last executing test programs: 1m5.736665975s ago: executing program 0 (id=1453): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x2}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0x3, 0x10) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000340)=@attr_arm64={0x0, 0x6, 0x4, &(0x7f0000000300)=0x3ff}) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r7, 0x4040aea0, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000200)={0x5, 0x8}) syz_kvm_vgic_v3_setup(r6, 0x5, 0x1e0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f0000000100)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000080)=0x31}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r8, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_irq={0x0, 0x0, 0x0, &(0x7f0000000040)=0x19}) r9 = syz_kvm_add_vcpu$arm64(0x0, &(0x7f0000000180)={0x0, &(0x7f0000000000)=[@its_setup={0x82, 0x28, {0x2, 0x523eb577, 0x34f}}], 0x28}, &(0x7f00000002c0), 0x1) r10 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r5, 0xae04) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, r10, 0x1000009, 0x16831, r9, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) 1m2.264726193s ago: executing program 1 (id=1454): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000140)=[{0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="3200000000000000400000000000000051000084000000001de7e1280000000008000000000000004700000000000000000000000000000022000000000000006e00000000000000300000000000000000400000000000009b02000052f4"], 0xf0}], 0x1, 0x0, 0x0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000040)={0x800000000003, 0xeeee0000, 0x2, r5, 0x8}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000900)={0xfffffffffffffffc, 0x0, 0x1, r5, 0x1}) ioctl$KVM_IOEVENTFD(r4, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x1, r5, 0x5}) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(0xffffffffffffffff, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000100)={0xeefffffc, 0x1000, 0x2}}) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r9, &(0x7f0000bfd000/0x400000)=nil) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x3) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) ioctl$KVM_ARM_VCPU_INIT(r10, 0x4020aeae, &(0x7f0000000200)={0x5}) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f00000001c0)={0x8}) ioctl$KVM_SET_SIGNAL_MASK(r10, 0x4004ae8b, &(0x7f00000001c0)=ANY=[]) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000180)={0x1fe, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) r11 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000000)={0x5, 0x2}) ioctl$KVM_RUN(r11, 0xae80, 0x0) close(r11) syz_kvm_add_vcpu$arm64(0x0, &(0x7f00000007c0)={0x0, &(0x7f0000000200)=[@eret={0xe6, 0x18, 0x7fffffffffffffff}, @smc={0x1e, 0x40, {0x8400000f, [0x6b2, 0x2, 0x9, 0xa5c, 0x2]}}, @svc={0x122, 0x40, {0xc4000053, [0x5a9, 0x5, 0x7, 0x3]}}, @msr={0x14, 0x20, {0x603000000013e6c2, 0x40}}, @svc={0x122, 0x40, {0x400, [0x8, 0xffffffffffffffff, 0x8, 0x2, 0x6]}}, @hvc={0x32, 0x40, {0x5000000, [0xa, 0x180000000000000, 0x4, 0x6f65, 0x8]}}, @msr={0x14, 0x20, {0x6030000000138004, 0x5}}, @smc={0x1e, 0x40, {0x6000000, [0x2c00, 0x0, 0x80000001, 0x7, 0x22a598aa]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0xffe4, 0x6, 0x4}}, @code={0xa, 0x84, {"000028d5e03090d20080b8f2010080d2020080d2e30080d2640080d2020000d40060ff0d00d8a02e20c383d20020b8f2810080d2620180d2630080d2640080d2020000d4007008d5c0639cd200c0b0f2810080d2c20180d2e30080d2240080d2020000d4000c403c0048215edf3003d5"}}, @eret={0xe6, 0x18, 0xae3f}, @eret={0xe6, 0x18, 0x80000001}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x0, 0x6, 0x5}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0xffd0, 0x8}}, @hvc={0x32, 0x40, {0xc4000014, [0x11, 0x6, 0x8, 0x3, 0x7]}}, @its_setup={0x82, 0x28, {0x2, 0x4, 0xab}}, @irq_setup={0x46, 0x18, {0x2, 0x3cf}}, @irq_setup={0x46, 0x18, {0x2, 0x3d3}}, @uexit={0x0, 0x18, 0x800}, @mrs={0xbe, 0x18, {0x603000000013f08a}}, @svc={0x122, 0x40, {0xc5000020, [0x418, 0x80000000000000, 0x3, 0x8001, 0x7fffffffffffffff]}}, @hvc={0x32, 0x40, {0x3000000, [0xfffe, 0xc, 0x1, 0x3, 0x1]}}, @msr={0x14, 0x20, {0xa6, 0x9}}, @svc={0x122, 0x40, {0x84000002, [0x80000000, 0x4, 0x7, 0x5, 0x6]}}, @code={0xa, 0x6c, {"0094200e0000319e002c205e00849f0d007008d5e0498bd200c0b8f2010180d2220180d2830180d2c40080d2020000d4402c83d20040b8f2410180d2c20180d2e30080d2240180d2020000d4000008d5007008d5000028d5"}}, @hvc={0x32, 0x40, {0x84000013, [0x7, 0x8000, 0xd, 0x80000001, 0xaf4]}}, @svc={0x122, 0x40, {0x84000009, [0x8000000000000000, 0x8, 0x6, 0x4, 0x2]}}, @svc={0x122, 0x40, {0x40, [0xff, 0x5, 0x4, 0x2, 0x5]}}], 0x5b0}, &(0x7f0000000800)=[@featur1={0x1, 0x18}], 0x1) 45.069145829s ago: executing program 1 (id=1455): r0 = eventfd2(0x2, 0x80000) r1 = openat$kvm(0x0, &(0x7f00000000c0), 0x909483, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$kvm(0x0, &(0x7f00000000c0), 0x909483, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_vgic_v3_setup(0xffffffffffffffff, 0x1, 0x40) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x1) ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f0000000040)={r0, 0x8, 0x2, r0}) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x4) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r4) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7) ioctl$KVM_ARM_VCPU_INIT(r8, 0x4020aeae, &(0x7f0000000000)={0x5, 0xa}) ioctl$KVM_SET_ONE_REG(r8, 0x4010aeac, &(0x7f0000000180)=@arm64_sys={0x603000000013dce0, &(0x7f0000000140)=0xfffffffffffffffa}) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) 42.830343866s ago: executing program 0 (id=1456): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) close(r2) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r6 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000200)={0x0, 0x75}) ioctl$KVM_SET_ONE_REG(r7, 0x4010aeac, &(0x7f00000000c0)=@arm64_sys={0x603000000013dce0, &(0x7f0000000000)=0xf}) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r7, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x65ae6392, 0x0, &(0x7f0000000100)}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_ARM_VCPU_INIT(r7, 0x4020aeae, &(0x7f0000000080)={0x5, 0x8}) close(r2) openat$kvm(0x0, &(0x7f0000000040), 0x222000, 0x0) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, 0x0) openat$kvm(0x0, 0x0, 0x9c481, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x105041, 0x0) r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0xa1ad28480eb5c87c, 0x0) ioctl$KVM_SET_GSI_ROUTING(r12, 0x40a0ae49, &(0x7f0000000100)=ANY=[]) 34.182643434s ago: executing program 1 (id=1457): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000200)={0x7, 0xffffffffffffffff}) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000000)=@attr_arm64={0x0, 0x1, 0x1, 0x0}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r3 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r4 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000400)={0x10200, 0x7, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000000)={0x5, 0x3, 0xffff1000, 0x1000, &(0x7f0000000000/0x1000)=nil}) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) syz_kvm_setup_syzos_vm$arm64(r6, &(0x7f0000000000/0x400000)=nil) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000380)={0x10200, 0x0, 0xdddd1000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000c90000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r8 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) ioctl$KVM_SET_SIGNAL_MASK(r10, 0x4004ae8b, &(0x7f0000000240)=ANY=[]) ioctl$KVM_SET_MP_STATE(r10, 0x4004ae99, &(0x7f00000000c0)=0x3) ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x0, 0x8080000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) syz_kvm_add_vcpu$arm64(r3, &(0x7f0000000080)={0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="aa00000000000000280000000000000003"], 0x28}, 0x0, 0x0) 30.927623524s ago: executing program 0 (id=1458): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40800, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x10c02, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 23.376764121s ago: executing program 0 (id=1459): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) (async) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, 0x0}, 0x0, 0x0) syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) (async) r4 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000100)={0x0, 0x0}, 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f00000000c0)={0x6, 0x2, 0x2}}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) (async) r5 = ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, r5, 0x3, 0x11, r3, 0x0) mmap$KVM_VCPU(&(0x7f000000a000/0x1000)=nil, r5, 0x3, 0x11, r4, 0x0) r6 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000c00000/0x400000)=nil) r7 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) munmap(&(0x7f000000f000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000c90000/0x1000)=nil, 0x1000) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) (async) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f0000f40000/0x5000)=nil, 0x5000) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r8, &(0x7f0000c00000/0x400000)=nil) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x0, 0x8080000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000000)={0x1fe, 0x0, 0x8080000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) r9 = syz_kvm_add_vcpu$arm64(r6, &(0x7f0000000080)={0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="aa00000000000000280000000000000003"], 0x28}, 0x0, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) (async) ioctl$KVM_RUN(r9, 