010aeb5, &(0x7f0000001280)={0x6, 0x7221a1e8}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r7, 0x4010ae68, &(0x7f00000012c0)={0x8000000, 0x14000, 0x1}) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000001340)=@attr_other={0x0, 0x401, 0xdd3f000000000000, &(0x7f0000001300)=0x7fffffffffffffff}) ioctl$KVM_SET_SREGS(r4, 0x4000ae84, &(0x7f0000001380)={{0x100000, 0x6000, 0xf, 0x3, 0xa6, 0x7, 0x8, 0x2, 0x1, 0x0, 0x5, 0x6}, {0x0, 0x40000, 0x9, 0x5, 0x0, 0x6, 0x0, 0x0, 0x8, 0x7, 0x9, 0x5}, {0xffff1000, 0x60000, 0x0, 0x0, 0x7, 0xb, 0x2, 0x3, 0x9, 0x80, 0x5, 0x1}, {0xf000, 0x4000, 0x8, 0x7, 0x3, 0x8, 0x5a, 0x25, 0x9, 0x5, 0x10, 0xa}, {0xdddd1000, 0xeeee8000, 0x8, 0x2, 0x0, 0x6, 0x7, 0x92, 0x5, 0xe4, 0x4, 0xb}, {0x58000, 0xd000, 0xf, 0x8, 0x6, 0x1a, 0xfc, 0x1c, 0x9, 0x5, 0x6, 0xe}, {0x41000, 0xeeee8000, 0x9, 0x0, 0x5, 0x4, 0x0, 0x6, 0x7, 0x7, 0x71, 0x2b}, {0x6000, 0x3000, 0x0, 0xc1, 0x3, 0x7, 0xa, 0x8, 0x3, 0x2c, 0x1, 0xfb}, {0x9000, 0xe8ad}, {0x4, 0x2}, 0x40010, 0x0, 0x9000, 0x2a3f8538942a2146, 0x7, 0x1102, 0x8000000, [0x2, 0x677, 0x100000001, 0xe2]}) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000001700)={0x0, &(0x7f00000014c0)=[@its_setup={0x82, 0x28, {0x0, 0x4, 0x3a7}}, @smc={0x1e, 0x40, {0x3000000, [0x7, 0x7, 0xcc7, 0x180000000000000, 0x8]}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0xa, 0x3ff, 0x1, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x180, 0x9, 0xa}}, @irq_setup={0x46, 0x18, {0x0, 0x197}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0xbc, 0x8}}, @eret={0xe6, 0x18, 0x1}, @eret={0xe6, 0x18, 0x6}, @mrs={0xbe, 0x18, {0x603000000013c109}}, @uexit={0x0, 0x18, 0xf}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x29a}}, @mrs={0xbe, 0x18, {0x603000000013de92}}, @code={0xa, 0x84, {"002c000e00a4002f000028d5008008d5e00d92d20080b8f2c10180d2a20180d2430180d2240180d2020000d4e0399ad200e0b8f2410080d2a20180d2e30180d2640080d2020000d40084ff0d000008d5604099d200e0b8f2610080d2020180d2430080d2840080d2020000d40020204e"}}], 0x22c}, 0x0, 0x0) eventfd2(0x9, 0x800) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000001780)=@riscv64_aia_csr={0x8030000003010003, &(0x7f0000001740)=0x1b7871bc}) 13m39.863779061s ago: executing program 37 (id=740): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000100)=@arm64={0x4e, 0x2, 0x0, '\x00', 0x4}) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x8040ae9f, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0xe) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f0000000040)={0x4, 0x2000}) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r9, 0x4b47, 0xfffffffffffffffe) r10 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r11 = syz_kvm_add_vcpu$arm64(r10, 0x0, 0x0, 0x0) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0) r13 = ioctl$KVM_CREATE_VM(r12, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x1, 0x26000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r13, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r11, 0xae80, 0x0) r14 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r14, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r15, 0x800454dd, 0x16) r16 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r16, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x603000000010004a, 0x0}) 13m34.356786247s ago: executing program 38 (id=741): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40002, 0x0) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000040)={0x5, 0xffffffffffffffff, 0x1}) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x2ad, 0x9, &(0x7f0000000080)=0x1ff}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2d) ioctl$KVM_CAP_ARM_MTE(r2, 0x4068aea3, &(0x7f0000000100)) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) r4 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000580)={0x0, &(0x7f0000000180)=[@irq_setup={0x46, 0x18, {0x2, 0x2ed}}, @smc={0x1e, 0x40, {0x0, [0xffff, 0x8, 0x10000, 0x39f0, 0xb]}}, @its_send_cmd={0xaa, 0x28, {0xd, 0x1, 0x2, 0x2, 0x2, 0x2, 0x3}}, @eret={0xe6, 0x18, 0xda}, @mrs={0xbe, 0x18, {0x603000000013c100}}, @eret={0xe6, 0x18, 0x8}, @svc={0x122, 0x40, {0x1000, [0xad, 0x0, 0x9709, 0xfd, 0x10001]}}, @code={0xa, 0x6c, {"000028d50038200e00459fd200c0b0f2210180d2820080d2c30180d2640080d2020000d4000008d5007008d5007008d5007008d5007008d5004e88d20060b8f2a10080d2e20080d2230180d2a40080d2020000d4003c200e"}}, @smc={0x1e, 0x40, {0x84000012, [0xffffffff, 0xffffffffffffffff, 0x5, 0x100000000, 0x5]}}, @eret={0xe6, 0x18, 0x2}, @smc={0x1e, 0x40, {0x84000050, [0x0, 0x100, 0xe, 0x8, 0xa800000000000000]}}, @svc={0x122, 0x40, {0x84000005, [0x31, 0x874, 0x8, 0x8, 0x2]}}, @uexit={0x0, 0x18, 0x8}, @msr={0x14, 0x20, {0x6030000000138015, 0xff}}, @msr={0x14, 0x20, {0x603000000013df6c}}, @svc={0x122, 0x40, {0x80003fff, [0x7, 0x1ff, 0x5, 0x9, 0x8000000000000]}}, @eret={0xe6, 0x18}, @irq_setup={0x46, 0x18, {0x1, 0x6d}}, @svc={0x122, 0x40, {0x80003fff, [0x1, 0x7, 0x3, 0x6, 0xfffffffffffffff9]}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0xc1}}, @its_setup={0x82, 0x28, {0x2, 0x0, 0x1fc}}, @uexit={0x0, 0x18, 0xf5}, @its_send_cmd={0xaa, 0x28, {0x4, 0x1, 0x4, 0x7, 0x60, 0xfffffffc}}], 0x3e4}, &(0x7f00000005c0)=[@featur2={0x1, 0x48}], 0x1) syz_kvm_setup_cpu$arm64(r3, r4, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000b00)=[{0x0, &(0x7f0000000600)=[@mrs={0xbe, 0x18, {0x6030000000138002}}, @its_setup={0x82, 0x28, {0x1, 0x0, 0x126}}, @eret={0xe6, 0x18}, @its_setup={0x82, 0x28, {0x4, 0x0, 0x1de}}, @code={0xa, 0x84, {"0088210ee0e295d200e0b8f2010080d2a20080d2230080d2240180d2020000d4008008d500a09f0c00d8217e000028d500b8215ee07684d200a0b8f2010080d2820180d2630180d2240180d2020000d420db93d20040b8f2c10180d2020080d2a30080d2440180d2020000d4007008d5"}}, @smc={0x1e, 0x40, {0x8600ff01, [0x2, 0x40, 0x6, 0x2, 0x4]}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x1, 0x4, 0xc, 0xffffffff, 0x8091, 0x2}}, @mrs={0xbe, 0x18, {0x603000000013c807}}, @irq_setup={0x46, 0x18, {0x3, 0x39a}}, @eret={0xe6, 0x18, 0x10001}, @its_send_cmd={0xaa, 0x28, {0x8, 0x1, 0x4, 0xe, 0x9, 0xfffffffa, 0x3}}, @irq_setup={0x46, 0x18, {0x1, 0x3d4}}, @msr={0x14, 0x20, {0x603000000013dee2, 0xfffffffffffffff9}}, @irq_setup={0x46, 0x18, {0x3, 0xb}}, @mrs={0xbe, 0x18}, @memwrite={0x6e, 0x30, @vgic_gicr={0x8100000, 0xd00, 0x1, 0x1}}, @eret={0xe6, 0x18, 0x80000000}, @smc={0x1e, 0x40, {0x80000000, [0xffffffffffffffff, 0x9, 0x7, 0x3ff, 0x6]}}, @hvc={0x32, 0x40, {0x8000, [0x5, 0x7, 0x3ff, 0xfffffffffffffffc, 0xda5]}}, @hvc={0x32, 0x40, {0x200, [0x6, 0x2, 0x8, 0x7f]}}, @hvc={0x32, 0x40, {0x8400000d, [0x3c4, 0x6, 0x9e4b, 0x0, 0x7fffffffffffffff]}}, @smc={0x1e, 0x40, {0x86000001, [0x5, 0xb2b, 0x6c, 0x5, 0x3]}}, @hvc={0x32, 0x40, {0x4000, [0x4f6f285c, 0x8000000000000000, 0xaa7, 0x9, 0x6553]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x3, 0x6}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80a0000, 0x0, 0x8001, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xfffc, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xb, 0x0, 0x1, 0x4, 0x4, 0x1, 0x4}}], 0x4c4}], 0x1, 0x0, &(0x7f0000000b40)=[@featur2={0x1, 0x6a}], 0x1) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x32) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000b80)={0x2, 0x9d04}) ioctl$KVM_CAP_ARM_SYSTEM_SUSPEND(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000bc0)) ioctl$KVM_CAP_HALT_POLL(r5, 0x4068aea3, &(0x7f0000000c40)={0xb6, 0x0, 0x3f}) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000cc0)={0x9, 0xffffffffffffffff, 0x1}) ioctl$KVM_SIGNAL_MSI(r5, 0x4020aea5, &(0x7f0000000d00)={0x100000, 0x8080000, 0x9, 0x0, 0x5}) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x18) ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r6, 0x4068aea3, &(0x7f0000000d40)={0xdf, 0x0, 0x11000}) ioctl$KVM_S390_VCPU_FAULT(r4, 0x4008ae52, &(0x7f0000000dc0)=0x3) ioctl$KVM_CLEAR_DIRTY_LOG(r2, 0xc018aec0, &(0x7f0000001200)={0x10000, 0x400, 0x1c0, &(0x7f0000000e00)=[0x1, 0x9, 0x4, 0x5, 0x4ba, 0xf, 0x6f6c, 0x9, 0x6, 0x8, 0x200, 0x81, 0x6, 0x3f70, 0x7ff, 0x9, 0x80, 0xa00000000000, 0xfffffffffffffbff, 0xfffffffffffffffa, 0x7f, 0x8001, 0x5, 0xb626, 0xfff, 0x1b, 0x9, 0xda, 0x7, 0xcf1a, 0x3, 0xf7f, 0x6, 0xffffffffffffffff, 0x1, 0x7ff, 0x9, 0x8000, 0x2, 0x1, 0x2, 0x101, 0x4400, 0x2, 0xc, 0xfffffffffffffff9, 0x7, 0xffff, 0x3, 0x1, 0x2, 0x6, 0x0, 0xcd5, 0x4, 0x800, 0x1000, 0x379d1565, 0xb3, 0xffffffffffff8a07, 0x868a, 0x5, 0x8, 0x7, 0x4, 0x3, 0x1ff, 0x7, 0x101, 0x7, 0x5, 0x9, 0x6, 0x2, 0x8, 0xffffffff, 0x5, 0xffff, 0xfffffffffffffff7, 0x90, 0x7, 0xc0, 0x2, 0x5, 0x0, 0x5, 0x7bfe, 0x8, 0x6, 0xb1df, 0x2, 0x64, 0x8000000000000000, 0x8000000000000001, 0x8000, 0x9, 0x3, 0x1ff, 0x7072, 0xfff, 0x5, 0x9, 0x5, 0xfffffffffffffbff, 0x101, 0x0, 0x8, 0x2, 0x9, 0x8, 0x2, 0xd37, 0x3, 0x1, 0x5, 0x49, 0x2, 0x8, 0x0, 0x0, 0x7940, 0xffffffffffffffff, 0x30, 0xd8, 0x0, 0xfffffffffffffffb, 0x0, 0x5]}) ioctl$KVM_GET_MP_STATE(r4, 0x8004ae98, &(0x7f0000001240)) r7 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x29) ioctl$KVM_ARM_SET_COUNTER_OFFSET(r7, 0x4010aeb5, &(0x7f0000001280)={0x6, 0x7221a1e8}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r7, 0x4010ae68, &(0x7f00000012c0)={0x8000000, 0x14000, 0x1}) ioctl$KVM_HAS_DEVICE_ATTR(r1, 0x4018aee3, &(0x7f0000001340)=@attr_other={0x0, 0x401, 0xdd3f000000000000, &(0x7f0000001300)=0x7fffffffffffffff}) ioctl$KVM_SET_SREGS(r4, 0x4000ae84, &(0x7f0000001380)={{0x100000, 0x6000, 0xf, 0x3, 0xa6, 0x7, 0x8, 0x2, 0x1, 0x0, 0x5, 0x6}, {0x0, 0x40000, 0x9, 0x5, 0x0, 0x6, 0x0, 0x0, 0x8, 0x7, 0x9, 0x5}, {0xffff1000, 0x60000, 0x0, 0x0, 0x7, 0xb, 0x2, 0x3, 0x9, 0x80, 0x5, 0x1}, {0xf000, 0x4000, 0x8, 0x7, 0x3, 0x8, 0x5a, 0x25, 0x9, 0x5, 0x10, 0xa}, {0xdddd1000, 0xeeee8000, 0x8, 0x2, 0x0, 0x6, 0x7, 0x92, 0x5, 0xe4, 0x4, 0xb}, {0x58000, 0xd000, 0xf, 0x8, 0x6, 0x1a, 0xfc, 0x1c, 0x9, 0x5, 0x6, 0xe}, {0x41000, 0xeeee8000, 0x9, 0x0, 0x5, 0x4, 0x0, 0x6, 0x7, 0x7, 0x71, 0x2b}, {0x6000, 0x3000, 0x0, 0xc1, 0x3, 0x7, 0xa, 0x8, 0x3, 0x2c, 0x1, 0xfb}, {0x9000, 0xe8ad}, {0x4, 0x2}, 0x40010, 0x0, 0x9000, 0x2a3f8538942a2146, 0x7, 0x1102, 0x8000000, [0x2, 0x677, 0x100000001, 0xe2]}) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000001700)={0x0, &(0x7f00000014c0)=[@its_setup={0x82, 0x28, {0x0, 0x4, 0x3a7}}, @smc={0x1e, 0x40, {0x3000000, [0x7, 0x7, 0xcc7, 0x180000000000000, 0x8]}}, @its_send_cmd={0xaa, 0x28, {0xf, 0x0, 0x0, 0xa, 0x3ff, 0x1, 0x1}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0x180, 0x9, 0xa}}, @irq_setup={0x46, 0x18, {0x0, 0x197}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x300, 0xbc, 0x8}}, @eret={0xe6, 0x18, 0x1}, @eret={0xe6, 0x18, 0x6}, @mrs={0xbe, 0x18, {0x603000000013c109}}, @uexit={0x0, 0x18, 0xf}, @its_setup={0x82, 0x28, {0x3, 0x0, 0x29a}}, @mrs={0xbe, 0x18, {0x603000000013de92}}, @code={0xa, 0x84, {"002c000e00a4002f000028d5008008d5e00d92d20080b8f2c10180d2a20180d2430180d2240180d2020000d4e0399ad200e0b8f2410080d2a20180d2e30180d2640080d2020000d40084ff0d000008d5604099d200e0b8f2610080d2020180d2430080d2840080d2020000d40020204e"}}], 0x22c}, 0x0, 0x0) eventfd2(0x9, 0x800) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000001780)=@riscv64_aia_csr={0x8030000003010003, &(0x7f0000001740)=0x1b7871bc}) 3m30.552107534s ago: executing program 7 (id=749): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x200000000000000) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2c) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x5, 0x0, 0x1000, 0x1000, &(0x7f0000275000/0x1000)=nil}) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f0000000000/0x400000)=nil, &(0x7f0000000280)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000500)={0x2710, 0x1, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil}) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013c4f1, 0x8000}}, @msr={0x14, 0x20, {0x603000000013dce4, 0x8000}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x2b) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dcf0, 0x7fff}}], 0x20}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) r13 = syz_kvm_setup_syzos_vm$arm64(r12, &(0x7f0000c00000/0x400000)=nil) r14 = syz_kvm_add_vcpu$arm64(r13, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r12, 0x1, 0x40) ioctl$KVM_SET_VCPU_EVENTS(r14, 0x4040aea0, &(0x7f0000000000)=@arm64={0x6, 0x6, 0xad, '\x00', 0x76}) ioctl$KVM_SET_MP_STATE(r14, 0x4004ae99, &(0x7f00000000c0)=0xa) ioctl$KVM_RUN(r14, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r15 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r15, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@its_setup={0x82, 0x28, {0x1, 0x1, 0x1}}, @its_send_cmd={0xaa, 0x28, {0xe, 0x0, 0x2, 0x6}}], 0x50}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) 2m56.343326703s ago: executing program 7 (id=751): r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1d) ioctl$KVM_CREATE_DEVICE(r0, 0xc00caee0, &(0x7f0000000040)={0xa}) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000000c0)={0x40000, 0x19000, 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_GET_REG_LIST(r3, 0x4020aeae, &(0x7f0000000000)={0x5, [0x0, 0x400000000, 0xf8, 0x4, 0x200000000000004]}) ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000100)={0x414, 0x9}) 2m51.991454709s ago: executing program 8 (id=752): ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r0 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) (async) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3abf408020000001b0000005a9610fbff67411ce16f8f1f449a7ab2aa76c829d2092f000000000000002d0200df38000000000000503c20001e91114900", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x100000000001e) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0xdddd1000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_CREATE_DEVICE(r5, 0xc018aec0, &(0x7f00000000c0)={0x1}) (async) ioctl$KVM_CREATE_DEVICE(r5, 0xc018aec0, &(0x7f00000000c0)={0x1}) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x100, 0x0) r6 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x80, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x1e) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) r10 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) mmap$KVM_VCPU(&(0x7f0000007000/0x2000)=nil, 0x930, 0x2800002, 0x2012, r10, 0x0) syz_kvm_setup_cpu$arm64(r7, r8, &(0x7f0000c00000/0x400000)=nil, &(0x7f0000000100)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f00000003c0)=[@featur2={0x1, 0x17}], 0x1) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042}) (async) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000140)=@arm64_core={0x6030000000100042}) r11 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r4, 0xae01, 0xf) (async) ioctl$KVM_CREATE_VM(r4, 0xae01, 0xf) ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r12, 0x4020aeae, &(0x7f0000000000)={0x5}) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) ioctl$KVM_RUN(r12, 0xae80, 0x0) 2m36.044060916s ago: executing program 7 (id=753): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x6030000000138084, 0x8000}}, @msr={0x14, 0x20, {0x6030000000139828, 0x8000}}, @msr={0x14, 0x20, {0x603000000013c081, 0x8000}}, @msr={0x14, 0x20, {0x603000000013c230, 0x8000}}], 0x80}, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2m24.656481903s ago: executing program 8 (id=754): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) (async) r3 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r4, 0xc00caee0, &(0x7f0000000180)={0x8}) r5 = syz_kvm_vgic_v3_setup(r4, 0x3, 0x200) ioctl$KVM_GET_DEVICE_ATTR(r5, 0x4018aee2, &(0x7f0000000100)=@attr_riscv64=@attr_config={0x0, 0x1, 0x0, &(0x7f0000000240)=0x2}) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x1fd, 0x1, 0xd810c07c4b0b099a, 0x2000, &(0x7f0000c11000/0x2000)=nil}) (async) r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x8200, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) (async) mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, 0xffffffffffffffff, 0x0) (async) r9 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r10 = syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000c00000/0x400000)=nil) (async) r11 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0xfffffffffffffffe}}, @msr={0x14, 0x20, {0x603000000013dce1, 0x7}}], 0x40}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r13, 0x4018aee1, &(0x7f0000000340)=@attr_pmu_init) (async) ioctl$KVM_ARM_VCPU_INIT(0xffffffffffffffff, 0x4020aeae, 0x0) ioctl$KVM_RUN(r13, 0xae80, 0x0) r14 = syz_kvm_add_vcpu$arm64(r10, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r14, 0x4018aee1, &(0x7f00000011c0)=@attr_irq_timer={0x0, 0x1, 0x1, &(0x7f00000000c0)=0x14}) (async, rerun: 64) ioctl$KVM_CHECK_EXTENSION(r8, 0x5421, 0x6) (rerun: 64) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f00000002c0)=@attr_pmu_filter={0x0, 0x0, 0x2, &(0x7f0000000300)={0x0, 0x8000, 0x1}}) (async) r15 = syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r15, &(0x7f0000000100)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x7ffd}}], 0x20}, &(0x7f0000000300)=[@featur1={0x1, 0x8}], 0x1) 2m15.956292474s ago: executing program 7 (id=755): ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2d) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x77) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000080), 0x101e40, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x28) r4 = syz_kvm_setup_syzos_vm$arm64(r3, &(0x7f0000b75000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r4, &(0x7f0000000140)={0x0, &(0x7f0000000000)=[@hvc={0x32, 0x40, {0x84000051, [0x84000052, 0xa, 0x4009, 0x4b, 0x7fff]}}], 0x40}, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)={0x53cb, 0x1000, 0x2}}) ioctl$KVM_SET_DEVICE_ATTR_vm(r5, 0x4018aee1, &(0x7f0000000040)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x57fd, 0x2}}) syz_kvm_setup_syzos_vm$arm64(r5, &(0x7f0000c00000/0x400000)=nil) r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r8 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r9 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x2a) syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r12 = syz_kvm_add_vcpu$arm64(r9, &(0x7f0000000b80)={0x0, &(0x7f0000000100)=[@hvc={0x32, 0x40, {0x84000000, [0x100000001, 0x8000000000000000, 0xffffffffffffffff, 0xee24, 0xfffffffffffefffc]}}], 0x40}, &(0x7f0000000040), 0x1) ioctl$KVM_RUN(r12, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(0xffffffffffffffff, 0x4018aee1, 0x0) r13 = syz_kvm_add_vcpu$arm64(r8, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(r13, 0x4010aeac, &(0x7f0000000240)=@arm64_fw={0x6030000000140000, &(0x7f0000000200)=0x2}) r14 = syz_kvm_add_vcpu$arm64(r6, 0x0, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r14, 0x4018aee1, 0x0) r15 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r15, 0xae01, 0x0) 1m59.578377347s ago: executing program 8 (id=756): mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0xe, 0x16831, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0x80111500, 0x20000004) write$eventfd(r1, &(0x7f0000000000)=0xe0, 0xfdf8) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x8280, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) eventfd2(0x5, 0x80001) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_ONE_REG(0xffffffffffffffff, 0x4010aeac, &(0x7f0000000040)=@arm64_core={0x6030000000100050, 0x0}) r4 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) r7 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, 0x930, 0x2800002, 0x11, r6, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r7, 0x20, &(0x7f0000000300)="fb4149dd033b8986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67525673312b01040000000000002627e7000000000000000200", 0x0, 0xfffffffffffffe73) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x12, r6, 0x0) r8 = eventfd2(0x2, 0x80001) close(r8) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) write$eventfd(r8, &(0x7f0000000100)=0xfffffffffffffffe, 0x8) r9 = eventfd2(0x0, 0x0) close(r9) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000ffe000/0x1000)=nil, r10, 0x2000004, 0x2011, r9, 0x1000000) r11 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r12 = eventfd2(0x0, 0x0) ioctl$KVM_CREATE_VM(r12, 0x801c581f, 0x20000000) r13 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000b, 0x11, r11, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r13, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r11, 0x0) 1m46.69950291s ago: executing program 7 (id=757): ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x181900, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) munmap(&(0x7f0000ec1000/0x3000)=nil, 0x3000) mmap$KVM_VCPU(&(0x7f0000ec2000/0x3000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) mmap$KVM_VCPU(&(0x7f0000ec1000/0x1000)=nil, 0x930, 0xf, 0x9032, 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x2e) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r2, 0x400454da, 0x2f) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) r6 = ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r9, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) ioctl$KVM_GET_ONE_REG(r9, 0x4010aeab, &(0x7f0000000080)=@arm64_sys={0x603000000013df54, &(0x7f0000000240)=0x3}) r10 = mmap$KVM_VCPU(&(0x7f0000004000/0x2000)=nil, r6, 0x0, 0x10, r5, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r10, 0x20, &(0x7f00000001c0)="fb4149dd033be3ac2cc4a22332a77b23b08986814d7bb14c94a6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e7", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r5, 0x0) r11 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x2000007, 0x30d2a4fbfbea96b8, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r11, 0x401c5820, &(0x7f0000000100)=@attr_other={0x0, 0x5, 0xfffffffffffffff7, 0x0}) r12 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r12, 0xae03, 0xab) 1m33.006479886s ago: executing program 8 (id=758): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x181b03, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000080), 0x20000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x80c01, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_GUEST_MEMFD(r4, 0xc040aed4, &(0x7f00000001c0)={0x200001fe0000, 0x3}) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x2000003, 0x2013, r5, 0x200001fe0000) (async) r6 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000c00000/0x400000)=nil) r7 = syz_kvm_add_vcpu$arm64(r6, &(0x7f00000000c0)={0x0, 0x0}, 0x0, 0x0) r8 = syz_kvm_vgic_v3_setup(r2, 0x1, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r8, 0x4018aee1, &(0x7f0000000240)=@attr_other={0x0, 0x1, 0x304, &(0x7f00000000c0)=0xffff}) (async) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r7, 0xae80, 0x0) (async) r9 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x2) ioctl$KVM_CREATE_DEVICE(r9, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_CREATE_VM(r10, 0x800454df, 0x800000110c23000a) (async) r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r12 = syz_kvm_setup_syzos_vm$arm64(r11, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r11, 0xae03, 0x7ff) syz_kvm_vgic_v3_setup(r11, 0x1, 0x40) (async) r14 = openat$kvm(0x0, &(0x7f0000000280), 0x0, 0x0) r15 = ioctl$KVM_CREATE_VM(r14, 0xae01, 0x0) r16 = ioctl$KVM_CREATE_VCPU(r15, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r16, 0x4020aeae, &(0x7f0000000100)={0x5, 0x12}) (async) ioctl$KVM_SET_ONE_REG(r16, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013e090, &(0x7f00000001c0)=0x4}) (async) ioctl$KVM_SET_MP_STATE(r13, 0x4004ae99, &(0x7f00000000c0)=0xa) 1m11.906544306s ago: executing program 7 (id=759): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r5, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c61000/0x3000)=nil, 0x930, 0x100000f, 0x4019032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r7, 0x0) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) ioctl$KVM_CAP_HALT_POLL(r9, 0x4068aea3, &(0x7f00000000c0)={0xb6, 0x0, 0xfffffffffffffff8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000280)="d6011813013c360000000000f4ff8000802346cbd98762c7795582ba3948ecff090001000000000000000000040000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000001, 