0xae80, 0x0) 18.686206703s ago: executing program 1 (id=1460): r0 = syz_kvm_setup_syzos_vm$arm64(0xffffffffffffffff, &(0x7f0000bfe000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000380)={0x0, &(0x7f0000000000)=[@its_send_cmd={0xaa, 0x28, {0x1, 0x1, 0x3, 0x8, 0x7f, 0x0, 0x1}}, @msr={0x14, 0x20, {0x603000000013df7c, 0x870}}, @smc={0x1e, 0x40, {0x84000002, [0x7fffffffffffffff, 0x7, 0xad0c, 0x1, 0x8]}}, @irq_setup={0x46, 0x18, {0x4, 0x3bc}}, @irq_setup={0x46, 0x18, {0x4, 0x1f8}}, @mrs={0xbe, 0x18, {0x603000000013802e}}, @svc={0x122, 0x40, {0xc4000007, [0x4, 0x48b6, 0x9, 0x6, 0xffffffffffffffff]}}, @irq_setup={0x46, 0x18, {0x1, 0x125}}, @svc={0x122, 0x40, {0x84000003, [0x2, 0x2, 0x100, 0x1ff, 0x4]}}, @smc={0x1e, 0x40, {0xc5000020, [0x8310, 0x3, 0x7ff, 0x7fffffff]}}, @code={0xa, 0xb4, {"80eb85d20000b8f2a10080d2020080d2230180d2440180d2020000d4007008d500a8300e007008d5003887d20060b8f2810080d2420180d2c30080d2440080d2020000d4601d84d20040b0f2c10080d2420180d2230180d2c40180d2020000d4e003bfd6404291d200a0b8f2410080d2820180d2630080d2640180d2020000d400a88ad20060b0f2010080d2820080d2a30080d2440180d2020000d4bf2003d5"}}, @uexit={0x0, 0x18, 0xf}, @hvc={0x32, 0x40, {0xc4000004, [0xe98b, 0x100000001, 0x0, 0x5, 0x200]}}, @mrs={0xbe, 0x18, {0x603000000013c659}}, @its_setup={0x82, 0x28, {0x2, 0x2, 0x2e0}}, @its_send_cmd={0xaa, 0x28, {0x4, 0x0, 0x2, 0xb, 0xff, 0x5, 0x2}}, @uexit={0x0, 0x18, 0x4}, @mrs={0xbe, 0x18, {0x603000000013df12}}, @uexit={0x0, 0x18, 0x5}], 0x364}, &(0x7f00000003c0)=[@featur2={0x1, 0x18}], 0x1) r1 = syz_kvm_add_vcpu$arm64(r0, &(0x7f00000005c0)={0x0, &(0x7f0000000400)=[@irq_setup={0x46, 0x18, {0x4, 0x22b}}, @memwrite={0x6e, 0x30, @generic={0x0, 0xa09, 0x1, 0x9}}, @msr={0x14, 0x20, {0x2008, 0xffffffffffffffff}}, @mrs={0xbe, 0x18, {0x603000000013e6dd}}, @svc={0x122, 0x40, {0x8400000a, [0xa30, 0x4, 0x9, 0x5, 0x8]}}, @uexit={0x0, 0x18, 0x1}, @smc={0x1e, 0x40, {0x84000001, [0x3, 0x38c, 0x0, 0x1ff, 0x7]}}, @its_send_cmd={0xaa, 0x28, {0xa, 0x0, 0x3, 0x7, 0x7fff, 0x3, 0x2}}, @memwrite={0x6e, 0x30, @generic={0xdddd1000, 0x53a, 0x0, 0x9}}, @memwrite={0x6e, 0x30, @vgic_gicd={0x8000000, 0x2694, 0x4, 0x2}}], 0x1a0}, &(0x7f0000000600)=[@featur1={0x1, 0xd}], 0x1) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CAP_DIRTY_LOG_RING(r2, 0x4068aea3, &(0x7f0000000640)={0xc0, 0x0, 0x4000}) munmap(&(0x7f0000f0e000/0x1000)=nil, 0x1000) r3 = syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000ac0)={0x0, &(0x7f00000006c0)=[@hvc={0x32, 0x40, {0x8600ff01, [0x400, 0xc, 0x794, 0x1ff, 0x3]}}, @uexit={0x0, 0x18, 0x1}, @smc={0x1e, 0x40, {0x84000005, [0x59b, 0x200, 0xffffffff, 0x100, 0x9]}}, @mrs={0xbe, 0x18, {0x603000000013f290}}, @eret={0xe6, 0x18, 0x5e49}, @hvc={0x32, 0x40, {0x8400000f, [0xfffffffffffffff5, 0x6, 0x1, 0x6, 0x7]}}, @uexit={0x0, 0x18, 0x5}, @mrs={0xbe, 0x18, {0x603000000013801e}}, @mrs={0xbe, 0x18, {0x603000000013e710}}, @svc={0x122, 0x40, {0x80003fff, [0x0, 0x800, 0x4, 0x7f, 0x4]}}, @svc={0x122, 0x40, {0x84000004, [0x2, 0x100, 0x5, 0x46, 0x5]}}, @uexit={0x0, 0x18, 0x200}, @code={0xa, 0x9c, {"40129ad200e0b0f2010180d2820180d2c30180d2e40080d2020000d400dc205ea0cd89d20000b8f2e10180d2620080d2a30180d2040080d2020000d400048038e0f585d20000b8f2c10180d2c20080d2830080d2440180d2020000d420909ad200e0b8f2610080d2c20180d2430180d2840180d2020000d4000008d5000028d50000601f000008d5"}}, @uexit={0x0, 0x18, 0xfffffffffffffffb}, @memwrite={0x6e, 0x30, @generic={0xeeee0000, 0xab7, 0x100000001, 0x2}}, @hvc={0x32, 0x40, {0x8400000e, [0xc72, 0x0, 0x1, 0xffffffffffff87de, 0x10000]}}, @memwrite={0x6e, 0x30, @vgic_gicr={0x80c0000, 0xb0, 0x2, 0xc}}, @hvc={0x32, 0x40, {0x80, [0x6d0, 0xdf, 0xf, 0x40, 0xffffffffffffff19]}}, @eret={0xe6, 0x18, 0x8001}, @code={0xa, 0x6c, {"0058201e007008d50000005c0074005fe0118bd20060b0f2610080d2c20180d2c30080d2640180d2020000d40040661e407788d200e0b8f2210080d2820080d2e30180d2840180d2020000d4007008d500a8212e000080d2"}}], 0x400}, &(0x7f0000000b00), 0x1) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000b40)={0x6, [0x4e, 0x7fffffff, 0x4, 0x3, 0x100, 0x4]}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) r5 = mmap$KVM_VCPU(&(0x7f0000d80000/0x4000)=nil, 0x0, 0x3000000, 0x810, r4, 0x0) syz_kvm_vgic_v3_setup(r2, 0x3, 0x80) syz_kvm_add_vcpu$arm64(r0, &(0x7f0000000e40)={0x0, &(0x7f0000000b80)=[@mrs={0xbe, 0x18, {0xc06000000027ead0}}, @its_setup={0x82, 0x28, {0x1, 0x2, 0x12a}}, @msr={0x14, 0x20, {0x603000000013c529, 0x5}}, @mrs={0xbe, 0x18, {0x603000000013dee1}}, @svc={0x122, 0x40, {0x100, [0x6, 0x9, 0xfffffffffffff9a8, 0x10, 0x8]}}, @svc={0x122, 0x40, {0x80003fff, [0x401, 0x52, 0x8, 0x3, 0x6]}}, @eret={0xe6, 0x18, 0x2}, @mrs={0xbe, 0x18, {0x6030000000138004}}, @msr={0x14, 0x20, {0x603000000013c109, 0x7}}, @uexit={0x0, 0x18, 0xf}, @svc={0x122, 0x40, {0x40000000, [0x7, 0x4, 0x10, 0x8, 0x39]}}, @mrs={0xbe, 0x18, {0x603000000013e721}}, @msr={0x14, 0x20, {0x603000000013c016, 0x6}}, @msr={0x14, 0x20, {0x3dd72ebf903e05d9, 0x3}}, @its_send_cmd={0xaa, 0x28, {0x9, 0x1, 0x0, 0x2, 0x6, 0x9}}, @hvc={0x32, 0x40, {0xe896, [0xff, 0x7, 0xd, 0xfffffffffffffffa, 0x5]}}, @eret={0xe6, 0x18}, @mrs={0xbe, 0x18, {0x6030000000138005}}], 0x290}, &(0x7f0000000e80)=[@featur1={0x1, 0xa5}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000ec0)={0x101ff, 0x6, 0x8000000, 0x2000, &(0x7f0000dc8000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) r6 = eventfd2(0x6, 0x800) r7 = eventfd2(0x5, 0x1) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000f00)={r6, 0x7, 0x3, r7}) ioctl$KVM_IRQ_LINE(r2, 0x4008ae61, &(0x7f0000000f40)={0xfffffffe, 0x8}) r8 = syz_kvm_setup_syzos_vm$arm64(r2, &(0x7f0000bfd000/0x400000)=nil) syz_kvm_add_vcpu$arm64(r8, &(0x7f0000001240)={0x0, &(0x7f0000000f80)=[@irq_setup={0x46, 0x18, {0x1, 0x2a9}}, @smc={0x1e, 0x40, {0x84000011, [0x3, 0x1, 0x80, 0x3, 0x800]}}, @smc={0x1e, 0x40, {0x80003fff, [0x9, 0xe, 0xa83, 0x0, 0x1]}}, @memwrite={0x6e, 0x30, @vgic_gits={0x8080000, 0x8, 0x5}}, @code={0xa, 0x9c, {"007008d540f68dd20060b8f2010080d2c20080d2a30080d2440180d2020000d400005fd60014200e000c200ee0d298d200e0b8f2810080d2620180d2630080d2c40180d2020000d4007008d500a0004f805c86d20040b0f2a10080d2420180d2a30080d2e40180d2020000d400af8ed200e0b8f2010180d2820080d2630080d2640180d2020000d4"}}, @eret={0xe6, 0x18, 0x19e}, @code={0xa, 0xb4, {"c07d87d20020b8f2410080d2e20180d2c30180d2440080d2020000d460e28bd20020b0f2210080d2020180d2c30180d2240180d2020000d420319cd20040b0f2410180d2620180d2230080d2040180d2020000d4000c007c00f4000f007008d500ee91d20040b8f2810180d2820080d2630080d2640080d2020000d4000c80b8006196d20020b0f2a10180d2a20180d2e30080d2c40180d2020000d400006088"}}, @hvc={0x32, 0x40, {0xc4000004, [0xf457, 0x3, 0x5, 0xfffffffffffffffe, 0x7]}}, @hvc={0x32, 0x40, {0x32000000, [0x0, 0x8001, 0x6, 0x8, 0xceaf]}}], 0x2b0}, &(0x7f0000001280)=[@featur2={0x1, 0x10}], 0x1) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f00000012c0)="574dc213b9f42fc6a7bb67bfd29fac367d6239e0e78a543445118b5383d9e5e02a56ae4d199119e5f59074d258768f8259faba93942f81181f0b6bbe669e78eedf2b0822ead0c818", 0x0, 0x48) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000001340)={0x7, 0xdddd0000, 0x2, r6, 0x2}) r9 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r9, 0xc008ae67, &(0x7f0000001380)={0x8, 0x4}) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f00000013c0)=@x86={0x9, 0xc, 0x54, 0x0, 0x8, 0x70, 0x5, 0x81, 0x5d, 0x5, 0x3, 0xf, 0x0, 0xaea, 0x0, 0x7, 0x7, 0x80, 0xf, '\x00', 0x2, 0xc}) syz_kvm_vgic_v3_setup(r1, 0x4, 0x200) r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x0) r11 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000001400)={0x5, 0x2}) 12.604735773s ago: executing program 1 (id=1461): openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) syz_kvm_vgic_v3_setup(r1, 0x2, 0x3c0) (async) syz_kvm_vgic_v3_setup(r1, 0x2, 0x3c0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x24000, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r2, 0x1, 0x40) eventfd2(0x0, 0x0) (async) r3 = eventfd2(0x0, 0x0) eventfd2(0x0, 0x1) (async) r4 = eventfd2(0x0, 0x1) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000002c0)={r3, 0x1, 0x2, r4}) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000000c0)={r3, 0x1, 0x2, r4}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r6, 0x1, 0x40) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8, 0x1}) syz_memcpy_off$KVM_EXIT_HYPERCALL(0x0, 0x20, &(0x7f00000001c0)="fb52226012ab8b78286bf6cd81002000d3d9639c0810000000000005ff0f26ea4849dcfd69bf47d9000000000000000000000000000000000000000000000000cd9100", 0x0, 0x48) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r8, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r9, &(0x7f00000001c0), 0xff3c) eventfd2(0x0, 0x0) (async) r10 = eventfd2(0x0, 0x0) eventfd2(0x0, 0x1) (async) r11 = eventfd2(0x0, 0x1) ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f00000002c0)={r10, 0x1, 0x2, r11}) ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f00000000c0)={r10, 0x1, 0x2, r11}) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000000)={r3, 0x100, 0x3, r10}) syz_kvm_vgic_v3_setup(r1, 0x2, 0x140) 11.149884465s ago: executing program 0 (id=1462): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = eventfd2(0x0, 0x0) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000040)={0x3, 0xeeee0000, 0x2, r3, 0x8}) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000900)={0x0, 0x0, 0x1, r3, 0x1}) ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x1, r3}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x8032, 0xffffffffffffffff, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) ioctl$KVM_SET_MP_STATE(r5, 0x4004ae99, &(0x7f0000000080)=0xc) r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000e31000/0x2000)=nil, 0x930, 0x5, 0x2012, r6, 0x0) mmap$KVM_VCPU(&(0x7f0000f31000/0x3000)=nil, 0x930, 0x100000a, 0x213011, r6, 0x0) munmap(&(0x7f0000c00000/0x400000)=nil, 0x400000) mmap$KVM_VCPU(&(0x7f0000000000/0x4000)=nil, 0x930, 0x4, 0x4f833, 0xffffffffffffffff, 0x0) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r9, 0x4040aea0, &(0x7f0000000040)=@arm64={0x52, 0x10, 0x1, '\x00', 0x1ac}) 2.821727862s ago: executing program 1 (id=1463): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0x80111500, 0x20000000) write$eventfd(r1, &(0x7f0000000000), 0xfffffdef) r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r4, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) ioctl$KVM_SET_ONE_REG(r4, 0x4010aeac, &(0x7f0000000140)=@arm64_sys={0x603000000013c801, &(0x7f00000000c0)=0x80000004a0045a6}) r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VM(r5, 0x80111500, 0x20000000) write$eventfd(r6, &(0x7f0000000000), 0x26d07478) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x2000005, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) 0s ago: executing program 0 (id=1464): openat$kvm(0x0, &(0x7f0000000040), 0x109901, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x9) (async) ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x9) r2 = openat$kvm(0x0, &(0x7f00000002c0), 0x4000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40c02, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async) r6 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0xc3) r8 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r8, 0x8040ae9f, 0xffffffffffffffff) (async) ioctl$KVM_GET_VCPU_EVENTS(r8, 0x8040ae9f, 0xffffffffffffffff) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x7, 0x5, 0x0, '\x00', 0x1}) (async) ioctl$KVM_SET_VCPU_EVENTS(r8, 0x4040aea0, &(0x7f0000000000)=@arm64={0x7, 0x5, 0x0, '\x00', 0x1}) munmap(&(0x7f00000be000/0x1000)=nil, 0xffffffffdff41fff) r9 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r10 = ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0) r11 = ioctl$KVM_CREATE_VCPU(r10, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r11, 0x4020aeae, &(0x7f0000000080)={0x5}) ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f0000000140)=@arm64_extra={0x603000000013c01f, &(0x7f0000000300)=0xfff}) (async) ioctl$KVM_SET_ONE_REG(r11, 0x4010aeac, &(0x7f0000000140)=@arm64_extra={0x603000000013c01f, &(0x7f0000000300)=0xfff}) syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) (async) r12 = syz_kvm_setup_syzos_vm$arm64(r7, &(0x7f0000c00000/0x400000)=nil) r13 = syz_kvm_add_vcpu$arm64(r12, &(0x7f0000000080)={0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r3, @ANYRESHEX=r12, @ANYBLOB="f82cf9188e6de57527c965f7ff8f4a460f3bd22df7d852642d7078b99478b4566febae30c8dfb66690644ef3e477c6470cb2502547b9d7a45a269ebc72a7f928663a064fb9eaac6817f26c986a400bb3df605e329271b8297bbe0b1d3f7723bafd99accd92d24859c002731614b84ced72f6089b887530c8a3704928173ec2898708598f406287fedd0222c370b5a3eaaa1b6db2206dfad65ce09a64aa0908a73fadd81d124f0512171a88a687fa71354453118a31e8d89c09efbeb5"], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r3, 0x1, 0x100) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) (async) ioctl$KVM_SET_DEVICE_ATTR(r14, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r13, 0xae80, 0x0) munmap(&(0x7f0000cab000/0x4000)=nil, 0x4000) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) (async) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) syz_kvm_setup_syzos_vm$arm64(r0, &(0x7f0000c00000/0x400000)=nil) kernel console output (not intermixed with test programs): [ 431.902931][ T3132] 8021q: adding VLAN 0 to HW filter on device bond0 [ 484.216971][ T3132] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:14615' (ED25519) to the list of known hosts. [ 666.841639][ T25] audit: type=1400 audit(665.910:61): avc: denied { name_bind } for pid=3286 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 669.072957][ T25] audit: type=1400 audit(668.150:62): avc: denied { execute } for pid=3287 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 669.122359][ T25] audit: type=1400 audit(668.180:63): avc: denied { execute_no_trans } for pid=3287 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 697.314215][ T25] audit: type=1400 audit(696.390:64): avc: denied { mounton } for pid=3287 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 697.374965][ T25] audit: type=1400 audit(696.450:65): avc: denied { mount } for pid=3287 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 697.552489][ T3287] cgroup: Unknown subsys name 'net' [ 697.659170][ T25] audit: type=1400 audit(696.730:66): avc: denied { unmount } for pid=3287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 698.336003][ T3287] cgroup: Unknown subsys name 'cpuset' [ 698.555666][ T3287] cgroup: Unknown subsys name 'rlimit' [ 700.480031][ T25] audit: type=1400 audit(699.540:67): avc: denied { setattr } for pid=3287 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 700.513469][ T25] audit: type=1400 audit(699.590:68): avc: denied { mounton } for pid=3287 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 700.542576][ T25] audit: type=1400 audit(699.600:69): avc: denied { mount } for pid=3287 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 703.145844][ T3295] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 703.179861][ T25] audit: type=1400 audit(702.250:70): avc: denied { relabelto } for pid=3295 comm="mkswap" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 703.220507][ T25] audit: type=1400 audit(702.290:71): avc: denied { write } for pid=3295 comm="mkswap" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" Setting up swapspace version 1, size = 127995904 bytes [ 703.521117][ T25] audit: type=1400 audit(702.590:72): avc: denied { read } for pid=3287 comm="syz-executor" name="swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 703.540665][ T25] audit: type=1400 audit(702.610:73): avc: denied { open } for pid=3287 comm="syz-executor" path="/swap-file" dev="vda" ino=1872 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 703.618781][ T3287] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 753.573350][ T25] audit: type=1400 audit(752.650:74): avc: denied { execmem } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 758.433352][ T25] audit: type=1400 audit(757.470:75): avc: denied { read } for pid=3298 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 758.489959][ T25] audit: type=1400 audit(757.540:76): avc: denied { open } for pid=3298 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 758.701366][ T25] audit: type=1400 audit(757.730:77): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 759.258718][ T25] audit: type=1400 audit(758.320:78): avc: denied { module_request } for pid=3298 comm="syz-executor" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 759.299836][ T25] audit: type=1400 audit(758.360:79): avc: denied { module_request } for pid=3299 comm="syz-executor" kmod="netdev-nr1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 761.100931][ T25] audit: type=1400 audit(760.160:80): avc: denied { sys_module } for pid=3298 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 791.896133][ T3298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 792.155908][ T3298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 792.590640][ T3299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 793.105255][ T3299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 806.294257][ T3298] hsr_slave_0: entered promiscuous mode [ 806.324341][ T3298] hsr_slave_1: entered promiscuous mode [ 807.541409][ T3299] hsr_slave_0: entered promiscuous mode [ 807.575449][ T3299] hsr_slave_1: entered promiscuous mode [ 807.611020][ T3299] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 807.621901][ T3299] Cannot create hsr debugfs directory [ 813.582820][ T25] audit: type=1400 audit(812.650:81): avc: denied { create } for pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 813.653055][ T25] audit: type=1400 audit(812.730:82): avc: denied { write } for pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 813.720116][ T25] audit: type=1400 audit(812.750:83): avc: denied { read } for pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 813.826797][ T3298] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 814.223295][ T3298] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 814.595166][ T3298] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 815.025201][ T3298] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 816.740684][ T3299] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 816.941746][ T3299] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 817.134621][ T3299] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 817.314381][ T3299] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 837.113590][ T3298] 8021q: adding VLAN 0 to HW filter on device bond0 [ 840.677200][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0 [ 907.364938][ T3298] veth0_vlan: entered promiscuous mode [ 907.944169][ T3298] veth1_vlan: entered promiscuous mode [ 910.347312][ T3298] veth0_macvtap: entered promiscuous mode [ 910.732540][ T3298] veth1_macvtap: entered promiscuous mode [ 910.861229][ T3299] veth0_vlan: entered promiscuous mode [ 911.815728][ T3299] veth1_vlan: entered promiscuous mode [ 913.373115][ T3298] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 913.384176][ T3298] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 913.422974][ T3298] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 913.429810][ T3298] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 915.285677][ T3299] veth0_macvtap: entered promiscuous mode [ 915.821338][ T3299] veth1_macvtap: entered promiscuous mode [ 916.093718][ T25] audit: type=1400 audit(915.160:84): avc: denied { mount } for pid=3298 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 916.310480][ T25] audit: type=1400 audit(915.380:85): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/syzkaller.s3ul9o/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 916.679311][ T25] audit: type=1400 audit(915.650:86): avc: denied { mount } for pid=3298 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 917.048898][ T25] audit: type=1400 audit(916.120:87): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/syzkaller.s3ul9o/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 917.180521][ T25] audit: type=1400 audit(916.250:88): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/syzkaller.s3ul9o/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 917.765207][ T25] audit: type=1400 audit(916.840:89): avc: denied { unmount } for pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 917.906843][ T3299] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 917.921542][ T3299] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 917.943141][ T3299] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 917.953457][ T3299] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 918.087378][ T25] audit: type=1400 audit(917.160:90): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 918.354342][ T25] audit: type=1400 audit(917.420:91): avc: denied { mount } for pid=3298 comm="syz-executor" name="/" dev="gadgetfs" ino=3275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 918.753821][ T25] audit: type=1400 audit(917.830:92): avc: denied { mount } for pid=3298 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 918.853373][ T25] audit: type=1400 audit(917.890:93): avc: denied { mounton } for pid=3298 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 920.764551][ T3298] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 921.857239][ T25] kauditd_printk_skb: 1 callbacks suppressed [ 921.910388][ T25] audit: type=1400 audit(920.930:95): avc: denied { read write } for pid=3298 comm="syz-executor" name="loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 921.949093][ T25] audit: type=1400 audit(921.020:96): avc: denied { open } for pid=3298 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 921.999242][ T25] audit: type=1400 audit(921.060:97): avc: denied { ioctl } for pid=3298 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 925.452905][ T25] audit: type=1400 audit(924.490:98): avc: denied { read } for pid=3451 comm="syz.0.1" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 925.499804][ T25] audit: type=1400 audit(924.520:99): avc: denied { open } for pid=3451 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 926.195455][ T25] audit: type=1400 audit(925.240:100): avc: denied { ioctl } for pid=3451 comm="syz.0.1" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 937.367185][ T3459] FAULT_INJECTION: forcing a failure. [ 937.367185][ T3459] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 937.444618][ T3459] CPU: 0 UID: 0 PID: 3459 Comm: syz.1.3 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 937.445305][ T3459] Hardware name: linux,dummy-virt (DT) [ 937.445809][ T3459] Call trace: [ 937.446317][ T3459] show_stack+0x2c/0x3c (C) [ 937.448329][ T3459] __dump_stack+0x30/0x40 [ 937.448659][ T3459] dump_stack_lvl+0xd8/0x12c [ 937.448905][ T3459] dump_stack+0x1c/0x28 [ 937.449121][ T3459] should_fail_ex+0x570/0x6e0 [ 937.449390][ T3459] should_fail+0x14/0x24 [ 937.449682][ T3459] should_fail_usercopy+0x20/0x30 [ 937.449971][ T3459] simple_read_from_buffer+0xd0/0x298 [ 937.450320][ T3459] proc_fail_nth_read+0x114/0x178 [ 937.450655][ T3459] vfs_read+0x220/0x958 [ 937.450939][ T3459] ksys_read+0x100/0x1f4 [ 937.451216][ T3459] __arm64_sys_read+0x98/0xcc [ 937.451511][ T3459] invoke_syscall+0x90/0x2b4 [ 937.451852][ T3459] el0_svc_common+0x180/0x2f4 [ 937.452179][ T3459] do_el0_svc+0x58/0x74 [ 937.452512][ T3459] el0_svc+0x58/0x160 [ 937.452797][ T3459] el0t_64_sync_handler+0x78/0x108 [ 937.453065][ T3459] el0t_64_sync+0x198/0x19c [ 944.816822][ T25] audit: type=1400 audit(943.880:101): avc: denied { write } for pid=3464 comm="syz.1.5" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 979.019946][ T25] audit: type=1400 audit(978.090:102): avc: denied { append } for pid=3477 comm="syz.1.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1074.423602][ T25] audit: type=1400 audit(1073.330:103): avc: denied { execute } for pid=3520 comm="syz.1.22" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4838 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1350.779395][ T3672] KVM: debugfs: duplicate directory 3672-9 [ 1413.042375][ T3697] kvm [3697]: Failed to find VMA for hva 0x20d8d000 [ 1505.089992][ T25] audit: type=1400 audit(1504.160:104): avc: denied { setattr } for pid=3749 comm="syz.0.88" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1617.880757][ T25] audit: type=1400 audit(1616.950:105): avc: denied { ioctl } for pid=3810 comm="syz.1.107" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0x5839 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 1684.320436][ T3853] FAULT_INJECTION: forcing a failure. [ 1684.320436][ T3853] name failslab, interval 1, probability 0, space 0, times 1 [ 1684.349503][ T3853] CPU: 0 UID: 0 PID: 3853 Comm: syz.1.119 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 1684.349887][ T3853] Hardware name: linux,dummy-virt (DT) [ 1684.350010][ T3853] Call trace: [ 1684.350102][ T3853] show_stack+0x2c/0x3c (C) [ 1684.350539][ T3853] __dump_stack+0x30/0x40 [ 1684.350780][ T3853] dump_stack_lvl+0xd8/0x12c [ 1684.351000][ T3853] dump_stack+0x1c/0x28 [ 1684.351210][ T3853] should_fail_ex+0x570/0x6e0 [ 1684.351509][ T3853] should_failslab+0xb8/0xec [ 1684.351777][ T3853] __kmalloc_cache_noprof+0x80/0x404 [ 1684.352123][ T3853] kvm_uevent_notify_change+0x204/0x374 [ 1684.352412][ T3853] kvm_put_kvm+0xac/0xff8 [ 1684.352653][ T3853] kvm_vm_release+0x58/0x78 [ 1684.352933][ T3853] __fput+0x4ac/0x980 [ 1684.353236][ T3853] fput_close_sync+0xcc/0x1e8 [ 1684.353558][ T3853] __arm64_sys_close+0x8c/0x13c [ 1684.353847][ T3853] invoke_syscall+0x90/0x2b4 [ 1684.354179][ T3853] el0_svc_common+0x180/0x2f4 [ 1684.354541][ T3853] do_el0_svc+0x58/0x74 [ 1684.354873][ T3853] el0_svc+0x58/0x160 [ 1684.355143][ T3853] el0t_64_sync_handler+0x78/0x108 [ 1684.355418][ T3853] el0t_64_sync+0x198/0x19c [ 1723.325234][ T3872] FAULT_INJECTION: forcing a failure. [ 1723.325234][ T3872] name failslab, interval 1, probability 0, space 0, times 0 [ 1723.401196][ T3872] CPU: 0 UID: 0 PID: 3872 Comm: syz.0.125 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 1723.401625][ T3872] Hardware name: linux,dummy-virt (DT) [ 1723.401761][ T3872] Call trace: [ 1723.401858][ T3872] show_stack+0x2c/0x3c (C) [ 1723.402259][ T3872] __dump_stack+0x30/0x40 [ 1723.402530][ T3872] dump_stack_lvl+0xd8/0x12c [ 1723.402772][ T3872] dump_stack+0x1c/0x28 [ 1723.402995][ T3872] should_fail_ex+0x570/0x6e0 [ 1723.403270][ T3872] should_failslab+0xb8/0xec [ 1723.403531][ T3872] __kmalloc_cache_noprof+0x80/0x404 [ 1723.403884][ T3872] kobject_uevent_env+0x30c/0xa4c [ 1723.404204][ T3872] kvm_uevent_notify_change+0x2f0/0x374 [ 1723.404506][ T3872] kvm_put_kvm+0xac/0xff8 [ 1723.404738][ T3872] kvm_vm_release+0x58/0x78 [ 1723.405029][ T3872] __fput+0x4ac/0x980 [ 1723.405334][ T3872] fput_close_sync+0xcc/0x1e8 [ 1723.405660][ T3872] __arm64_sys_close+0x8c/0x13c [ 1723.405941][ T3872] invoke_syscall+0x90/0x2b4 [ 1723.406262][ T3872] el0_svc_common+0x180/0x2f4 [ 1723.406647][ T3872] do_el0_svc+0x58/0x74 [ 1723.406980][ T3872] el0_svc+0x58/0x160 [ 1723.407251][ T3872] el0t_64_sync_handler+0x78/0x108 [ 1723.407580][ T3872] el0t_64_sync+0x198/0x19c [ 2154.256880][ T25] audit: type=1400 audit(2153.330:106): avc: denied { map } for pid=4132 comm="syz.1.197" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2154.348933][ T25] audit: type=1400 audit(2153.400:107): avc: denied { map } for pid=4132 comm="syz.1.197" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2167.562817][ T25] audit: type=1400 audit(2166.640:108): avc: denied { map } for pid=4141 comm="syz.0.200" path="pipe:[2428]" dev="pipefs" ino=2428 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 2374.720503][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 2374.720503][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.752271][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.752271][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.796104][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.796104][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.824674][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.824674][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.910082][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.910082][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.931039][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.931039][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2374.973487][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2374.973487][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2375.004249][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2375.004249][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2375.047190][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2375.047190][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2375.133495][ T4250] kvm [4249]: Unsupported guest CP15 access at: 00000100 [000001db] [ 2375.133495][ T4250] { Op0( 0), Op1( 7), CRn(15), CRm(13), Op2( 7), func_read }, [ 2545.071656][ T4357] kvm [4357]: Failed to find VMA for hva 0x20c01000 [ 2650.943930][ T4418] kvm [4418]: Failed to find VMA for hva 0x2101a000 [ 2691.502175][ T4443] kvm [4443]: Failed to find VMA for hva 0x20d8d000 [ 2906.981821][ T4565] kvm [4565]: Failed to find VMA for hva 0x20d8d000 [ 2964.431508][ T4604] kvm [4604]: Failed to find VMA for hva 0x2036f000 [ 3100.281926][ T4675] KVM: debugfs: duplicate directory 4675-4 [ 3448.834101][ T4863] kvm [4863]: Failed to find VMA for hva 0x2036f000 [ 3466.617132][ T4873] kvm [4872]: Unsupported guest access at: eeef0000 [ 3466.617132][ T4873] { Op0( 2), Op1( 0), CRn( 0), CRm( 0), Op2( 2), func_write }, [ 3568.455139][ T4928] kvm [4928]: Failed to find VMA for hva 0x20d8d000 [ 3710.642995][ T5014] kvm [5014]: Failed to find VMA for hva 0x20c01000 [ 3778.401617][ T5051] kvm [5051]: Failed to find VMA for hva 0x20d8d000 [ 4372.960260][ T25] audit: type=1400 audit(4372.030:109): avc: denied { execute } for pid=5392 comm="syz.1.560" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 4419.586078][ T5420] kvm [5420]: Failed to find VMA for hva 0x21016000 [ 4884.795428][ T5705] print_sys_reg_msg: 190 callbacks suppressed [ 4884.840446][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 4884.840446][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4884.853775][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4884.853775][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4884.904991][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4884.904991][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4884.960148][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4884.960148][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4884.971112][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4884.971112][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4885.035476][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4885.035476][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4885.081844][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4885.081844][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4885.121439][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4885.121439][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4885.150353][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4885.150353][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 4885.234511][ T5705] kvm [5704]: Unsupported guest CP15 access at: 00000100 [000001db] [ 4885.234511][ T5705] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 5010.281380][ T5774] kvm [5774]: Failed to find VMA for hva 0x20d8d000 [ 5347.483232][ T5961] FAULT_INJECTION: forcing a failure. [ 5347.483232][ T5961] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 5347.549764][ T5961] CPU: 0 UID: 0 PID: 5961 Comm: syz.0.723 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 5347.550162][ T5961] Hardware name: linux,dummy-virt (DT) [ 5347.550308][ T5961] Call trace: [ 5347.550411][ T5961] show_stack+0x2c/0x3c (C) [ 5347.550836][ T5961] __dump_stack+0x30/0x40 [ 5347.551061][ T5961] dump_stack_lvl+0xd8/0x12c [ 5347.551289][ T5961] dump_stack+0x1c/0x28 [ 5347.551507][ T5961] should_fail_ex+0x570/0x6e0 [ 5347.551779][ T5961] should_fail+0x14/0x24 [ 5347.552024][ T5961] should_fail_usercopy+0x20/0x30 [ 5347.552291][ T5961] simple_read_from_buffer+0xd0/0x298 [ 5347.552632][ T5961] proc_fail_nth_read+0x114/0x178 [ 5347.552932][ T5961] vfs_read+0x220/0x958 [ 5347.553204][ T5961] ksys_read+0x100/0x1f4 [ 5347.553495][ T5961] __arm64_sys_read+0x98/0xcc [ 5347.553789][ T5961] invoke_syscall+0x90/0x2b4 [ 5347.554108][ T5961] el0_svc_common+0x180/0x2f4 [ 5347.554454][ T5961] do_el0_svc+0x58/0x74 [ 5347.554797][ T5961] el0_svc+0x58/0x160 [ 5347.555059][ T5961] el0t_64_sync_handler+0x78/0x108 [ 5347.555330][ T5961] el0t_64_sync+0x198/0x19c [ 5354.833014][ T5966] FAULT_INJECTION: forcing a failure. [ 5354.833014][ T5966] name failslab, interval 1, probability 0, space 0, times 0 [ 5354.874011][ T5966] CPU: 0 UID: 0 PID: 5966 Comm: syz.0.725 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 5354.874398][ T5966] Hardware name: linux,dummy-virt (DT) [ 5354.874544][ T5966] Call trace: [ 5354.874645][ T5966] show_stack+0x2c/0x3c (C) [ 5354.875040][ T5966] __dump_stack+0x30/0x40 [ 5354.875264][ T5966] dump_stack_lvl+0xd8/0x12c [ 5354.875498][ T5966] dump_stack+0x1c/0x28 [ 5354.875723][ T5966] should_fail_ex+0x570/0x6e0 [ 5354.875988][ T5966] should_failslab+0xb8/0xec [ 5354.876225][ T5966] __kmalloc_cache_noprof+0x80/0x404 [ 5354.876586][ T5966] kvm_dev_ioctl+0x798/0x105c [ 5354.876879][ T5966] __arm64_sys_ioctl+0x18c/0x244 [ 5354.877139][ T5966] invoke_syscall+0x90/0x2b4 [ 5354.877482][ T5966] el0_svc_common+0x180/0x2f4 [ 5354.877810][ T5966] do_el0_svc+0x58/0x74 [ 5354.878121][ T5966] el0_svc+0x58/0x160 [ 5354.878410][ T5966] el0t_64_sync_handler+0x78/0x108 [ 5354.878716][ T5966] el0t_64_sync+0x198/0x19c [ 5355.861145][ T5967] kvm [5967]: Failed to find VMA for hva 0x20c01000 [ 5358.345771][ T5964] kvm [5964]: Failed to find VMA for hva 0x20c01000 [ 5439.767027][ T6011] FAULT_INJECTION: forcing a failure. [ 5439.767027][ T6011] name failslab, interval 1, probability 0, space 0, times 0 [ 5439.829734][ T6011] CPU: 0 UID: 0 PID: 6011 Comm: syz.1.739 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 5439.830145][ T6011] Hardware name: linux,dummy-virt (DT) [ 5439.830267][ T6011] Call trace: [ 5439.830396][ T6011] show_stack+0x2c/0x3c (C) [ 5439.830838][ T6011] __dump_stack+0x30/0x40 [ 5439.831065][ T6011] dump_stack_lvl+0xd8/0x12c [ 5439.831300][ T6011] dump_stack+0x1c/0x28 [ 5439.831532][ T6011] should_fail_ex+0x570/0x6e0 [ 5439.831812][ T6011] should_failslab+0xb8/0xec [ 5439.832054][ T6011] __kmalloc_cache_noprof+0x80/0x404 [ 5439.832393][ T6011] kvm_init_stage2_mmu+0x1fc/0x5d4 [ 5439.832726][ T6011] kvm_arch_init_vm+0x144/0x288 [ 5439.832977][ T6011] kvm_dev_ioctl+0x838/0x105c [ 5439.833258][ T6011] __arm64_sys_ioctl+0x18c/0x244 [ 5439.833546][ T6011] invoke_syscall+0x90/0x2b4 [ 5439.833878][ T6011] el0_svc_common+0x180/0x2f4 [ 5439.834196][ T6011] do_el0_svc+0x58/0x74 [ 5439.834559][ T6011] el0_svc+0x58/0x160 [ 5439.834833][ T6011] el0t_64_sync_handler+0x78/0x108 [ 5439.835101][ T6011] el0t_64_sync+0x198/0x19c [ 5509.020167][ T6048] kvm [6048]: Failed to find VMA for hva 0x20c01000 [ 5847.970180][ T6239] KVM: debugfs: duplicate directory 6239-5 [ 5978.952257][ T6319] kvm [6319]: Failed to find VMA for hva 0x20c01000 [ 6014.205031][ T6337] kvm [6337]: Failed to find VMA for hva 0x20d8d000 [ 6049.820156][ T6358] kvm [6358]: Failed to find VMA for hva 0x20c01000 [ 6098.084872][ T6384] kvm [6384]: Failed to find VMA for hva 0x20d8d000 [ 6098.100257][ T6381] kvm [6381]: Failed to find VMA for hva 0x20d8d000 [ 6348.099651][ T6538] debugfs: File 'vgic-its-state@8080000' in directory '6538-4' already present! [ 6443.902223][ T6596] FAULT_INJECTION: forcing a failure. [ 6443.902223][ T6596] name failslab, interval 1, probability 0, space 0, times 0 [ 6443.931128][ T6596] CPU: 0 UID: 0 PID: 6596 Comm: syz.1.911 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6443.931558][ T6596] Hardware name: linux,dummy-virt (DT) [ 6443.931682][ T6596] Call trace: [ 6443.931786][ T6596] show_stack+0x2c/0x3c (C) [ 6443.932176][ T6596] __dump_stack+0x30/0x40 [ 6443.932392][ T6596] dump_stack_lvl+0xd8/0x12c [ 6443.932632][ T6596] dump_stack+0x1c/0x28 [ 6443.932866][ T6596] should_fail_ex+0x570/0x6e0 [ 6443.933133][ T6596] should_failslab+0xb8/0xec [ 6443.933373][ T6596] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 6443.933740][ T6596] debugfs_alloc_inode+0x2c/0x3c [ 6443.934037][ T6596] alloc_inode+0x80/0x23c [ 6443.934382][ T6596] new_inode+0x2c/0x1c4 [ 6443.934617][ T6596] __debugfs_create_file+0x15c/0x5dc [ 6443.934916][ T6596] debugfs_create_file_full+0x58/0x70 [ 6443.935204][ T6596] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6443.935521][ T6596] kvm_dev_ioctl+0x948/0x105c [ 6443.935821][ T6596] __arm64_sys_ioctl+0x18c/0x244 [ 6443.936078][ T6596] invoke_syscall+0x90/0x2b4 [ 6443.936395][ T6596] el0_svc_common+0x180/0x2f4 [ 6443.936733][ T6596] do_el0_svc+0x58/0x74 [ 6443.937042][ T6596] el0_svc+0x58/0x160 [ 6443.937304][ T6596] el0t_64_sync_handler+0x78/0x108 [ 6443.937585][ T6596] el0t_64_sync+0x198/0x19c [ 6444.043538][ T6596] debugfs: out of free dentries, can not create file 'halt_poll_invalid' [ 6456.345721][ T6599] kvm [6599]: Failed to find VMA for hva 0x20d8d000 [ 6475.226740][ T6618] FAULT_INJECTION: forcing a failure. [ 6475.226740][ T6618] name failslab, interval 1, probability 0, space 0, times 0 [ 6475.276289][ T6618] CPU: 0 UID: 0 PID: 6618 Comm: syz.1.917 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6475.276676][ T6618] Hardware name: linux,dummy-virt (DT) [ 6475.276798][ T6618] Call trace: [ 6475.276893][ T6618] show_stack+0x2c/0x3c (C) [ 6475.277281][ T6618] __dump_stack+0x30/0x40 [ 6475.277534][ T6618] dump_stack_lvl+0xd8/0x12c [ 6475.277761][ T6618] dump_stack+0x1c/0x28 [ 6475.277974][ T6618] should_fail_ex+0x570/0x6e0 [ 6475.278233][ T6618] should_failslab+0xb8/0xec [ 6475.278515][ T6618] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 6475.278864][ T6618] debugfs_alloc_inode+0x2c/0x3c [ 6475.279155][ T6618] alloc_inode+0x80/0x23c [ 6475.279482][ T6618] new_inode+0x2c/0x1c4 [ 6475.279707][ T6618] __debugfs_create_file+0x15c/0x5dc [ 6475.279993][ T6618] debugfs_create_file_full+0x58/0x70 [ 6475.280276][ T6618] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6475.280597][ T6618] kvm_dev_ioctl+0x948/0x105c [ 6475.280891][ T6618] __arm64_sys_ioctl+0x18c/0x244 [ 6475.281156][ T6618] invoke_syscall+0x90/0x2b4 [ 6475.281491][ T6618] el0_svc_common+0x180/0x2f4 [ 6475.281833][ T6618] do_el0_svc+0x58/0x74 [ 6475.282156][ T6618] el0_svc+0x58/0x160 [ 6475.282450][ T6618] el0t_64_sync_handler+0x78/0x108 [ 6475.282750][ T6618] el0t_64_sync+0x198/0x19c [ 6475.459444][ T6618] debugfs: out of free dentries, can not create file 'halt_poll_invalid' [ 6512.633642][ T6639] FAULT_INJECTION: forcing a failure. [ 6512.633642][ T6639] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 6512.660443][ T6639] CPU: 0 UID: 0 PID: 6639 Comm: syz.1.923 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6512.660837][ T6639] Hardware name: linux,dummy-virt (DT) [ 6512.660957][ T6639] Call trace: [ 6512.661054][ T6639] show_stack+0x2c/0x3c (C) [ 6512.661443][ T6639] __dump_stack+0x30/0x40 [ 6512.661698][ T6639] dump_stack_lvl+0xd8/0x12c [ 6512.661918][ T6639] dump_stack+0x1c/0x28 [ 6512.662122][ T6639] should_fail_ex+0x570/0x6e0 [ 6512.662419][ T6639] should_fail_alloc_page+0xd4/0xd8 [ 6512.662706][ T6639] prepare_alloc_pages+0x20c/0x5e0 [ 6512.662951][ T6639] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6512.663193][ T6639] alloc_pages_mpol+0x204/0x4c8 [ 6512.663548][ T6639] alloc_pages_noprof+0x104/0x2ec [ 6512.663876][ T6639] get_free_pages_noprof+0x1c/0xc4 [ 6512.664114][ T6639] selinux_genfs_get_sid+0x70/0x2c0 [ 6512.664428][ T6639] inode_doinit_with_dentry+0x754/0xb7c [ 6512.664767][ T6639] selinux_d_instantiate+0x30/0x48 [ 6512.665027][ T6639] security_d_instantiate+0xf8/0x1fc [ 6512.665268][ T6639] d_instantiate+0x68/0xb8 [ 6512.665584][ T6639] __debugfs_create_file+0x2ac/0x5dc [ 6512.665869][ T6639] debugfs_create_file_full+0x58/0x70 [ 6512.666143][ T6639] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6512.666479][ T6639] kvm_dev_ioctl+0x948/0x105c [ 6512.666790][ T6639] __arm64_sys_ioctl+0x18c/0x244 [ 6512.667047][ T6639] invoke_syscall+0x90/0x2b4 [ 6512.667365][ T6639] el0_svc_common+0x180/0x2f4 [ 6512.667734][ T6639] do_el0_svc+0x58/0x74 [ 6512.668057][ T6639] el0_svc+0x58/0x160 [ 6512.668323][ T6639] el0t_64_sync_handler+0x78/0x108 [ 6512.668620][ T6639] el0t_64_sync+0x198/0x19c [ 6673.920721][ T6734] FAULT_INJECTION: forcing a failure. [ 6673.920721][ T6734] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 6673.926412][ T6734] CPU: 0 UID: 0 PID: 6734 Comm: syz.1.952 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6673.926803][ T6734] Hardware name: linux,dummy-virt (DT) [ 6673.926922][ T6734] Call trace: [ 6673.927012][ T6734] show_stack+0x2c/0x3c (C) [ 6673.927396][ T6734] __dump_stack+0x30/0x40 [ 6673.927668][ T6734] dump_stack_lvl+0xd8/0x12c [ 6673.927892][ T6734] dump_stack+0x1c/0x28 [ 6673.928104][ T6734] should_fail_ex+0x570/0x6e0 [ 6673.928362][ T6734] should_fail_alloc_page+0xd4/0xd8 [ 6673.928628][ T6734] prepare_alloc_pages+0x20c/0x5e0 [ 6673.928869][ T6734] __alloc_frozen_pages_noprof+0xd8/0x2d0 [ 6673.929113][ T6734] alloc_pages_mpol+0x204/0x4c8 [ 6673.929434][ T6734] alloc_pages_noprof+0x104/0x2ec [ 6673.929782][ T6734] get_free_pages_noprof+0x1c/0xc4 [ 6673.930032][ T6734] selinux_genfs_get_sid+0x70/0x2c0 [ 6673.930375][ T6734] inode_doinit_with_dentry+0x754/0xb7c [ 6673.930725][ T6734] selinux_d_instantiate+0x30/0x48 [ 6673.930983][ T6734] security_d_instantiate+0xf8/0x1fc [ 6673.931223][ T6734] d_instantiate+0x68/0xb8 [ 6673.931521][ T6734] __debugfs_create_file+0x2ac/0x5dc [ 6673.931817][ T6734] debugfs_create_file_full+0x58/0x70 [ 6673.932101][ T6734] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6673.932396][ T6734] kvm_dev_ioctl+0x948/0x105c [ 6673.932700][ T6734] __arm64_sys_ioctl+0x18c/0x244 [ 6673.932963][ T6734] invoke_syscall+0x90/0x2b4 [ 6673.933297][ T6734] el0_svc_common+0x180/0x2f4 [ 6673.933641][ T6734] do_el0_svc+0x58/0x74 [ 6673.933955][ T6734] el0_svc+0x58/0x160 [ 6673.934221][ T6734] el0t_64_sync_handler+0x78/0x108 [ 6673.934535][ T6734] el0t_64_sync+0x198/0x19c [ 6777.346250][ T6794] FAULT_INJECTION: forcing a failure. [ 6777.346250][ T6794] name failslab, interval 1, probability 0, space 0, times 0 [ 6777.376648][ T6794] CPU: 0 UID: 0 PID: 6794 Comm: syz.0.970 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6777.377011][ T6794] Hardware name: linux,dummy-virt (DT) [ 6777.377132][ T6794] Call trace: [ 6777.377221][ T6794] show_stack+0x2c/0x3c (C) [ 6777.377656][ T6794] __dump_stack+0x30/0x40 [ 6777.377884][ T6794] dump_stack_lvl+0xd8/0x12c [ 6777.378096][ T6794] dump_stack+0x1c/0x28 [ 6777.378323][ T6794] should_fail_ex+0x570/0x6e0 [ 6777.378618][ T6794] should_failslab+0xb8/0xec [ 6777.378865][ T6794] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 6777.379203][ T6794] __d_alloc+0x40/0x81c [ 6777.379508][ T6794] d_alloc_parallel+0x9c/0x1378 [ 6777.379831][ T6794] __lookup_slow+0xe0/0x388 [ 6777.380134][ T6794] lookup_noperm+0x134/0x280 [ 6777.380433][ T6794] start_creating+0x200/0x3a8 [ 6777.380753][ T6794] __debugfs_create_file+0x7c/0x5dc [ 6777.381044][ T6794] debugfs_create_file_full+0x58/0x70 [ 6777.381322][ T6794] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6777.381645][ T6794] kvm_dev_ioctl+0x948/0x105c [ 6777.381935][ T6794] __arm64_sys_ioctl+0x18c/0x244 [ 6777.382192][ T6794] invoke_syscall+0x90/0x2b4 [ 6777.382566][ T6794] el0_svc_common+0x180/0x2f4 [ 6777.382891][ T6794] do_el0_svc+0x58/0x74 [ 6777.383200][ T6794] el0_svc+0x58/0x160 [ 6777.383461][ T6794] el0t_64_sync_handler+0x78/0x108 [ 6777.383763][ T6794] el0t_64_sync+0x198/0x19c [ 6813.285733][ T6814] FAULT_INJECTION: forcing a failure. [ 6813.285733][ T6814] name failslab, interval 1, probability 0, space 0, times 0 [ 6813.310976][ T6814] CPU: 0 UID: 0 PID: 6814 Comm: syz.0.976 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 6813.311352][ T6814] Hardware name: linux,dummy-virt (DT) [ 6813.311480][ T6814] Call trace: [ 6813.311577][ T6814] show_stack+0x2c/0x3c (C) [ 6813.311981][ T6814] __dump_stack+0x30/0x40 [ 6813.312206][ T6814] dump_stack_lvl+0xd8/0x12c [ 6813.312423][ T6814] dump_stack+0x1c/0x28 [ 6813.312659][ T6814] should_fail_ex+0x570/0x6e0 [ 6813.312932][ T6814] should_failslab+0xb8/0xec [ 6813.313170][ T6814] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 6813.313514][ T6814] debugfs_alloc_inode+0x2c/0x3c [ 6813.313819][ T6814] alloc_inode+0x80/0x23c [ 6813.314135][ T6814] new_inode+0x2c/0x1c4 [ 6813.314365][ T6814] __debugfs_create_file+0x15c/0x5dc [ 6813.314673][ T6814] debugfs_create_file_full+0x58/0x70 [ 6813.314956][ T6814] kvm_create_vm_debugfs+0x57c/0x7d0 [ 6813.315249][ T6814] kvm_dev_ioctl+0x948/0x105c [ 6813.315536][ T6814] __arm64_sys_ioctl+0x18c/0x244 [ 6813.315804][ T6814] invoke_syscall+0x90/0x2b4 [ 6813.316131][ T6814] el0_svc_common+0x180/0x2f4 [ 6813.316451][ T6814] do_el0_svc+0x58/0x74 [ 6813.316790][ T6814] el0_svc+0x58/0x160 [ 6813.317058][ T6814] el0t_64_sync_handler+0x78/0x108 [ 6813.317323][ T6814] el0t_64_sync+0x198/0x19c [ 6813.463499][ T6814] debugfs: out of free dentries, can not create file 'halt_poll_success_ns' [ 6934.594746][ T6888] print_sys_reg_msg: 328 callbacks suppressed [ 6934.639518][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 6934.639518][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.675354][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.675354][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.702739][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.702739][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.735067][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.735067][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.784867][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.784867][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.863096][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.863096][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6934.902755][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6934.902755][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6935.012618][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6935.012618][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6935.102852][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6935.102852][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6935.140880][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6935.140880][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6939.703442][ T6888] print_sys_reg_msg: 350 callbacks suppressed [ 6939.789359][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6939.789359][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6939.802149][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6939.802149][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6939.894209][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6939.894209][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6939.993579][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6939.993579][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.012601][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.012601][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.073345][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.073345][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.125438][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.125438][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.252435][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.252435][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.353403][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.353403][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 