0x12, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @sint={0x9, 0x3800000}}, {0x9, 0x3, 0x0, 0x0, @irqchip={0x3, 0x1}}, {0x0, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4}}, {0x0, 0x0, 0x1, 0x0, @adapter={0x0, 0x5, 0xffffffffffffffff, 0x7f, 0xb2d}}]}) write$eventfd(r12, &(0x7f00000001c0)=0x3, 0x50) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x3ff, 0x0}) 1m7.671730623s ago: executing program 8 (id=760): mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0xdc032, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000200)={0x5}) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_sve_vls={0x606000000015ffff, 0x0}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb0149dd033be3ac2cc4a29ea6ab8031d1dfd92f00000000010000005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa7fc869d22627e700", 0x0, 0x48) 50.833789763s ago: executing program 8 (id=761): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x0, 0x80031, 0xffffffffffffffff, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f00000002c0), 0x4a080, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) (async) r6 = syz_kvm_vgic_v3_setup(r5, 0x1, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x6, 0x5, 0xffffffffffffffff}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) 23.76929021s ago: executing program 39 (id=759): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc9, 0x3}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r4, 0xae04) mmap$KVM_VCPU(&(0x7f0000c60000/0x2000)=nil, r5, 0x300000a, 0x16831, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c61000/0x3000)=nil, 0x930, 0x100000f, 0x4019032, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) r8 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x1800002, 0x11, r7, 0x0) r9 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x34) ioctl$KVM_CAP_HALT_POLL(r9, 0x4068aea3, &(0x7f00000000c0)={0xb6, 0x0, 0xfffffffffffffff8}) syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f0000000280)="d6011813013c360000000000f4ff8000802346cbd98762c7795582ba3948ecff090001000000000000000000040000000100", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r7, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000001, 0x12, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6000006, 0x4d832, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) r10 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r11, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f00000001c0)=@x86={0x11, 0x8, 0xf, 0x0, 0x5, 0x6, 0x6, 0x6, 0x48, 0x86, 0xdd, 0x68, 0x0, 0x9, 0x0, 0x0, 0x3, 0x5, 0x8, '\x00', 0x1, 0x400000000002}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4008ae6a, &(0x7f0000000140)={0x4, 0x0, [{0x1, 0x1, 0x0, 0x0, @sint={0x9, 0x3800000}}, {0x9, 0x3, 0x0, 0x0, @irqchip={0x3, 0x1}}, {0x0, 0x0, 0x0, 0x0, @msi={0x0, 0x0, 0x4}}, {0x0, 0x0, 0x1, 0x0, @adapter={0x0, 0x5, 0xffffffffffffffff, 0x7f, 0xb2d}}]}) write$eventfd(r12, &(0x7f00000001c0)=0x3, 0x50) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x40305828, &(0x7f0000000040)=@attr_other={0x0, 0x0, 0x3ff, 0x0}) 0s ago: executing program 40 (id=761): r0 = openat$kvm(0x0, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c0c000/0x2000)=nil, 0x930, 0x0, 0x80031, 0xffffffffffffffff, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000180)={0x0, &(0x7f00000001c0)=[@msr={0x14, 0x20, {0x603000000013dce0, 0x2}}], 0x20}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, 0x0) (async) r4 = openat$kvm(0x0, &(0x7f00000002c0), 0x4a080, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) (async) r6 = syz_kvm_vgic_v3_setup(r5, 0x1, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r6, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x6, 0x5, 0xffffffffffffffff}) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) kernel console output (not intermixed with test programs): [ 372.462138][ T24] audit: type=1400 audit(371.630:75): avc: denied { write } for pid=3261 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 375.003860][ T3206] 8021q: adding VLAN 0 to HW filter on device bond0 [ 382.063298][ T24] audit: type=1400 audit(381.240:76): avc: denied { write } for pid=3269 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 388.172963][ T24] audit: type=1400 audit(387.340:77): avc: denied { write } for pid=3272 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 405.691997][ T24] audit: type=1400 audit(404.870:78): avc: denied { write } for pid=3279 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 409.812942][ T24] audit: type=1400 audit(408.970:79): avc: denied { write } for pid=3282 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 420.543009][ T24] audit: type=1400 audit(419.720:80): avc: denied { write } for pid=3287 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 424.423168][ T24] audit: type=1400 audit(423.600:81): avc: denied { write } for pid=3290 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 427.089644][ T3206] eql: remember to turn off Van-Jacobson compression on your slave devices [ 434.142126][ T24] audit: type=1400 audit(433.300:82): avc: denied { write } for pid=3294 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 437.972433][ T24] audit: type=1400 audit(437.150:83): avc: denied { write } for pid=3297 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 451.049383][ T24] audit: type=1400 audit(450.230:84): avc: denied { write } for pid=3302 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 456.319892][ T24] audit: type=1400 audit(455.500:85): avc: denied { write } for pid=3305 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 462.432065][ T24] audit: type=1400 audit(461.610:86): avc: denied { write } for pid=3307 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 466.272344][ T24] audit: type=1400 audit(465.450:87): avc: denied { write } for pid=3310 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 476.457001][ T24] audit: type=1400 audit(475.640:88): avc: denied { write } for pid=3315 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 480.252699][ T24] audit: type=1400 audit(479.420:89): avc: denied { write } for pid=3318 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 485.688297][ T24] audit: type=1400 audit(484.870:90): avc: denied { write } for pid=3320 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 489.425657][ T24] audit: type=1400 audit(488.610:91): avc: denied { write } for pid=3323 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 515.001945][ T24] audit: type=1400 audit(514.180:92): avc: denied { write } for pid=3335 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 520.273294][ T24] audit: type=1400 audit(519.440:93): avc: denied { write } for pid=3338 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 530.308757][ T24] audit: type=1400 audit(529.490:94): avc: denied { write } for pid=3342 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 534.262108][ T24] audit: type=1400 audit(533.410:95): avc: denied { write } for pid=3345 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 550.154725][ T24] audit: type=1400 audit(549.340:96): avc: denied { write } for pid=3350 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 554.176412][ T24] audit: type=1400 audit(553.360:97): avc: denied { write } for pid=3353 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 Warning: Permanently added '[localhost]:34446' (ED25519) to the list of known hosts. [ 594.265047][ T24] audit: type=1400 audit(593.440:98): avc: denied { name_bind } for pid=3358 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 596.038970][ T24] audit: type=1400 audit(595.220:99): avc: denied { write } for pid=3359 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 596.174940][ T24] audit: type=1400 audit(595.360:100): avc: denied { execute } for pid=3360 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 596.209283][ T24] audit: type=1400 audit(595.370:101): avc: denied { execute_no_trans } for pid=3360 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 598.479936][ T24] audit: type=1400 audit(597.660:102): avc: denied { write } for pid=3363 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 622.742378][ T24] audit: type=1400 audit(621.920:103): avc: denied { mounton } for pid=3360 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 622.779038][ T24] audit: type=1400 audit(621.960:104): avc: denied { mount } for pid=3360 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 622.869543][ T3360] cgroup: Unknown subsys name 'net' [ 622.930133][ T24] audit: type=1400 audit(622.110:105): avc: denied { unmount } for pid=3360 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 623.334612][ T3360] cgroup: Unknown subsys name 'cpuset' [ 623.449772][ T3360] cgroup: Unknown subsys name 'rlimit' [ 624.332477][ T24] audit: type=1400 audit(623.500:106): avc: denied { setattr } for pid=3360 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 624.333716][ T24] audit: type=1400 audit(623.510:107): avc: denied { mounton } for pid=3360 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 624.364656][ T24] audit: type=1400 audit(623.550:108): avc: denied { mount } for pid=3360 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 625.365053][ T3367] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 625.385984][ T24] audit: type=1400 audit(624.560:109): avc: denied { relabelto } for pid=3367 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 625.405514][ T24] audit: type=1400 audit(624.580:110): avc: denied { write } for pid=3367 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 625.599884][ T24] audit: type=1400 audit(624.780:111): avc: denied { read } for pid=3360 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 625.624236][ T24] audit: type=1400 audit(624.800:112): avc: denied { open } for pid=3360 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 625.670077][ T3360] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 686.448521][ T24] audit: type=1400 audit(685.630:113): avc: denied { execmem } for pid=3368 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 690.882283][ T24] audit: type=1400 audit(690.040:115): avc: denied { open } for pid=3371 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 690.883629][ T24] audit: type=1400 audit(690.010:114): avc: denied { read } for pid=3370 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 690.983747][ T24] audit: type=1400 audit(690.160:116): avc: denied { mounton } for pid=3370 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 691.485505][ T24] audit: type=1400 audit(690.660:117): avc: denied { module_request } for pid=3371 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 692.960464][ T24] audit: type=1400 audit(692.120:118): avc: denied { sys_module } for pid=3371 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 717.311759][ T3371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 717.568220][ T3371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 717.869508][ T3370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 718.277707][ T3370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 729.862964][ T3371] hsr_slave_0: entered promiscuous mode [ 729.890565][ T3371] hsr_slave_1: entered promiscuous mode [ 730.690152][ T3370] hsr_slave_0: entered promiscuous mode [ 730.720559][ T3370] hsr_slave_1: entered promiscuous mode [ 730.760122][ T3370] debugfs: 'hsr0' already exists in 'hsr' [ 730.773173][ T3370] Cannot create hsr debugfs directory [ 736.553926][ T24] audit: type=1400 audit(735.730:119): avc: denied { create } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 736.596577][ T24] audit: type=1400 audit(735.770:120): avc: denied { write } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 736.723751][ T24] audit: type=1400 audit(735.840:121): avc: denied { read } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 736.879716][ T3371] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 737.133932][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 737.234972][ T3371] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 737.444865][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 737.490225][ T3371] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 737.713969][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 737.903394][ T3371] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 738.015833][ T3371] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 739.637109][ T3370] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 739.817340][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 739.936956][ T3370] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 740.069442][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 740.110762][ T3370] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 740.236887][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 740.295194][ T3370] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 740.434667][ T3370] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 752.155139][ T3371] 8021q: adding VLAN 0 to HW filter on device bond0 [ 755.287748][ T3370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 806.419108][ T3371] veth0_vlan: entered promiscuous mode [ 806.986017][ T3371] veth1_vlan: entered promiscuous mode [ 808.810015][ T3371] veth0_macvtap: entered promiscuous mode [ 809.379901][ T3371] veth1_macvtap: entered promiscuous mode [ 809.454145][ T3370] veth0_vlan: entered promiscuous mode [ 810.369171][ T3370] veth1_vlan: entered promiscuous mode [ 811.757753][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.770189][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.867101][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 811.968922][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 814.194148][ T3370] veth0_macvtap: entered promiscuous mode [ 815.058239][ T3370] veth1_macvtap: entered promiscuous mode [ 815.172151][ T24] audit: type=1400 audit(814.330:122): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 815.508515][ T24] audit: type=1400 audit(814.690:123): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.eMe0rI/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 815.804007][ T24] audit: type=1400 audit(814.930:124): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 816.254622][ T24] audit: type=1400 audit(815.430:125): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.eMe0rI/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 816.403290][ T24] audit: type=1400 audit(815.580:126): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/syzkaller.eMe0rI/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3731 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 817.482705][ T24] audit: type=1400 audit(816.550:127): avc: denied { unmount } for pid=3371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 817.782451][ T24] audit: type=1400 audit(816.960:128): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 817.890207][ T24] audit: type=1400 audit(817.070:129): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="gadgetfs" ino=3739 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 818.233651][ T3373] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 818.237867][ T3373] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 818.284306][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 818.317431][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 818.537032][ T24] audit: type=1400 audit(817.600:130): avc: denied { mount } for pid=3371 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 818.650674][ T24] audit: type=1400 audit(817.830:131): avc: denied { mounton } for pid=3371 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 820.888979][ T3371] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 822.388800][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 822.395423][ T24] audit: type=1400 audit(821.570:133): avc: denied { read write } for pid=3371 comm="syz-executor" name="loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 822.523438][ T24] audit: type=1400 audit(821.680:134): avc: denied { open } for pid=3371 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 822.532354][ T24] audit: type=1400 audit(821.690:135): avc: denied { ioctl } for pid=3371 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=639 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 834.013616][ T24] audit: type=1400 audit(833.190:136): avc: denied { read } for pid=3523 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 834.139887][ T24] audit: type=1400 audit(833.320:137): avc: denied { open } for pid=3523 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 834.363810][ T24] audit: type=1400 audit(833.540:138): avc: denied { ioctl } for pid=3523 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae04 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 843.210628][ T24] audit: type=1400 audit(842.390:139): avc: denied { write } for pid=3534 comm="syz.1.3" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 853.894026][ T24] audit: type=1400 audit(853.060:140): avc: denied { map } for pid=3538 comm="syz.0.4" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 853.916489][ T24] audit: type=1400 audit(853.090:141): avc: denied { execute } for pid=3538 comm="syz.0.4" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 859.436230][ T24] audit: type=1400 audit(858.620:142): avc: denied { append } for pid=3544 comm="syz.0.6" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 860.488571][ T24] audit: type=1400 audit(859.630:143): avc: denied { create } for pid=3544 comm="syz.0.6" anonclass=[kvm-gmem] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 910.955299][ T24] audit: type=1400 audit(910.110:144): avc: denied { execute } for pid=3572 comm="syz.0.14" path=2F362FFF67521CD66F8F1F447D3570707CD24B7EEBB207 dev="tmpfs" ino=48 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 950.198777][ T3600] debugfs: 'vgic-its-state@8080000' already exists in '3600-4' [ 1054.953685][ T24] audit: type=1400 audit(1054.130:145): avc: denied { write } for pid=3666 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1065.108265][ T24] audit: type=1400 audit(1064.240:146): avc: denied { write } for pid=3677 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1084.712880][ T24] audit: type=1400 audit(1083.890:147): avc: denied { execute } for pid=3687 comm="syz.1.49" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=6465 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1227.847272][ T24] audit: type=1400 audit(1226.990:148): avc: denied { ioctl } for pid=3786 comm="syz.1.79" path="net:[4026531833]" dev="nsfs" ino=4026531833 ioctlcmd=0x5828 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1272.997623][ T24] audit: type=1400 audit(1272.120:149): avc: denied { setattr } for pid=3817 comm="syz.0.88" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1454.749363][ T24] audit: type=1400 audit(1453.850:150): avc: denied { write } for pid=3933 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1463.066187][ T24] audit: type=1400 audit(1462.230:151): avc: denied { write } for pid=3940 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1526.944508][ T3974] kvm [3974]: Failed to find VMA for hva 0x206fb000 [ 1526.986196][ T3976] kvm [3976]: Failed to find VMA for hva 0x20c79000 [ 1551.953931][ T3994] FAULT_INJECTION: forcing a failure. [ 1551.953931][ T3994] name failslab, interval 1, probability 0, space 0, times 1 [ 1551.990472][ T3994] CPU: 0 UID: 0 PID: 3994 Comm: syz.0.140 Not tainted syzkaller #0 PREEMPT [ 1551.991172][ T3994] Hardware name: linux,dummy-virt (DT) [ 1551.991639][ T3994] Call trace: [ 1551.992036][ T3994] show_stack+0x2c/0x3c (C) [ 1551.994114][ T3994] __dump_stack+0x30/0x40 [ 1551.994507][ T3994] dump_stack_lvl+0xd8/0x12c [ 1551.994851][ T3994] dump_stack+0x1c/0x28 [ 1551.995149][ T3994] should_fail_ex+0x56c/0x6d8 [ 1551.995366][ T3994] should_failslab+0xb8/0xec [ 1551.995643][ T3994] __kmalloc_noprof+0xe8/0x598 [ 1551.995896][ T3994] tomoyo_realpath_from_path+0xdc/0x640 [ 1551.996144][ T3994] tomoyo_path_number_perm+0x13c/0x33c [ 1551.996460][ T3994] tomoyo_file_ioctl+0x2c/0x3c [ 1551.996743][ T3994] security_file_ioctl+0xe0/0x2cc [ 1551.997021][ T3994] __arm64_sys_ioctl+0xd0/0x244 [ 1551.997333][ T3994] invoke_syscall+0x94/0x1ec [ 1551.997656][ T3994] el0_svc_common+0x120/0x2f4 [ 1551.998000][ T3994] do_el0_svc+0x58/0x74 [ 1551.998294][ T3994] el0_svc+0x60/0x238 [ 1551.998560][ T3994] el0t_64_sync_handler+0x84/0x12c [ 1551.998838][ T3994] el0t_64_sync+0x198/0x19c [ 1552.127942][ T3994] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1563.435347][ T24] audit: type=1400 audit(1562.610:152): avc: denied { map } for pid=4000 comm="syz.1.142" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=11619 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1563.468570][ T24] audit: type=1400 audit(1562.650:153): avc: denied { read } for pid=4000 comm="syz.1.142" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=11619 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1570.468514][ T4003] kvm [4003]: Failed to find VMA for hva 0x20000000 [ 1581.439678][ T4011] FAULT_INJECTION: forcing a failure. [ 1581.439678][ T4011] name failslab, interval 1, probability 0, space 0, times 0 [ 1581.470449][ T4011] CPU: 0 UID: 0 PID: 4011 Comm: syz.1.145 Not tainted syzkaller #0 PREEMPT [ 1581.470883][ T4011] Hardware name: linux,dummy-virt (DT) [ 1581.470991][ T4011] Call trace: [ 1581.471070][ T4011] show_stack+0x2c/0x3c (C) [ 1581.471455][ T4011] __dump_stack+0x30/0x40 [ 1581.471809][ T4011] dump_stack_lvl+0xd8/0x12c [ 1581.472111][ T4011] dump_stack+0x1c/0x28 [ 1581.472401][ T4011] should_fail_ex+0x56c/0x6d8 [ 1581.472643][ T4011] should_failslab+0xb8/0xec [ 1581.472918][ T4011] __kmalloc_noprof+0xe8/0x598 [ 1581.473155][ T4011] tomoyo_encode+0x27c/0x4ec [ 1581.473390][ T4011] tomoyo_realpath_from_path+0x5d4/0x640 [ 1581.473662][ T4011] tomoyo_path_number_perm+0x13c/0x33c [ 1581.474022][ T4011] tomoyo_file_ioctl+0x2c/0x3c [ 1581.474280][ T4011] security_file_ioctl+0xe0/0x2cc [ 1581.474553][ T4011] __arm64_sys_ioctl+0xd0/0x244 [ 1581.474875][ T4011] invoke_syscall+0x94/0x1ec [ 1581.475177][ T4011] el0_svc_common+0x120/0x2f4 [ 1581.475469][ T4011] do_el0_svc+0x58/0x74 [ 1581.475785][ T4011] el0_svc+0x60/0x238 [ 1581.476042][ T4011] el0t_64_sync_handler+0x84/0x12c [ 1581.476295][ T4011] el0t_64_sync+0x198/0x19c [ 1581.583784][ T4011] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1637.600043][ T4051] FAULT_INJECTION: forcing a failure. [ 1637.600043][ T4051] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1637.623559][ T4051] CPU: 0 UID: 0 PID: 4051 Comm: syz.0.157 Not tainted syzkaller #0 PREEMPT [ 1637.623964][ T4051] Hardware name: linux,dummy-virt (DT) [ 1637.624069][ T4051] Call trace: [ 1637.624150][ T4051] show_stack+0x2c/0x3c (C) [ 1637.624543][ T4051] __dump_stack+0x30/0x40 [ 1637.624876][ T4051] dump_stack_lvl+0xd8/0x12c [ 1637.625176][ T4051] dump_stack+0x1c/0x28 [ 1637.625466][ T4051] should_fail_ex+0x56c/0x6d8 [ 1637.625704][ T4051] should_fail+0x14/0x24 [ 1637.625952][ T4051] should_fail_usercopy+0x20/0x30 [ 1637.626238][ T4051] simple_read_from_buffer+0xd0/0x294 [ 1637.626517][ T4051] proc_fail_nth_read+0x184/0x214 [ 1637.626855][ T4051] vfs_read+0x220/0x9d8 [ 1637.627161][ T4051] ksys_read+0x108/0x1fc [ 1637.627455][ T4051] __arm64_sys_read+0x98/0xcc [ 1637.627772][ T4051] invoke_syscall+0x94/0x1ec [ 1637.628085][ T4051] el0_svc_common+0x120/0x2f4 [ 1637.628383][ T4051] do_el0_svc+0x58/0x74 [ 1637.628704][ T4051] el0_svc+0x60/0x238 [ 1637.628976][ T4051] el0t_64_sync_handler+0x84/0x12c [ 1637.629231][ T4051] el0t_64_sync+0x198/0x19c [ 1740.994978][ T4122] KVM: debugfs: duplicate directory 4122-9 [ 1741.409769][ T4122] KVM: debugfs: duplicate directory 4122-9 [ 1893.296196][ T4215] kvm [4215]: Failed to find VMA for hva 0x20c01000 [ 1923.854182][ T4232] kvm [4232]: Failed to find VMA for hva 0x20d8d000 [ 1982.245678][ T24] audit: type=1400 audit(1981.420:154): avc: denied { write } for pid=4260 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 1989.763947][ T24] audit: type=1400 audit(1988.940:155): avc: denied { write } for pid=4268 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2030.211516][ T24] audit: type=1400 audit(2029.380:156): avc: denied { map } for pid=4299 comm="syz.1.233" path="pipe:[2741]" dev="pipefs" ino=2741 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 2059.427128][ T4317] kvm [4317]: Failed to find VMA for hva 0x21016000 [ 2170.398397][ T4375] kvm [4375]: Failed to find VMA for hva 0x20c79000 [ 2236.493262][ T24] audit: type=1400 audit(2235.610:157): avc: denied { write } for pid=4414 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2244.903595][ T24] audit: type=1400 audit(2244.070:158): avc: denied { write } for pid=4422 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2361.687420][ T4506] kvm [4506]: Failed to find VMA for hva 0x20c01000 [ 2399.744381][ T4530] kvm [4530]: Failed to find VMA for hva 0x20dba000 [ 2478.409668][ T4119] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2479.857944][ T4119] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2481.477096][ T4119] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2483.028081][ T4119] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2499.146207][ T4119] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2499.449769][ T4119] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2499.648441][ T4119] bond0 (unregistering): Released all slaves [ 2501.645004][ T4119] hsr_slave_0: left promiscuous mode [ 2501.769211][ T4119] hsr_slave_1: left promiscuous mode [ 2502.606822][ T4119] veth1_macvtap: left promiscuous mode [ 2502.617058][ T4119] veth0_macvtap: left promiscuous mode [ 2502.662683][ T4119] veth1_vlan: left promiscuous mode [ 2502.686462][ T4119] veth0_vlan: left promiscuous mode [ 2542.469391][ T24] audit: type=1400 audit(2541.580:159): avc: denied { write } for pid=4595 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2548.367861][ T24] audit: type=1400 audit(2547.550:160): avc: denied { write } for pid=4605 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2552.618712][ T3206] 8021q: adding VLAN 0 to HW filter on device eth1 [ 2566.214671][ T24] audit: type=1400 audit(2565.390:161): avc: denied { write } for pid=4625 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2574.513011][ T24] audit: type=1400 audit(2573.610:162): avc: denied { write } for pid=4634 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2576.446066][ T4554] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2576.914988][ T4554] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2579.889940][ T3206] 8021q: adding VLAN 0 to HW filter on device eth2 [ 2594.406597][ T24] audit: type=1400 audit(2593.590:163): avc: denied { write } for pid=4648 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2600.953664][ T24] audit: type=1400 audit(2600.060:164): avc: denied { write } for pid=4658 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2606.310042][ T3206] 8021q: adding VLAN 0 to HW filter on device eth3 [ 2607.910438][ T4554] hsr_slave_0: entered promiscuous mode [ 2608.038790][ T4554] hsr_slave_1: entered promiscuous mode [ 2625.078968][ T4554] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 2625.467302][ T4554] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 2625.569049][ T4554] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 2625.606740][ T24] audit: type=1400 audit(2624.790:165): avc: denied { write } for pid=4673 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2625.978667][ T4554] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 2626.152240][ T4554] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 2626.475136][ T4554] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 2626.624843][ T4554] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 2627.077357][ T4554] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 2635.313575][ T24] audit: type=1400 audit(2634.400:166): avc: denied { write } for pid=4686 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2641.680689][ T3206] 8021q: adding VLAN 0 to HW filter on device eth4 [ 2655.744018][ T4554] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2674.872987][ T24] audit: type=1400 audit(2674.010:167): avc: denied { write } for pid=4716 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2682.256154][ T24] audit: type=1400 audit(2681.430:168): avc: denied { write } for pid=4721 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2700.952692][ T24] audit: type=1400 audit(2700.120:169): avc: denied { write } for pid=4732 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2710.182069][ T24] audit: type=1400 audit(2709.350:170): avc: denied { write } for pid=4742 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2725.899091][ T24] audit: type=1400 audit(2725.080:171): avc: denied { write } for pid=4755 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2733.232813][ T24] audit: type=1400 audit(2732.390:172): avc: denied { write } for pid=4767 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2747.985733][ T24] audit: type=1400 audit(2747.160:173): avc: denied { write } for pid=4777 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2757.372129][ T24] audit: type=1400 audit(2756.530:174): avc: denied { write } for pid=4789 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2759.208225][ T4554] veth0_vlan: entered promiscuous mode [ 2760.255609][ T4554] veth1_vlan: entered promiscuous mode [ 2764.090601][ T4554] veth0_macvtap: entered promiscuous mode [ 2764.666169][ T4554] veth1_macvtap: entered promiscuous mode [ 2768.584353][ T3373] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 2768.593298][ T3373] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 2768.682889][ T3373] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 2768.689373][ T3373] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 2773.325292][ T24] audit: type=1400 audit(2772.460:175): avc: denied { unmount } for pid=4554 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 2794.655826][ T24] audit: type=1400 audit(2793.830:176): avc: denied { write } for pid=4814 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2803.848350][ T24] audit: type=1400 audit(2802.950:177): avc: denied { write } for pid=4822 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3072.193643][ T24] audit: type=1400 audit(3071.370:178): avc: denied { write } for pid=4986 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3081.162421][ T24] audit: type=1400 audit(3080.330:179): avc: denied { write } for pid=4995 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3270.327175][ T5076] kvm [5076]: Failed to find VMA for hva 0x20c01000 [ 3563.729582][ T24] audit: type=1400 audit(3562.900:180): avc: denied { write } for pid=5248 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3572.262894][ T24] audit: type=1400 audit(3571.420:181): avc: denied { write } for pid=5256 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3634.802967][ T24] audit: type=1400 audit(3633.950:182): avc: denied { execute } for pid=5297 comm="syz.0.482" path=2F5B6B766D2D676D656D5D202864656C6574656429 dev="guest_memfd" ino=31446 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 3816.032652][ T24] audit: type=1400 audit(3815.200:183): avc: denied { write } for pid=5400 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 3824.883032][ T24] audit: type=1400 audit(3824.050:184): avc: denied { write } for pid=5406 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4141.666764][ T5604] kvm [5604]: Failed to find VMA for hva 0x20c01000 [ 4399.727553][ T24] audit: type=1400 audit(4398.900:185): avc: denied { write } for pid=5757 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4407.350132][ T24] audit: type=1400 audit(4406.520:186): avc: denied { write } for pid=5768 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4478.026209][ T4119] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4479.324838][ T4119] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4480.357299][ T4119] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4481.469766][ T4119] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4496.713807][ T4119] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4496.874881][ T4119] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4497.036421][ T4119] bond0 (unregistering): Released all slaves [ 4499.418106][ T4119] hsr_slave_0: left promiscuous mode [ 4499.547699][ T4119] hsr_slave_1: left promiscuous mode [ 4500.181942][ T4119] veth1_macvtap: left promiscuous mode [ 4500.182998][ T4119] veth0_macvtap: left promiscuous mode [ 4500.205771][ T4119] veth1_vlan: left promiscuous mode [ 4500.209085][ T4119] veth0_vlan: left promiscuous mode [ 4520.989736][ T4119] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4522.185369][ T4119] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4523.137169][ T4119] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4524.445574][ T24] audit: type=1400 audit(4523.620:187): avc: denied { write } for pid=5804 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4524.834567][ T4119] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 4530.372045][ T24] audit: type=1400 audit(4529.550:188): avc: denied { write } for pid=5808 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4538.524502][ T4119] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 4538.609612][ T4119] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 4538.665399][ T4119] bond0 (unregistering): Released all slaves [ 4539.380365][ T3206] 8021q: adding VLAN 0 to HW filter on device eth5 [ 4539.745362][ T4119] hsr_slave_0: left promiscuous mode [ 4539.863327][ T4119] hsr_slave_1: left promiscuous mode [ 4540.213239][ T4119] veth1_macvtap: left promiscuous mode [ 4540.216460][ T4119] veth0_macvtap: left promiscuous mode [ 4540.228648][ T4119] veth1_vlan: left promiscuous mode [ 4540.244930][ T4119] veth0_vlan: left promiscuous mode [ 4566.293135][ T24] audit: type=1400 audit(4565.470:189): avc: denied { write } for pid=5828 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4570.392314][ T24] audit: type=1400 audit(4569.520:190): avc: denied { write } for pid=5838 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4573.755567][ T3206] 8021q: adding VLAN 0 to HW filter on device eth6 [ 4577.208815][ T5780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4577.488399][ T5780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4580.288395][ T5778] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 4580.509428][ T5778] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 4583.522094][ T24] audit: type=1400 audit(4582.690:191): avc: denied { write } for pid=5850 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4588.599892][ T24] audit: type=1400 audit(4587.780:192): avc: denied { write } for pid=5859 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4592.087917][ T3206] 8021q: adding VLAN 0 to HW filter on device eth8 [ 4598.612849][ T5780] hsr_slave_0: entered promiscuous mode [ 4598.679084][ T5780] hsr_slave_1: entered promiscuous mode [ 4602.033808][ T24] audit: type=1400 audit(4601.160:193): avc: denied { write } for pid=5872 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4602.609743][ T5778] hsr_slave_0: entered promiscuous mode [ 4602.657992][ T5778] hsr_slave_1: entered promiscuous mode [ 4602.695272][ T5778] debugfs: 'hsr0' already exists in 'hsr' [ 4602.698556][ T5778] Cannot create hsr debugfs directory [ 4606.197956][ T24] audit: type=1400 audit(4605.380:194): avc: denied { write } for pid=5877 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4609.167132][ T3206] 8021q: adding VLAN 0 to HW filter on device eth7 [ 4614.857889][ T5780] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 4615.494341][ T5780] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4615.774741][ T5780] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 4616.217770][ T5780] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4616.403678][ T5780] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 4616.897680][ T5780] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4617.912928][ T5780] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 4618.383989][ T5780] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4622.573331][ T5778] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 4622.944362][ T5778] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 4623.076035][ T5778] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 4623.460707][ T5778] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 4623.683313][ T5778] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 4624.026450][ T5778] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 4624.140408][ T5778] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 4624.598986][ T5778] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 4625.057521][ T24] audit: type=1400 audit(4624.230:195): avc: denied { write } for pid=5884 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4634.228842][ T24] audit: type=1400 audit(4633.350:196): avc: denied { write } for pid=5905 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4638.928692][ T3206] 8021q: adding VLAN 0 to HW filter on device eth9 [ 4648.294305][ T5780] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4652.529671][ T5778] 8021q: adding VLAN 0 to HW filter on device bond0 [ 4653.538158][ T24] audit: type=1400 audit(4652.710:197): avc: denied { write } for pid=5916 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4660.853242][ T24] audit: type=1400 audit(4660.020:198): avc: denied { write } for pid=5924 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4665.499201][ T3206] 8021q: adding VLAN 0 to HW filter on device eth10 [ 4691.007215][ T24] audit: type=1400 audit(4690.190:199): avc: denied { write } for pid=5942 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4700.518894][ T24] audit: type=1400 audit(4699.690:200): avc: denied { write } for pid=5951 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4705.637485][ T3206] 8021q: adding VLAN 0 to HW filter on device eth11 [ 4721.742237][ T24] audit: type=1400 audit(4720.880:201): avc: denied { write } for pid=5970 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4728.798759][ T24] audit: type=1400 audit(4727.980:202): avc: denied { write } for pid=5979 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4735.009194][ T3206] 8021q: adding VLAN 0 to HW filter on device eth12 [ 4755.047691][ T5778] veth0_vlan: entered promiscuous mode [ 4756.073559][ T5778] veth1_vlan: entered promiscuous mode [ 4759.945487][ T5778] veth0_macvtap: entered promiscuous mode [ 4760.773927][ T5778] veth1_macvtap: entered promiscuous mode [ 4764.316654][ T5351] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4764.320750][ T5351] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4764.431886][ T5007] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4764.469902][ T5007] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4769.159680][ T24] audit: type=1400 audit(4768.340:203): avc: denied { write } for pid=6005 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4774.804590][ T5780] veth0_vlan: entered promiscuous mode [ 4776.194912][ T5780] veth1_vlan: entered promiscuous mode [ 4779.875830][ T24] audit: type=1400 audit(4778.940:204): avc: denied { write } for pid=6013 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4780.324849][ T5780] veth0_macvtap: entered promiscuous mode [ 4781.003489][ T5780] veth1_macvtap: entered promiscuous mode [ 4785.360490][ T5606] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 4785.413095][ T5606] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 4785.462501][ T4800] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 4785.467752][ T4800] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 4832.379302][ T24] audit: type=1400 audit(4831.560:205): avc: denied { write } for pid=6043 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4843.399992][ T24] audit: type=1400 audit(4842.580:206): avc: denied { write } for pid=6052 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4862.889183][ T24] audit: type=1400 audit(4862.040:207): avc: denied { write } for pid=6062 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4875.072459][ T24] audit: type=1400 audit(4874.130:208): avc: denied { write } for pid=6071 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4902.962457][ T24] audit: type=1400 audit(4902.090:209): avc: denied { write } for pid=6088 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4914.342559][ T24] audit: type=1400 audit(4913.510:210): avc: denied { write } for pid=6097 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4933.903186][ T24] audit: type=1400 audit(4933.070:211): avc: denied { write } for pid=6102 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4946.215862][ T24] audit: type=1400 audit(4945.400:212): avc: denied { write } for pid=6113 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4964.343640][ T24] audit: type=1400 audit(4963.520:213): avc: denied { write } for pid=6118 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4969.880397][ T24] audit: type=1400 audit(4969.060:214): avc: denied { write } for pid=6121 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 4992.220711][ T24] audit: type=1400 audit(4991.400:215): avc: denied { write } for pid=6128 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5001.363708][ T24] audit: type=1400 audit(5000.540:216): avc: denied { write } for pid=6131 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5027.905582][ T24] audit: type=1400 audit(5027.060:217): avc: denied { write } for pid=6144 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5027.947510][ T6003] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5029.694665][ T6003] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5031.362931][ T6003] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5033.015814][ T6003] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5039.552373][ T24] audit: type=1400 audit(5038.710:218): avc: denied { write } for pid=6155 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5056.498037][ T6003] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5056.705421][ T6003] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5056.854016][ T6003] bond0 (unregistering): Released all slaves [ 5059.494366][ T6003] hsr_slave_0: left promiscuous mode [ 5059.703881][ T6003] hsr_slave_1: left promiscuous mode [ 5060.166695][ T6003] veth1_macvtap: left promiscuous mode [ 5060.214268][ T6003] veth0_macvtap: left promiscuous mode [ 5060.218623][ T6003] veth1_vlan: left promiscuous mode [ 5060.245205][ T6003] veth0_vlan: left promiscuous mode [ 5084.197710][ T2174] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5085.298943][ T2174] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5087.066107][ T2174] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5088.520617][ T2174] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 5089.653042][ T24] audit: type=1400 audit(5088.810:219): avc: denied { write } for pid=6169 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5099.175796][ T24] audit: type=1400 audit(5098.300:220): avc: denied { write } for pid=6179 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5111.029622][ T2174] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 5111.303724][ T2174] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 5111.406787][ T2174] bond0 (unregistering): Released all slaves [ 5113.237960][ T3206] 8021q: adding VLAN 0 to HW filter on device eth13 [ 5115.122987][ T2174] hsr_slave_0: left promiscuous mode [ 5115.647935][ T2174] hsr_slave_1: left promiscuous mode [ 5116.413135][ T2174] veth1_macvtap: left promiscuous mode [ 5116.414199][ T2174] veth0_macvtap: left promiscuous mode [ 5116.442985][ T2174] veth1_vlan: left promiscuous mode [ 5116.453161][ T2174] veth0_vlan: left promiscuous mode [ 5141.375126][ T24] audit: type=1400 audit(5140.520:221): avc: denied { write } for pid=6196 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5147.608961][ T24] audit: type=1400 audit(5146.790:222): avc: denied { write } for pid=6208 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5151.764909][ T3206] 8021q: adding VLAN 0 to HW filter on device eth14 [ 5151.904326][ T6132] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5152.596459][ T6132] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5152.712897][ T6136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 5153.448041][ T6136] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 5158.505580][ T24] audit: type=1400 audit(5157.660:223): avc: denied { write } for pid=6213 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5166.546037][ T24] audit: type=1400 audit(5165.700:224): avc: denied { write } for pid=6222 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5183.648472][ T6132] hsr_slave_0: entered promiscuous mode [ 5183.748982][ T6132] hsr_slave_1: entered promiscuous mode [ 5185.504999][ T24] audit: type=1400 audit(5184.690:225): avc: denied { write } for pid=6237 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5186.646337][ T6136] hsr_slave_0: entered promiscuous mode [ 5186.725463][ T6136] hsr_slave_1: entered promiscuous mode [ 5186.763835][ T6136] debugfs: 'hsr0' already exists in 'hsr' [ 5186.772143][ T6136] Cannot create hsr debugfs directory [ 5191.255213][ T24] audit: type=1400 audit(5190.440:226): avc: denied { write } for pid=6242 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5194.629176][ T3206] 8021q: adding VLAN 0 to HW filter on device eth15 [ 5200.857378][ T24] audit: type=1400 audit(5200.040:227): avc: denied { write } for pid=6245 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5202.406825][ T6132] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 5202.868545][ T6132] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5203.113881][ T6132] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 5203.619134][ T6132] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5203.789204][ T6132] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 5204.404111][ T6132] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5205.199254][ T6132] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 5205.604881][ T6132] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5207.786436][ T24] audit: type=1400 audit(5206.960:228): avc: denied { write } for pid=6251 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5209.625723][ T6136] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 5209.954857][ T6136] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 5210.109338][ T6136] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 5210.363627][ T6136] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 5210.526962][ T6136] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 5210.777610][ T6136] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 5210.933719][ T6136] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 5211.118885][ T6136] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 5233.878259][ T24] audit: type=1400 audit(5233.040:229): avc: denied { write } for pid=6275 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5241.476699][ T6132] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5244.242472][ T24] audit: type=1400 audit(5243.410:230): avc: denied { write } for pid=6283 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5247.223295][ T6136] 8021q: adding VLAN 0 to HW filter on device bond0 [ 5250.935550][ T3206] 8021q: adding