6940.395610][ T6888] kvm [6887]: Unsupported guest CP15 access at: 00000100 [000001db] [ 6940.395610][ T6888] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 7424.949619][ T7156] kvm [7156]: Failed to find VMA for hva 0x20c01000 [ 7524.272939][ T7206] FAULT_INJECTION: forcing a failure. [ 7524.272939][ T7206] name failslab, interval 1, probability 0, space 0, times 0 [ 7524.313285][ T7206] CPU: 0 UID: 0 PID: 7206 Comm: syz.0.1097 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 7524.313734][ T7206] Hardware name: linux,dummy-virt (DT) [ 7524.313862][ T7206] Call trace: [ 7524.313954][ T7206] show_stack+0x2c/0x3c (C) [ 7524.314381][ T7206] __dump_stack+0x30/0x40 [ 7524.314633][ T7206] dump_stack_lvl+0xd8/0x12c [ 7524.314870][ T7206] dump_stack+0x1c/0x28 [ 7524.315086][ T7206] should_fail_ex+0x570/0x6e0 [ 7524.315353][ T7206] should_failslab+0xb8/0xec [ 7524.315607][ T7206] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 7524.315957][ T7206] debugfs_alloc_inode+0x2c/0x3c [ 7524.316251][ T7206] alloc_inode+0x80/0x23c [ 7524.316586][ T7206] new_inode+0x2c/0x1c4 [ 7524.316825][ T7206] __debugfs_create_file+0x15c/0x5dc [ 7524.317113][ T7206] debugfs_create_file_full+0x58/0x70 [ 7524.317393][ T7206] kvm_create_vm_debugfs+0x57c/0x7d0 [ 7524.317735][ T7206] kvm_dev_ioctl+0x948/0x105c [ 7524.318023][ T7206] __arm64_sys_ioctl+0x18c/0x244 [ 7524.318298][ T7206] invoke_syscall+0x90/0x2b4 [ 7524.318644][ T7206] el0_svc_common+0x180/0x2f4 [ 7524.318979][ T7206] do_el0_svc+0x58/0x74 [ 7524.319335][ T7206] el0_svc+0x58/0x160 [ 7524.319625][ T7206] el0t_64_sync_handler+0x78/0x108 [ 7524.319913][ T7206] el0t_64_sync+0x198/0x19c [ 7524.500229][ T7206] debugfs: out of free dentries, can not create file 'halt_poll_fail_hist' [ 7726.874585][ T7338] FAULT_INJECTION: forcing a failure. [ 7726.874585][ T7338] name failslab, interval 1, probability 0, space 0, times 0 [ 7726.964245][ T7338] CPU: 0 UID: 0 PID: 7338 Comm: syz.0.1133 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 7726.964631][ T7338] Hardware name: linux,dummy-virt (DT) [ 7726.964750][ T7338] Call trace: [ 7726.964839][ T7338] show_stack+0x2c/0x3c (C) [ 7726.965226][ T7338] __dump_stack+0x30/0x40 [ 7726.965443][ T7338] dump_stack_lvl+0xd8/0x12c [ 7726.965682][ T7338] dump_stack+0x1c/0x28 [ 7726.965895][ T7338] should_fail_ex+0x570/0x6e0 [ 7726.966164][ T7338] should_failslab+0xb8/0xec [ 7726.966438][ T7338] __kmalloc_cache_noprof+0x80/0x404 [ 7726.966814][ T7338] kvm_create_vm_debugfs+0x43c/0x7d0 [ 7726.967114][ T7338] kvm_dev_ioctl+0x948/0x105c [ 7726.967397][ T7338] __arm64_sys_ioctl+0x18c/0x244 [ 7726.967711][ T7338] invoke_syscall+0x90/0x2b4 [ 7726.968040][ T7338] el0_svc_common+0x180/0x2f4 [ 7726.968360][ T7338] do_el0_svc+0x58/0x74 [ 7726.968703][ T7338] el0_svc+0x58/0x160 [ 7726.968974][ T7338] el0t_64_sync_handler+0x78/0x108 [ 7726.969248][ T7338] el0t_64_sync+0x198/0x19c [ 7762.016453][ T7358] FAULT_INJECTION: forcing a failure. [ 7762.016453][ T7358] name failslab, interval 1, probability 0, space 0, times 0 [ 7762.080989][ T7358] CPU: 0 UID: 0 PID: 7358 Comm: syz.1.1139 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 7762.081388][ T7358] Hardware name: linux,dummy-virt (DT) [ 7762.081521][ T7358] Call trace: [ 7762.081613][ T7358] show_stack+0x2c/0x3c (C) [ 7762.082018][ T7358] __dump_stack+0x30/0x40 [ 7762.082236][ T7358] dump_stack_lvl+0xd8/0x12c [ 7762.082503][ T7358] dump_stack+0x1c/0x28 [ 7762.082738][ T7358] should_fail_ex+0x570/0x6e0 [ 7762.083008][ T7358] should_failslab+0xb8/0xec [ 7762.083249][ T7358] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 7762.083601][ T7358] debugfs_alloc_inode+0x2c/0x3c [ 7762.083908][ T7358] alloc_inode+0x80/0x23c [ 7762.084230][ T7358] new_inode+0x2c/0x1c4 [ 7762.084442][ T7358] __debugfs_create_file+0x15c/0x5dc [ 7762.084750][ T7358] debugfs_create_file_full+0x58/0x70 [ 7762.085039][ T7358] kvm_create_vm_debugfs+0x57c/0x7d0 [ 7762.085344][ T7358] kvm_dev_ioctl+0x948/0x105c [ 7762.085658][ T7358] __arm64_sys_ioctl+0x18c/0x244 [ 7762.085921][ T7358] invoke_syscall+0x90/0x2b4 [ 7762.086239][ T7358] el0_svc_common+0x180/0x2f4 [ 7762.086595][ T7358] do_el0_svc+0x58/0x74 [ 7762.086922][ T7358] el0_svc+0x58/0x160 [ 7762.087191][ T7358] el0t_64_sync_handler+0x78/0x108 [ 7762.087478][ T7358] el0t_64_sync+0x198/0x19c [ 7762.340902][ T7358] debugfs: out of free dentries, can not create file 'halt_wait_hist' [ 7798.179705][ T7372] kvm [7372]: Failed to find VMA for hva 0x20d8d000 [ 7914.770098][ T7438] kvm [7438]: Failed to find VMA for hva 0x20d8d000 [ 8032.575510][ T7508] FAULT_INJECTION: forcing a failure. [ 8032.575510][ T7508] name failslab, interval 1, probability 0, space 0, times 0 [ 8032.600500][ T7508] CPU: 0 UID: 0 PID: 7508 Comm: syz.0.1183 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 8032.600931][ T7508] Hardware name: linux,dummy-virt (DT) [ 8032.601051][ T7508] Call trace: [ 8032.601140][ T7508] show_stack+0x2c/0x3c (C) [ 8032.601544][ T7508] __dump_stack+0x30/0x40 [ 8032.601783][ T7508] dump_stack_lvl+0xd8/0x12c [ 8032.602002][ T7508] dump_stack+0x1c/0x28 [ 8032.602209][ T7508] should_fail_ex+0x570/0x6e0 [ 8032.602512][ T7508] should_failslab+0xb8/0xec [ 8032.602774][ T7508] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 8032.603114][ T7508] __d_alloc+0x40/0x81c [ 8032.603397][ T7508] d_alloc_parallel+0x9c/0x1378 [ 8032.603717][ T7508] __lookup_slow+0xe0/0x388 [ 8032.604022][ T7508] lookup_noperm+0x134/0x280 [ 8032.604325][ T7508] start_creating+0x200/0x3a8 [ 8032.604623][ T7508] __debugfs_create_file+0x7c/0x5dc [ 8032.604922][ T7508] debugfs_create_file_full+0x58/0x70 [ 8032.605205][ T7508] kvm_create_vm_debugfs+0x57c/0x7d0 [ 8032.605506][ T7508] kvm_dev_ioctl+0x948/0x105c [ 8032.605801][ T7508] __arm64_sys_ioctl+0x18c/0x244 [ 8032.606056][ T7508] invoke_syscall+0x90/0x2b4 [ 8032.606402][ T7508] el0_svc_common+0x180/0x2f4 [ 8032.606746][ T7508] do_el0_svc+0x58/0x74 [ 8032.607059][ T7508] el0_svc+0x58/0x160 [ 8032.607324][ T7508] el0t_64_sync_handler+0x78/0x108 [ 8032.607654][ T7508] el0t_64_sync+0x198/0x19c [ 8077.471019][ T7532] FAULT_INJECTION: forcing a failure. [ 8077.471019][ T7532] name failslab, interval 1, probability 0, space 0, times 0 [ 8077.510637][ T7532] CPU: 0 UID: 0 PID: 7532 Comm: syz.0.1189 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [ 8077.511012][ T7532] Hardware name: linux,dummy-virt (DT) [ 8077.511139][ T7532] Call trace: [ 8077.511231][ T7532] show_stack+0x2c/0x3c (C) [ 8077.511656][ T7532] __dump_stack+0x30/0x40 [ 8077.511884][ T7532] dump_stack_lvl+0xd8/0x12c [ 8077.512098][ T7532] dump_stack+0x1c/0x28 [ 8077.512302][ T7532] should_fail_ex+0x570/0x6e0 [ 8077.512591][ T7532] should_failslab+0xb8/0xec [ 8077.512837][ T7532] kmem_cache_alloc_lru_noprof+0x84/0x3f4 [ 8077.513175][ T7532] debugfs_alloc_inode+0x2c/0x3c [ 8077.513482][ T7532] alloc_inode+0x80/0x23c [ 8077.513816][ T7532] new_inode+0x2c/0x1c4 [ 8077.514026][ T7532] __debugfs_create_file+0x15c/0x5dc [ 8077.514323][ T7532] debugfs_create_file_full+0x58/0x70 [ 8077.514635][ T7532] kvm_create_vm_debugfs+0x57c/0x7d0 [ 8077.514936][ T7532] kvm_dev_ioctl+0x948/0x105c [ 8077.515221][ T7532] __arm64_sys_ioctl+0x18c/0x244 [ 8077.515493][ T7532] invoke_syscall+0x90/0x2b4 [ 8077.515840][ T7532] el0_svc_common+0x180/0x2f4 [ 8077.516167][ T7532] do_el0_svc+0x58/0x74 [ 8077.516491][ T7532] el0_svc+0x58/0x160 [ 8077.516768][ T7532] el0t_64_sync_handler+0x78/0x108 [ 8077.517041][ T7532] el0t_64_sync+0x198/0x19c [ 8077.649256][ T7532] debugfs: out of free dentries, can not create file 'hvc_exit_stat' [ 8085.196093][ T7535] kvm [7535]: Failed to find VMA for hva 0x20c01000 [ 8097.570530][ T7540] kvm [7540]: Failed to find VMA for hva 0x20d8d000 [ 8099.799634][ T7543] kvm [7543]: Failed to find VMA for hva 0x20c01000 [ 8169.109907][ T6954] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8170.685924][ T6954] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8172.357048][ T6954] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8173.833795][ T6954] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8195.987056][ T6954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 8196.387054][ T6954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 8196.651860][ T6954] bond0 (unregistering): Released all slaves [ 8198.735192][ T6954] hsr_slave_0: left promiscuous mode [ 8198.876149][ T6954] hsr_slave_1: left promiscuous mode [ 8199.681016][ T6954] veth1_macvtap: left promiscuous mode [ 8199.686025][ T6954] veth0_macvtap: left promiscuous mode [ 8199.733418][ T6954] veth1_vlan: left promiscuous mode [ 8199.750957][ T6954] veth0_vlan: left promiscuous mode [ 8287.684222][ T7575] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8288.192606][ T7575] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8324.472696][ T7575] hsr_slave_0: entered promiscuous mode [ 8324.613097][ T7575] hsr_slave_1: entered promiscuous mode [ 8324.680177][ T7575] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 8324.689881][ T7575] Cannot create hsr debugfs directory [ 8353.123624][ T7575] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 8353.749877][ T7575] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 8354.112468][ T7575] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 8354.581095][ T7575] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 8385.200979][ T7575] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8500.713108][ T7575] veth0_vlan: entered promiscuous mode [ 8501.563944][ T7575] veth1_vlan: entered promiscuous mode [ 8504.681690][ T7575] veth0_macvtap: entered promiscuous mode [ 8505.154805][ T7575] veth1_macvtap: entered promiscuous mode [ 8507.916972][ T7575] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 8507.950556][ T7575] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 8507.994538][ T7575] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 8508.011844][ T7575] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 8511.092907][ T25] audit: type=1400 audit(8510.140:110): avc: denied { mounton } for pid=7575 comm="syz-executor" path="/syzkaller.dZwY4M/syz-tmp" dev="vda" ino=1879 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 8542.502774][ T6302] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8544.214392][ T6302] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8545.754136][ T6302] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8547.537241][ T6302] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 8570.000553][ T6302] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 8570.264410][ T6302] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 8570.465990][ T6302] bond0 (unregistering): Released all slaves [ 8572.961031][ T6302] hsr_slave_0: left promiscuous mode [ 8573.100661][ T6302] hsr_slave_1: left promiscuous mode [ 8574.039837][ T6302] veth1_macvtap: left promiscuous mode [ 8574.041657][ T6302] veth0_macvtap: left promiscuous mode [ 8574.061153][ T6302] veth1_vlan: left promiscuous mode [ 8574.106739][ T6302] veth0_vlan: left promiscuous mode [ 8628.326624][ T7881] kvm [7881]: Failed to find VMA for hva 0x20d8d000 [ 8670.036735][ T7834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 8670.443304][ T7834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 8703.806889][ T7834] hsr_slave_0: entered promiscuous mode [ 8704.001895][ T7834] hsr_slave_1: entered promiscuous mode [ 8735.937472][ T7834] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 8736.507370][ T7834] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 8737.009289][ T7834] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 8737.374732][ T7834] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 8764.230887][ T7834] 8021q: adding VLAN 0 to HW filter on device bond0 [ 8870.704879][ T8068] kvm [8068]: Failed to find VMA for hva 0x20c01000 [ 8878.295645][ T7834] veth0_vlan: entered promiscuous mode [ 8879.716247][ T7834] veth1_vlan: entered promiscuous mode [ 8883.593854][ T7834] veth0_macvtap: entered promiscuous mode [ 8884.161700][ T7834] veth1_macvtap: entered promiscuous mode [ 8887.597429][ T7834] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 8887.630901][ T7834] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 8887.656761][ T7834] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 8887.711978][ T7834] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 8983.245763][ T8142] kvm [8142]: Failed to find VMA for hva 0x20d8d000 [ 9100.050296][ T8212] print_sys_reg_msg: 382 callbacks suppressed [ 9100.100307][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001d3] [ 9100.100307][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.131860][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.131860][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.175145][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.175145][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.204254][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.204254][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.300409][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.300409][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.320958][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.320958][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.357248][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.357248][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.503374][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.503374][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.553221][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.553221][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9100.630652][ T8212] kvm [8209]: Unsupported guest CP15 access at: 00000100 [000001db] [ 9100.630652][ T8212] { Op0( 0), Op1( 7), CRn(15), CRm(12), Op2( 7), func_read }, [ 9462.905574][ T8437] kvm [8437]: Failed to find VMA for hva 0x208a1000 [ 9495.963706][ T8459] kvm [8459]: Failed to find VMA for hva 0x20c01000 [ 9530.515988][ T8482] kvm [8482]: Failed to find VMA for hva 0x208a1000 [ 9531.055584][ T8482] kvm [8482]: Failed to find VMA for hva 0x20c01000 [10002.636063][ T8774] KVM: debugfs: duplicate directory 8774-8 [10002.729484][ T8776] KVM: debugfs: duplicate directory 8776-7 [10048.436016][ T8805] ------------[ cut here ]------------ [10048.436918][ T8805] WARNING: CPU: 0 PID: 8805 at arch/arm64/kvm/inject_fault.c:71 pend_serror_exception+0x19c/0x5ac [10048.439901][ T8805] Modules linked in: [10048.442075][ T8805] CPU: 0 UID: 0 PID: 8805 Comm: syz.0.1464 Not tainted 6.16.0-rc3-syzkaller-g3c5832f03f2e #0 PREEMPT [10048.443800][ T8805] Hardware name: linux,dummy-virt (DT) [10048.445077][ T8805] pstate: 81402009 (Nzcv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [10048.446644][ T8805] pc : pend_serror_exception+0x19c/0x5ac [10048.447814][ T8805] lr : pend_serror_exception+0x19c/0x5ac [10048.448967][ T8805] sp : ffff80008eb17930 [10048.449913][ T8805] x29: ffff80008eb17930 x28: 89f000001d81d8a8 x27: 0000000000000001 [10048.452084][ T8805] x26: 0000000000000000 x25: 0000000000000001 x24: 0000000000000089 [10048.453978][ T8805] x23: 89f000001d81db28 x22: 0000000000000089 x21: 89f000001d81e701 [10048.455900][ T8805] x20: 0000000000000007 x19: efff800000000000 x18: 0000000000000000 [10048.457779][ T8805] x17: 0000000000000016 x16: ffff800080011d9c x15: 0000000020000000 [10048.459714][ T8805] x14: ffffffffffffffff x13: 0000000000000028 x12: 00000000000000e7 [10048.461589][ T8805] x11: e7f00000126d6de4 x10: 0000000000ff0100 x9 : 0000000000000000 [10048.463629][ T8805] x8 : e7f00000126d5880 x7 : ffff800080b08704 x6 : ffff80008eb17a88 [10048.465456][ T8805] x5 : ffff80008eb17a88 x4 : 0000000000000001 x3 : ffff8000801a2e80 [10048.467276][ T8805] x2 : 0000000000000000 x1 : 0000000000000002 x0 : 0000000000000000 [10048.469255][ T8805] Call trace: [10048.470227][ T8805] pend_serror_exception+0x19c/0x5ac (P) [10048.471478][ T8805] kvm_inject_serror_esr+0x274/0xe3c [10048.472645][ T8805] __kvm_arm_vcpu_set_events+0x1d4/0x238 [10048.473767][ T8805] kvm_arch_vcpu_ioctl+0xed8/0x16b0 [10048.475016][ T8805] kvm_vcpu_ioctl+0x5c4/0xc2c [10048.476171][ T8805] __arm64_sys_ioctl+0x18c/0x244 [10048.477345][ T8805] invoke_syscall+0x90/0x2b4 [10048.478591][ T8805] el0_svc_common+0x180/0x2f4 [10048.479790][ T8805] do_el0_svc+0x58/0x74 [10048.480805][ T8805] el0_svc+0x58/0x160 [10048.481869][ T8805] el0t_64_sync_handler+0x78/0x108 [10048.483042][ T8805] el0t_64_sync+0x198/0x19c [10048.484310][ T8805] irq event stamp: 2242 [10048.485273][ T8805] hardirqs last enabled at (2241): [] _raw_read_unlock_irqrestore+0x44/0xbc [10048.486917][ T8805] hardirqs last disabled at (2242): [] el1_dbg+0x24/0x80 [10048.488372][ T8805] softirqs last enabled at (2224): [] local_bh_enable+0x10/0x34 [10048.489824][ T8805] softirqs last disabled at (2222): [] local_bh_disable+0x10/0x34 [10048.491576][ T8805] ---[ end trace 0000000000000000 ]--- SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [10058.826744][ T6954] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10060.334214][ T6954] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10061.875708][ T6954] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10062.979541][ T6954] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [10074.590043][ T6954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [10074.783639][ T6954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [10074.896723][ T6954] bond0 (unregistering): Released all slaves [10076.732510][ T6954] hsr_slave_0: left promiscuous mode [10076.800760][ T6954] hsr_slave_1: left promiscuous mode [10077.175113][ T6954] veth1_macvtap: left promiscuous mode [10077.209332][ T6954] veth0_macvtap: left promiscuous mode [10077.221652][ T6954] veth1_vlan: left promiscuous mode [10077.226003][ T6954] veth0_vlan: left promiscuous mode VM DIAGNOSIS: 08:14:07 Registers: info registers vcpu 0 CPU#0 PC=ffff8000804516b8 X00=0000000000000000 X01=ffff8000872b1fa2 X02=ffff8000804580e0 X03=0000000000000000 X04=ffff80008eb16f90 X05=0000000000000020 X06=0000000000000000 X07=ffff80008047db18 X08=00000000000003c0 X09=0000000000000000 X10=00000000000000e7 X11=0000000000000144 X12=0000000000000044 X13=0000000000000002 X14=00000000000000c8 X15=ffff800087f39a30 X16=ffff800080011d9c X17=0000000000000016 X18=0000000000000000 X19=0000000000000000 X20=0000000000000000 X21=ffff80008047db18 X22=ffff8000877e6618 X23=0000000000000000 X24=0000000000000001 X25=0000000000000000 X26=ffff800087666580 X27=00000000000003c0 X28=0000000000000000 X29=ffff80008eb17150 X30=ffff800080451698 SP=ffff80008eb17100 PSTATE=604023c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=0000ffffdf442500:e904faaee4558500 Z02=0000ffffdf4424e0:ffffff80ffffffd8 Z03=0000ffffdf442590:0000ffffdf442590 Z04=0000ffffdf442590:0000ffff81b36d08 Z05=0000ffffdf442560:0000ffffdf442590 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffdf4427b0:0000ffffdf4427b0 Z17=ffffff80ffffffd0:0000ffffdf442780 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000