VLAN 0 to HW filter on device eth16 [ 5269.043349][ T24] audit: type=1400 audit(5268.210:231): avc: denied { write } for pid=6297 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5279.618712][ T24] audit: type=1400 audit(5278.790:232): avc: denied { write } for pid=6304 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5286.807080][ T3206] 8021q: adding VLAN 0 to HW filter on device eth17 [ 5309.055949][ T24] audit: type=1400 audit(5308.220:233): avc: denied { write } for pid=6320 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5317.473335][ T24] audit: type=1400 audit(5316.650:234): avc: denied { write } for pid=6331 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5323.120768][ T3206] 8021q: adding VLAN 0 to HW filter on device eth18 [ 5342.106429][ T24] audit: type=1400 audit(5341.270:235): avc: denied { write } for pid=6347 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5352.173924][ T24] audit: type=1400 audit(5351.320:236): avc: denied { write } for pid=6356 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5359.746665][ T3206] 8021q: adding VLAN 0 to HW filter on device eth19 [ 5382.259546][ T24] audit: type=1400 audit(5381.440:237): avc: denied { write } for pid=6372 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5383.597208][ T6132] veth0_vlan: entered promiscuous mode [ 5384.676427][ T6132] veth1_vlan: entered promiscuous mode [ 5388.335327][ T6136] veth0_vlan: entered promiscuous mode [ 5390.334877][ T6136] veth1_vlan: entered promiscuous mode [ 5390.655358][ T6132] veth0_macvtap: entered promiscuous mode [ 5391.864097][ T24] audit: type=1400 audit(5390.940:238): avc: denied { write } for pid=6380 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5391.920667][ T6132] veth1_macvtap: entered promiscuous mode [ 5397.995340][ T6136] veth0_macvtap: entered promiscuous mode [ 5398.434041][ T3373] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5398.467487][ T3373] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5398.496462][ T3373] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5398.497364][ T3373] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5398.937641][ T3206] 8021q: adding VLAN 0 to HW filter on device eth20 [ 5399.749704][ T6136] veth1_macvtap: entered promiscuous mode [ 5407.395558][ T5936] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 5407.510446][ T5936] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 5407.513657][ T5936] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 5407.537165][ T5936] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 5437.885406][ T24] audit: type=1400 audit(5437.040:239): avc: denied { write } for pid=6392 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5450.889091][ T24] audit: type=1400 audit(5450.070:240): avc: denied { write } for pid=6409 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5508.692303][ T24] audit: type=1400 audit(5507.860:241): avc: denied { write } for pid=6427 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5522.962913][ T24] audit: type=1400 audit(5522.130:242): avc: denied { write } for pid=6440 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5568.205955][ T24] audit: type=1400 audit(5567.370:243): avc: denied { write } for pid=6465 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5582.702513][ T24] audit: type=1400 audit(5581.880:244): avc: denied { write } for pid=6476 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5614.963436][ T24] audit: type=1400 audit(5614.110:245): avc: denied { write } for pid=6492 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5628.424650][ T24] audit: type=1400 audit(5627.530:246): avc: denied { write } for pid=6502 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5669.235934][ T24] audit: type=1400 audit(5668.420:247): avc: denied { write } for pid=6523 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5683.653614][ T24] audit: type=1400 audit(5682.800:248): avc: denied { write } for pid=6534 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5720.588107][ T24] audit: type=1400 audit(5719.680:249): avc: denied { write } for pid=6550 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5735.543406][ T24] audit: type=1400 audit(5734.680:250): avc: denied { write } for pid=6561 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5785.747433][ T24] audit: type=1400 audit(5784.870:251): avc: denied { write } for pid=6581 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5799.799186][ T24] audit: type=1400 audit(5798.980:252): avc: denied { write } for pid=6589 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5829.165297][ T24] audit: type=1400 audit(5828.300:253): avc: denied { write } for pid=6606 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5844.503075][ T24] audit: type=1400 audit(5843.530:254): avc: denied { write } for pid=6616 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5872.022844][ T24] audit: type=1400 audit(5871.090:255): avc: denied { write } for pid=6627 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5885.392967][ T24] audit: type=1400 audit(5884.460:256): avc: denied { write } for pid=6637 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5912.913495][ T24] audit: type=1400 audit(5912.020:257): avc: denied { write } for pid=6648 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 5926.880329][ T24] audit: type=1400 audit(5926.020:258): avc: denied { write } for pid=6665 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6164.282096][ T24] audit: type=1400 audit(6163.380:259): avc: denied { write } for pid=6756 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6176.818559][ T24] audit: type=1400 audit(6175.990:260): avc: denied { write } for pid=6764 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6397.272837][ T24] audit: type=1400 audit(6396.450:261): avc: denied { write } for pid=6845 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6404.113679][ T24] audit: type=1400 audit(6403.260:262): avc: denied { write } for pid=6848 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6479.439827][ T6003] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6481.828632][ T6003] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6484.107369][ T6003] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6485.728318][ T6003] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6510.394573][ T6003] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6511.054367][ T6003] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6511.329218][ T6003] bond0 (unregistering): Released all slaves [ 6513.604705][ T6003] hsr_slave_0: left promiscuous mode [ 6513.664606][ T6003] hsr_slave_1: left promiscuous mode [ 6514.146280][ T6003] veth1_macvtap: left promiscuous mode [ 6514.196481][ T6003] veth0_macvtap: left promiscuous mode [ 6514.205595][ T6003] veth1_vlan: left promiscuous mode [ 6514.206824][ T6003] veth0_vlan: left promiscuous mode [ 6541.188357][ T6288] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6543.546271][ T6288] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6545.766962][ T6288] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6547.983858][ T6288] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6557.139318][ T24] audit: type=1400 audit(6556.300:263): avc: denied { write } for pid=6890 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6568.879626][ T24] audit: type=1400 audit(6568.060:264): avc: denied { write } for pid=6902 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6576.353896][ T6288] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6576.437405][ T6288] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6576.547151][ T6288] bond0 (unregistering): Released all slaves [ 6577.259554][ T3206] 8021q: adding VLAN 0 to HW filter on device eth21 [ 6580.087708][ T6288] hsr_slave_0: left promiscuous mode [ 6580.453943][ T6288] hsr_slave_1: left promiscuous mode [ 6580.966876][ T6288] veth1_macvtap: left promiscuous mode [ 6580.990382][ T6288] veth0_macvtap: left promiscuous mode [ 6580.999134][ T6288] veth1_vlan: left promiscuous mode [ 6581.023639][ T6288] veth0_vlan: left promiscuous mode [ 6605.507584][ T6852] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6606.298271][ T6852] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6625.096874][ T24] audit: type=1400 audit(6624.260:265): avc: denied { write } for pid=6920 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6626.284249][ T6855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6626.580082][ T6855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6632.702989][ T24] audit: type=1400 audit(6631.850:266): avc: denied { write } for pid=6928 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6637.687531][ T3206] 8021q: adding VLAN 0 to HW filter on device eth22 [ 6639.828778][ T6852] hsr_slave_0: entered promiscuous mode [ 6639.930292][ T6852] hsr_slave_1: entered promiscuous mode [ 6655.660092][ T24] audit: type=1400 audit(6654.810:267): avc: denied { write } for pid=6940 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6660.968168][ T6855] hsr_slave_0: entered promiscuous mode [ 6661.067571][ T6855] hsr_slave_1: entered promiscuous mode [ 6661.185914][ T6855] debugfs: 'hsr0' already exists in 'hsr' [ 6661.190524][ T6855] Cannot create hsr debugfs directory [ 6663.863285][ T24] audit: type=1400 audit(6662.920:268): avc: denied { write } for pid=6946 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6664.756629][ T6852] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 6665.247016][ T6852] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6665.408661][ T6852] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 6665.819918][ T6852] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6666.043903][ T6852] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 6666.477922][ T6852] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6666.797479][ T6852] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 6667.316159][ T6852] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6672.287430][ T3206] 8021q: adding VLAN 0 to HW filter on device eth23 [ 6688.235828][ T6855] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 6688.677891][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 6688.817684][ T6855] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 6689.140283][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 6689.376113][ T6855] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 6689.950222][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 6690.226065][ T6855] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 6690.795002][ T6855] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 6703.583646][ T24] audit: type=1400 audit(6702.650:269): avc: denied { write } for pid=6972 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6707.156946][ T6852] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6714.104008][ T24] audit: type=1400 audit(6713.260:270): avc: denied { write } for pid=6980 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6721.712633][ T3206] 8021q: adding VLAN 0 to HW filter on device eth24 [ 6727.219193][ T6855] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6749.803965][ T24] audit: type=1400 audit(6748.980:271): avc: denied { write } for pid=6994 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6761.494748][ T24] audit: type=1400 audit(6760.660:272): avc: denied { write } for pid=7004 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6769.019582][ T3206] 8021q: adding VLAN 0 to HW filter on device eth25 [ 6797.723253][ T24] audit: type=1400 audit(6796.880:273): avc: denied { write } for pid=7018 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6810.133250][ T24] audit: type=1400 audit(6809.210:274): avc: denied { write } for pid=7029 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6818.354399][ T3206] 8021q: adding VLAN 0 to HW filter on device eth26 [ 6836.694159][ T24] audit: type=1400 audit(6835.870:275): avc: denied { write } for pid=7041 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6849.066966][ T24] audit: type=1400 audit(6848.240:276): avc: denied { write } for pid=7052 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6884.455312][ T24] audit: type=1400 audit(6883.600:277): avc: denied { write } for pid=7068 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6884.772987][ T6852] veth0_vlan: entered promiscuous mode [ 6886.263865][ T6852] veth1_vlan: entered promiscuous mode [ 6890.485227][ T6852] veth0_macvtap: entered promiscuous mode [ 6891.168902][ T6852] veth1_macvtap: entered promiscuous mode [ 6895.603861][ T5351] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6895.623050][ T5351] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6895.637193][ T3373] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6895.639849][ T3373] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6897.558547][ T24] audit: type=1400 audit(6896.710:278): avc: denied { write } for pid=7076 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6907.124425][ T3206] 8021q: adding VLAN 0 to HW filter on device eth27 [ 6910.949547][ T6855] veth0_vlan: entered promiscuous mode [ 6913.328204][ T6855] veth1_vlan: entered promiscuous mode [ 6920.007262][ T6855] veth0_macvtap: entered promiscuous mode [ 6921.284895][ T6855] veth1_macvtap: entered promiscuous mode [ 6927.337208][ T6872] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6927.345719][ T6872] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6927.463759][ T6872] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6927.477455][ T6872] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6956.939307][ T24] audit: type=1400 audit(6955.980:279): avc: denied { write } for pid=7093 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6974.022840][ T24] audit: type=1400 audit(6973.190:280): avc: denied { write } for pid=7106 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 6985.679062][ T3206] 8021q: adding VLAN 0 to HW filter on device eth28 [ 7019.106623][ T24] audit: type=1400 audit(7018.260:281): avc: denied { write } for pid=7120 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7036.172831][ T24] audit: type=1400 audit(7035.210:282): avc: denied { write } for pid=7129 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7115.132464][ T24] audit: type=1400 audit(7114.280:283): avc: denied { write } for pid=7165 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7132.753566][ T24] audit: type=1400 audit(7131.870:284): avc: denied { write } for pid=7174 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7173.270072][ T24] audit: type=1400 audit(7172.350:285): avc: denied { write } for pid=7186 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7189.168531][ T24] audit: type=1400 audit(7188.350:286): avc: denied { write } for pid=7196 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7223.780670][ T24] audit: type=1400 audit(7222.960:287): avc: denied { write } for pid=7204 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7239.185349][ T24] audit: type=1400 audit(7238.330:288): avc: denied { write } for pid=7210 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7274.935635][ T24] audit: type=1400 audit(7274.090:289): avc: denied { write } for pid=7222 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7290.002786][ T24] audit: type=1400 audit(7289.050:290): avc: denied { write } for pid=7231 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7353.623415][ T24] audit: type=1400 audit(7352.800:291): avc: denied { write } for pid=7256 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7368.510295][ T7206] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7369.070302][ T7206] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7369.223534][ T24] audit: type=1400 audit(7368.280:292): avc: denied { write } for pid=7266 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7392.295550][ T7216] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7392.964560][ T7216] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7421.537652][ T24] audit: type=1400 audit(7420.690:293): avc: denied { write } for pid=7284 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7432.688619][ T7206] hsr_slave_0: entered promiscuous mode [ 7432.897361][ T7206] hsr_slave_1: entered promiscuous mode [ 7433.120135][ T7206] debugfs: 'hsr0' already exists in 'hsr' [ 7433.182164][ T7206] Cannot create hsr debugfs directory [ 7435.923987][ T24] audit: type=1400 audit(7435.020:294): avc: denied { write } for pid=7293 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7460.030464][ T7216] hsr_slave_0: entered promiscuous mode [ 7460.257004][ T7216] hsr_slave_1: entered promiscuous mode [ 7460.404293][ T7216] debugfs: 'hsr0' already exists in 'hsr' [ 7460.423564][ T7216] Cannot create hsr debugfs directory [ 7463.653200][ T24] audit: type=1400 audit(7462.830:295): avc: denied { write } for pid=7300 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7479.406746][ T24] audit: type=1400 audit(7478.550:296): avc: denied { write } for pid=7305 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7481.818897][ T7206] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 7482.784243][ T7206] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7484.385252][ T7206] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 7485.157097][ T7206] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7486.326277][ T7206] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 7486.873160][ T7206] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7488.457732][ T7206] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 7489.007051][ T7206] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7524.643990][ T24] audit: type=1400 audit(7523.820:297): avc: denied { write } for pid=7318 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7531.885760][ T7216] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 7532.810386][ T7216] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 7533.148968][ T7216] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 7533.838849][ T7216] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 7534.207460][ T7216] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 7534.990061][ T7216] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 7535.435837][ T7216] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 7536.196854][ T7216] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 7543.163775][ T24] audit: type=1400 audit(7542.290:298): avc: denied { write } for pid=7328 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7559.546405][ T7206] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7583.523375][ T24] audit: type=1400 audit(7582.680:299): avc: denied { write } for pid=7343 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7593.305375][ T7216] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7601.344125][ T24] audit: type=1400 audit(7600.500:300): avc: denied { write } for pid=7352 comm="rm" name="hook-state" dev="tmpfs" ino=94 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 7626.325747][ T26] INFO: task syz.8.761:7195 blocked for more than 430 seconds. [ 7626.353787][ T26] Not tainted syzkaller #0 [ 7626.364285][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 7626.364971][ T26] task:syz.8.761 state:D stack:0 pid:7195 tgid:7195 ppid:6855 task_flags:0x400040 flags:0x00000011 [ 7626.366182][ T26] Call trace: [ 7626.366567][ T26] __switch_to+0x5e0/0xb70 (T) [ 7626.367143][ T26] __schedule+0x2554/0x3828 [ 7626.367575][ T26] schedule+0xac/0x278 [ 7626.368007][ T26] schedule_timeout+0x68/0x1ec [ 7626.368469][ T26] do_wait_for_common+0x270/0x428 [ 7626.368929][ T26] wait_for_completion+0x44/0x5c [ 7626.369344][ T26] __synchronize_srcu+0x1b4/0x1f4 [ 7626.369921][ T26] synchronize_srcu+0x668/0x8dc [ 7626.370435][ T26] mmu_notifier_unregister+0x320/0x428 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 7626.592879][ T26] kvm_put_kvm+0x69c/0xbbc [ 7626.593478][ T26] kvm_vm_release+0x58/0x78 [ 7626.594041][ T26] __fput+0x4ac/0x978 [ 7626.633019][ T26] ____fput+0x20/0x30 [ 7626.633722][ T26] task_work_run+0x1b8/0x250 [ 7626.634255][ T26] exit_to_user_mode_loop+0x110/0x188 [ 7626.634777][ T26] el0_svc+0x184/0x238 [ 7626.635248][ T26] el0t_64_sync_handler+0x84/0x12c [ 7626.635736][ T26] el0t_64_sync+0x198/0x19c [ 7626.753244][ T26] [ 7626.753244][ T26] Showing all locks held in the system: [ 7626.803395][ T26] 1 lock held by khungtaskd/26: [ 7626.803991][ T26] #0: ffff800087db4518 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire+0x0/0x44 [ 7626.806685][ T26] 2 locks held by getty/3234: [ 7626.807073][ T26] #0: e9f00000128b20a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c [ 7626.808764][ T26] #1: a9ff80008cb4b2e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x314/0x1214 [ 7626.810424][ T26] 4 locks held by sshd-session/3358: [ 7626.982604][ T26] #0: fff0000074d280e0 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x364/0x3828 [ 7626.984684][ T26] #1: fff0000074d13208 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x6c/0x6e8 [ 7626.986339][ T26] #2: 4ef000000dec7530 (&____s->seqcount#7){----}-{0:0}, at: drm_handle_vblank_events+0xac/0x8c0 [ 7626.988410][ T26] #3: 4ef000000dec7578 (&(&vblank->seqlock)->lock){-.-.}-{3:3}, at: store_vblank+0xe8/0x30c [ 7626.990077][ T26] 2 locks held by syz-executor/3360: [ 7626.990427][ T26] 2 locks held by kworker/u4:0/5007: [ 7627.158266][ T26] 3 locks held by kworker/u4:3/5351: [ 7627.171980][ T26] 3 locks held by kworker/u4:2/5606: [ 7627.172448][ T26] 2 locks held by kworker/u4:8/5799: [ 7627.172796][ T26] #0: 72f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 7627.174803][ T26] #1: ffff80008e5f7cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 7627.176384][ T26] 3 locks held by kworker/u4:9/5936: [ 7627.176740][ T26] 3 locks held by kworker/u4:11/6003: [ 7627.177081][ T26] 3 locks held by kworker/u4:12/6288: [ 7627.177406][ T26] 3 locks held by kworker/u4:6/6559: [ 7627.328640][ T26] #0: fff0000074d280e0 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x364/0x3828 [ 7627.393546][ T26] #1: ffff80008c7bbf88 (&____s->seqcount#2){----}-{0:0}, at: ktime_get_real_ts64+0x80/0x364 [ 7627.396225][ T26] #2: fff0000074d14b58 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x5cc/0xe90 [ 7627.397913][ T26] 2 locks held by kworker/u4:10/6872: [ 7627.398247][ T26] #0: 72f000000d036540 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x804/0x1d5c [ 7627.400011][ T26] #1: ffff80008ff07cb8 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x890/0x1d5c [ 7627.474988][ T26] 3 locks held by kworker/u4:13/6986: [ 7627.475335][ T26] 3 locks held by kworker/u4:14/7061: [ 7627.475689][ T26] 2 locks held by syz.7.759/7187: [ 7627.476067][ T26] 2 locks held by modprobe/7362: [ 7627.476368][ T26] 2 locks held by dhcpcd-run-hook/7363: [ 7627.476699][ T26] 1 lock held by modprobe/7364: [ 7627.625389][ T26] [ 7627.632484][ T26] ============================================= [ 7627.632484][ T26] [ 7627.633606][ T26] Kernel panic - not syncing: hung_task: blocked tasks [ 7627.638545][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT [ 7627.640008][ T26] Hardware name: linux,dummy-virt (DT) [ 7627.640996][ T26] Call trace: [ 7627.641762][ T26] show_stack+0x2c/0x3c (C) [ 7627.642822][ T26] __dump_stack+0x30/0x40 [ 7627.643873][ T26] dump_stack_lvl+0x30/0x12c [ 7627.644954][ T26] dump_stack+0x1c/0x28 [ 7627.645810][ T26] vpanic+0x4cc/0x844 [ 7627.646769][ T26] vpanic+0x0/0x844 [ 7627.647669][ T26] hung_task_panic+0x0/0x2c [ 7627.648703][ T26] kthread+0x4d4/0x51c [ 7627.649696][ T26] ret_from_fork+0x10/0x20 [ 7627.651689][ T26] Kernel Offset: disabled [ 7627.652390][ T26] CPU features: 0x00000000,0034600b,f7c647a1,057ffe1f [ 7627.653623][ T26] Memory Limit: none [ 7627.655966][ T26] Rebooting in 86400 seconds..